Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
File: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft (raw, json)
Hash identifier: H3oYDkwDOI5C33k8jdgoL/Aq+G1g8FuXQ94cRea7ET8=
Subject key identifier: 9D:3B:59:8B:FC:98:25:14:5E:18:D0:A4:B6:0A:88:4C:12:D2:CC:8D
Authority key identifier: 42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2
Certificate issuer: /CN=42432a319f54b058372fd32528eae51fc90c15b2
Certificate serial: 0199312547BE1D670993129D88781C3201AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
Manifest number: 0327
Signing time: Wed 10 Sep 2025 01:02:30 +0000
Manifest this update: Wed 10 Sep 2025 01:02:30 +0000
Manifest next update: Thu 11 Sep 2025 01:02:30 +0000
Files and hashes: 1: Fg4gfGthOyzcFXfxEYyjwrss7as.roa (hash: mWUv12QovIjIHXpuDNAMlgedx6+BQ3vMWaiHrsA7+3A=)
2: Q5e6g1WUMRG4cL4aNZtJqqD_-yo.roa (hash: T3aZ91YVxRUkDJ96e4vMqo7oCynEMTZ2Xb8h0pZbGMo=)
3: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl (hash: bIn1JOBhz9DNviz8GHYFFX2oqy8QMxZ6OuXvGfFOcP0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:25:47:be:1d:67:09:93:12:9d:88:78:1c:32:01:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42432a319f54b058372fd32528eae51fc90c15b2
Validity
Not Before: Sep 10 01:02:30 2025 GMT
Not After : Sep 11 01:02:30 2025 GMT
Subject: CN=9d3b598bfc9825145e18d0a4b60a884c12d2cc8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:54:c5:ad:c1:f4:53:4c:f0:b1:2e:88:70:bc:
90:3f:57:c4:d6:ee:26:64:45:4e:3a:0e:a7:c4:98:
00:40:3b:e6:f9:b2:50:de:7d:86:9e:e0:8f:96:81:
c4:04:3a:87:af:49:1b:e6:bd:dd:11:e4:20:d2:06:
2a:0d:da:d7:6a:b0:e6:32:9d:97:ce:fe:34:38:73:
67:5c:bc:b5:af:5e:99:ec:89:1b:08:79:b1:ad:c3:
51:e3:54:58:97:ec:8d:22:ad:f6:fc:9a:1e:18:54:
2c:07:77:57:4d:29:13:d0:25:5e:1c:4c:c6:ac:2d:
16:1e:be:b5:2f:9a:f4:d4:f0:6d:18:5c:cd:9f:ec:
bd:d6:01:6b:3e:86:43:d0:46:cf:77:0c:4b:d8:a9:
69:c5:f9:dc:9f:8d:3c:38:7c:24:d8:17:78:54:9c:
ae:95:7c:d0:7f:06:af:c7:cb:8f:70:73:35:42:8b:
05:67:36:35:a8:27:2b:e5:0b:e7:d7:cd:cd:f1:6c:
17:17:96:0d:90:9c:04:74:06:06:20:22:c5:88:0f:
da:1e:f1:18:e5:e2:a4:a0:14:da:f7:cd:cf:e2:3e:
fe:97:e0:ea:7c:f5:4b:74:6d:7b:e3:63:6d:3d:6e:
32:b5:10:b8:86:1a:7b:23:1c:00:1c:08:f4:37:65:
48:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3B:59:8B:FC:98:25:14:5E:18:D0:A4:B6:0A:88:4C:12:D2:CC:8D
X509v3 Authority Key Identifier:
keyid:42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:b7:de:66:a6:2e:d0:30:39:e9:02:57:6a:00:33:fb:08:2b:
