Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json)
Hash identifier: If1e3SAcQnK1XlVEN5EgxwiS4VizzBdBhB7SIB58LRA=
Subject key identifier: DF:E7:C5:34:77:61:6C:32:26:10:19:2D:B7:8C:C8:6E:DE:4C:F2:BE
Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Certificate serial: 01992FDA6A5DC9C4127D0E4FFD1C5AD0A510
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
Manifest number: 167A
Signing time: Tue 09 Sep 2025 19:01:07 +0000
Manifest this update: Tue 09 Sep 2025 19:01:07 +0000
Manifest next update: Wed 10 Sep 2025 19:01:07 +0000
Files and hashes: 1: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: Fc8OiHnWvI6hjvHJ61Ga2APoV+bNSy4Ln87F1rY28aU=)
2: 5JInjtJs-s2-yK_dBCuc4HDNHSk.roa (hash: JUxQOg0RzN7jHCpHsSZf+phi3+AooD9Ty47K9VLPoKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:da:6a:5d:c9:c4:12:7d:0e:4f:fd:1c:5a:d0:a5:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Validity
Not Before: Sep 9 19:01:07 2025 GMT
Not After : Sep 10 19:01:07 2025 GMT
Subject: CN=dfe7c53477616c322610192db78cc86ede4cf2be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2e:e8:4c:56:b0:c6:2f:2b:70:cc:09:b7:89:
7e:4e:10:1d:88:00:88:66:f0:0a:a6:3b:64:a9:b5:
b3:08:36:72:21:23:3f:f5:20:61:6f:dc:92:bd:ec:
48:cd:38:e2:9e:2f:53:12:cc:26:37:06:5f:f2:3b:
9e:96:ab:ea:f2:e4:05:a9:97:f2:bc:10:a1:b7:90:
b0:5a:7d:2b:bc:9f:f3:83:4f:ac:d7:14:e7:33:60:
a9:1e:49:76:d1:6b:33:82:88:1d:a0:43:14:ff:27:
5c:05:cd:81:77:92:fa:7f:46:9e:23:45:dd:0e:6e:
ca:1e:d2:eb:3f:c3:ab:22:68:92:1f:fb:a1:43:8f:
1c:74:c4:67:ea:f9:e9:12:94:71:a3:3c:ae:a7:53:
d9:c6:90:e1:5a:6c:6a:1b:ef:5f:d1:ad:a0:21:98:
73:ba:17:cc:72:68:41:01:e1:d5:38:d7:b9:87:c4:
00:b9:56:dc:9b:24:59:37:03:03:8b:70:d2:28:af:
e6:19:cc:ee:9b:dd:50:32:10:c5:73:41:6c:e6:37:
45:72:62:69:d2:9a:e2:6f:ff:66:5e:17:e3:e8:6d:
0a:1c:f5:58:72:c1:e0:d6:df:fe:74:40:f1:3d:28:
07:e3:aa:03:3e:0c:10:aa:15:69:9c:e8:c6:bc:39:
97:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E7:C5:34:77:61:6C:32:26:10:19:2D:B7:8C:C8:6E:DE:4C:F2:BE
X509v3 Authority Key Identifier:
keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:b6:fd:b4:51:a4:c9:69:19:28:ce:c1:ac:87:01:0e:84:c3:
ea:80:d2:fb:aa:62:63:93:49:6d:63:7c:68:05:d9:21:cf:a9:
b0:5c:b3:0c:b9:70:f4:0d:57:18:5e:14:9a:37:d3:71:b3:aa:
9c:f3:2d:f0:57:ef:23:5f:28:08:1b:14:3b:59:aa:c2:e9:eb:
f8:70:97:bd:db:ca:36:33:c0:7a:fb:b9:fc:ca:df:7c:fa:e2:
2f:b3:c0:64:5d:a2:2e:97:fe:b7:78:9b:80:fa:32:d2:bf:2d:
f1:f4:eb:c5:9d:6e:95:72:10:b4:fb:a9:cf:3c:75:01:e7:98:
d0:d9:3c:e8:4c:e7:c0:84:f6:ba:de:a4:db:69:86:fc:39:38:
09:98:cd:13:ca:85:5d:ad:d8:f3:d3:6b:0e:b5:78:5e:37:84:
05:32:b7:f4:74:8c:bc:1d:b4:e1:ed:f7:b8:9a:dc:e6:57:1a:
a9:27:16:18:de:b2:c0:10:36:69:0d:f3:f3:58:64:dd:35:55:
72:64:2c:f8:e7:37:60:1e:8e:7c:f1:43:47:c5:52:74:36:71:
d7:69:99:74:06:37:23:6d:59:c3:d7:0e:27:58:b8:b3:8a:7c:
73:59:dc:a3:0d:d7:df:cb:90:20:c7:d5:f6:6c:3e:8b:ea:81:
73:0a:28:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkv2mpdycQSfQ5P/Rxa0KUQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYWU1ZTMzODc5NGU2MGQ1ZDhiNTIzYmRiMmI2OGVjNGFj
NzYyY2UwHhcNMjUwOTA5MTkwMTA3WhcNMjUwOTEwMTkwMTA3WjAzMTEwLwYDVQQD
EyhkZmU3YzUzNDc3NjE2YzMyMjYxMDE5MmRiNzhjYzg2ZWRlNGNmMmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvy7oTFawxi8rcMwJt4l+ThAdiACI
ZvAKpjtkqbWzCDZyISM/9SBhb9ySvexIzTjini9TEswmNwZf8juelqvq8uQFqZfy
vBCht5CwWn0rvJ/zg0+s1xTnM2CpHkl20WszgogdoEMU/ydcBc2Bd5L6f0aeI0Xd
Dm7KHtLrP8OrImiSH/uhQ48cdMRn6vnpEpRxozyup1PZxpDhWmxqG+9f0a2gIZhz
uhfMcmhBAeHVONe5h8QAuVbcmyRZNwMDi3DSKK/mGczum91QMhDFc0Fs5jdFcmJp
0prib/9mXhfj6G0KHPVYcsHg1t/+dEDxPSgH46oDPgwQqhVpnOjGvDmXsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN/nxTR3YWwyJhAZLbeMyG7eTPK+MB8GA1UdIwQY
MBaAFNKuXjOHlOYNXYtSO9sraOxKx2LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYt
OGQ4ZTllYTE0MzI1LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYtOGQ4ZTllYTE0MzI1
LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB7b9tFGk
yWkZKM7BrIcBDoTD6oDS+6piY5NJbWN8aAXZIc+psFyzDLlw9A1XGF4UmjfTcbOq
nPMt8FfvI18oCBsUO1mqwunr+HCXvdvKNjPAevu5/MrffPriL7PAZF2iLpf+t3ib
gPoy0r8t8fTrxZ1ulXIQtPupzzx1AeeY0Nk86EznwIT2ut6k22mG/Dk4CZjNE8qF
Xa3Y89NrDrV4XjeEBTK39HSMvB204e33uJrc5lcaqScWGN6ywBA2aQ3z81hk3TVV
cmQs+Oc3YB6OfPFDR8VSdDZx12mZdAY3I21Zw9cOJ1i4s4p8c1ncow3X38uQIMfV
9mw+i+qBcwoosg==
-----END CERTIFICATE-----
Generated at Wed Sep 10 00:12:37 2025 by rpki-client