5c:2b:fb:ec:74:d9:6c:f8:ac:28:85:c7:fd:6e:fe:f8:77:a6:
58:e4:20:9c:03:1e:85:0d:5a:4d:c5:85:c6:43:64:71:d4:92:
43:9a:f7:8b:42:14:a5:c1:bd:c8:f9:6f:7c:7a:f0:af:be:64:
41:fb:25:d4:4b:9a:25:6a:32:e3:8f:b0:9f:85:7c:87:8e:d6:
97:fd:9f:c1:04:bb:36:e2:2c:b6:a8:1c:8c:d0:07:2a:18:6a:
89:72:86:d9:96:3a:f7:f6:de:d2:77:a8:b6:be:93:cc:8a:a3:
29:4c:9c:0f:bc:c2:37:2c:ba:bb:5b:5f:81:0e:15:67:f9:f9:
07:c7:de:29:2b:c1:68:06:d0:1e:7e:6e:db:6e:db:8a:99:72:
f3:68:09:10:aa:87:81:6d:4f:58:e9:d3:8d:9a:db:9a:f0:3d:
ae:6f:62:9e:80:40:0a:45:e5:ff:b6:df:72:8a:85:d4:db:7e:
5b:f2:6e:2e:8c:ad:c8:e9:e7:14:04:ee:71:f8:a5:d1:c8:9f:
fc:23:dc:8b:4f:d6:a1:b9:73:56:dc:db:06:a7:69:f9:58:e6:
1c:5f:01:2b:68:f7:61:89:43:92:b7:98:54:5a:f9:80:74:b6:
a3:d9:b1:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkxJUe+HWcJkxKdiHgcMgGtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyNDMyYTMxOWY1NGIwNTgzNzJmZDMyNTI4ZWFlNTFmYzkw
YzE1YjIwHhcNMjUwOTEwMDEwMjMwWhcNMjUwOTExMDEwMjMwWjAzMTEwLwYDVQQD
Eyg5ZDNiNTk4YmZjOTgyNTE0NWUxOGQwYTRiNjBhODg0YzEyZDJjYzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1TFrcH0U0zwsS6IcLyQP1fE1u4m
ZEVOOg6nxJgAQDvm+bJQ3n2GnuCPloHEBDqHr0kb5r3dEeQg0gYqDdrXarDmMp2X
zv40OHNnXLy1r16Z7IkbCHmxrcNR41RYl+yNIq32/JoeGFQsB3dXTSkT0CVeHEzG
rC0WHr61L5r01PBtGFzNn+y91gFrPoZD0EbPdwxL2Klpxfncn408OHwk2Bd4VJyu
lXzQfwavx8uPcHM1QosFZzY1qCcr5Qvn183N8WwXF5YNkJwEdAYGICLFiA/aHvEY
5eKkoBTa983P4j7+l+DqfPVLdG1742NtPW4ytRC4hhp7IxwAHAj0N2VIVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ07WYv8mCUUXhjQpLYKiEwS0syNMB8GA1UdIwQY
MBaAFEJDKjGfVLBYNy/TJSjq5R/JDBWyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWtNcU1aOVVzRmczTDlNbEtPcmxIOGtNRmJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS83YWI3OWMtOWRmZi00YTVkLWFlODMt
MTMxZGMyYmEyZWM4LzEvUWtNcU1aOVVzRmczTDlNbEtPcmxIOGtNRmJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS83YWI3OWMtOWRmZi00YTVkLWFlODMtMTMxZGMyYmEyZWM4
LzEvUWtNcU1aOVVzRmczTDlNbEtPcmxIOGtNRmJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK7feZqYu
0DA56QJXagAz+wgrXCv77HTZbPisKIXH/W7++HemWOQgnAMehQ1aTcWFxkNkcdSS
Q5r3i0IUpcG9yPlvfHrwr75kQfsl1EuaJWoy44+wn4V8h47Wl/2fwQS7NuIstqgc
jNAHKhhqiXKG2ZY69/be0neotr6TzIqjKUycD7zCNyy6u1tfgQ4VZ/n5B8feKSvB
aAbQHn5u227biply82gJEKqHgW1PWOnTjZrbmvA9rm9inoBACkXl/7bfcoqF1Nt+
W/JuLoytyOnnFATucfil0cif/CPci0/WoblzVtzbBqdp+VjmHF8BK2j3YYlDkreY
VFr5gHS2o9mx5A==
-----END CERTIFICATE-----
Generated at Wed Sep 10 03:11:25 2025 by rpki-client