Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
File: qWpTYQ2O9mShJ1txquq7KFEEwk8.mft (raw, json)
Hash identifier: Zo42cItsNV8eUc/n9oalggd+uX0bkoXLG5MgSSuIfok=
Subject key identifier: E2:2D:59:6B:56:18:74:75:41:84:3C:62:D1:C5:6E:5C:BA:3B:55:04
Authority key identifier: A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
Certificate issuer: /CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Certificate serial: 019921B2828BF861DAE09E0B4EC1FBCBB11A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
Manifest number: 166D
Signing time: Sun 07 Sep 2025 01:02:50 +0000
Manifest this update: Sun 07 Sep 2025 01:02:50 +0000
Manifest next update: Mon 08 Sep 2025 01:02:50 +0000
Files and hashes: 1: qWpTYQ2O9mShJ1txquq7KFEEwk8.crl (hash: MOuV9QcwRGAcED51w5LSkHG0tLgaN7IGPMyT03FSM7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:82:8b:f8:61:da:e0:9e:0b:4e:c1:fb:cb:b1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Validity
Not Before: Sep 7 01:02:50 2025 GMT
Not After : Sep 8 01:02:50 2025 GMT
Subject: CN=e22d596b5618747541843c62d1c56e5cba3b5504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e5:a0:c3:d1:1c:4e:63:c7:38:bf:ae:51:e6:
b9:85:e5:b4:f0:b9:44:41:35:39:2a:21:cd:48:03:
11:ec:82:e2:a6:3b:39:ea:fb:f0:0e:35:9f:3d:fc:
ef:70:02:54:e2:12:b5:7b:22:10:d6:e8:a4:4e:e7:
92:ca:3f:c0:e6:6d:e2:97:c8:8d:76:f2:df:c8:da:
25:fd:27:5e:57:c8:f2:f1:a0:6b:92:90:24:1c:9b:
b9:dc:66:04:e4:70:fe:20:d4:ba:88:28:38:d5:e4:
46:6e:72:a5:26:a3:83:1b:93:be:e4:d0:98:82:db:
4a:09:e3:ef:49:5b:4d:0e:20:30:3a:8e:6a:fd:b5:
de:38:9e:78:9c:6a:ec:79:fb:30:0b:3d:60:7a:b4:
90:03:78:8d:da:91:0e:4b:4d:8b:60:ae:b7:28:a7:
2f:61:40:6e:9c:b0:9b:75:b9:96:6a:65:4c:7e:41:
b6:19:3b:46:ae:e4:25:13:76:1a:41:4d:c0:94:2b:
fd:56:62:10:93:f5:e2:03:df:16:27:b6:4d:00:d7:
c6:21:10:36:d3:8b:10:d2:75:4a:c1:9d:73:85:5a:
cb:48:d7:dd:d0:32:e9:3f:26:08:bf:43:6b:ee:42:
6d:ad:68:28:12:f6:5d:8d:a5:0e:85:df:bc:e4:4c:
26:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:2D:59:6B:56:18:74:75:41:84:3C:62:D1:C5:6E:5C:BA:3B:55:04
X509v3 Authority Key Identifier:
keyid:A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:31:fc:57:81:9b:ab:08:5f:9c:70:4d:46:5d:a8:20:68:85:
af:79:b4:7d:95:d2:a4:b2:6d:a1:b6:0f:da:3d:6a:16:75:8b:
1d:a3:81:88:81:5a:5b:98:24:23:b1:6e:94:3a:c0:6c:4a:b1:
46:6b:ac:47:e6:c1:98:ad:a9:74:96:c0:14:b8:cc:36:53:45:
31:13:88:a4:5a:03:ac:35:60:fa:ad:d7:64:02:62:46:fb:0a:
ad:07:05:6d:3a:68:35:a7:9a:32:54:6f:53:c5:6b:86:e2:e7:
16:36:bd:3e:38:51:a3:35:69:96:29:ff:d6:34:0a:03:c9:15:
f9:f2:af:5a:90:0d:d6:ed:c3:34:67:0a:32:6e:dd:7a:10:1d:
3a:01:ac:54:da:c4:65:bb:60:46:d6:c4:cf:5e:0c:25:d8:a7:
bf:07:97:1c:4d:d3:79:57:be:14:c1:57:5b:70:de:cc:00:c3:
94:ca:f5:cd:44:50:12:7e:1a:3a:34:bd:56:f5:82:a1:b2:21:
91:23:4e:3b:a0:0e:f0:09:ee:8a:60:31:14:a9:62:4c:42:4d:
80:10:f7:11:83:7b:f3:c4:a5:39:9b:54:ef:80:11:91:13:6a:
60:88:08:7f:d4:59:da:75:34:9b:3f:83:6d:1e:58:96:c9:31:
66:b0:ae:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsoKL+GHa4J4LTsH7y7EaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5NmE1MzYxMGQ4ZWY2NjRhMTI3NWI3MWFhZWFiYjI4NTEw
NGMyNGYwHhcNMjUwOTA3MDEwMjUwWhcNMjUwOTA4MDEwMjUwWjAzMTEwLwYDVQQD
EyhlMjJkNTk2YjU2MTg3NDc1NDE4NDNjNjJkMWM1NmU1Y2JhM2I1NTA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+Wgw9EcTmPHOL+uUea5heW08LlE
QTU5KiHNSAMR7ILipjs56vvwDjWfPfzvcAJU4hK1eyIQ1uikTueSyj/A5m3il8iN
dvLfyNol/SdeV8jy8aBrkpAkHJu53GYE5HD+INS6iCg41eRGbnKlJqODG5O+5NCY
gttKCePvSVtNDiAwOo5q/bXeOJ54nGrsefswCz1gerSQA3iN2pEOS02LYK63KKcv
YUBunLCbdbmWamVMfkG2GTtGruQlE3YaQU3AlCv9VmIQk/XiA98WJ7ZNANfGIRA2
04sQ0nVKwZ1zhVrLSNfd0DLpPyYIv0Nr7kJtrWgoEvZdjaUOhd+85EwmwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOItWWtWGHR1QYQ8YtHFbly6O1UEMB8GA1UdIwQY
MBaAFKlqU2ENjvZkoSdbcarquyhRBMJPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcVdwVFlRMk85bVNoSjF0eHF1cTdLRkVFd2s4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi81YTAxN2MtYTNkYy00NGNmLWI4MGUt
YTIxMTE3NWMwNWUwLzEvcVdwVFlRMk85bVNoSjF0eHF1cTdLRkVFd2s4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi81YTAxN2MtYTNkYy00NGNmLWI4MGUtYTIxMTE3NWMwNWUw
LzEvcVdwVFlRMk85bVNoSjF0eHF1cTdLRkVFd2s4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkTH8V4Gb
qwhfnHBNRl2oIGiFr3m0fZXSpLJtobYP2j1qFnWLHaOBiIFaW5gkI7FulDrAbEqx
RmusR+bBmK2pdJbAFLjMNlNFMROIpFoDrDVg+q3XZAJiRvsKrQcFbTpoNaeaMlRv
U8VrhuLnFja9PjhRozVplin/1jQKA8kV+fKvWpAN1u3DNGcKMm7dehAdOgGsVNrE
ZbtgRtbEz14MJdinvweXHE3TeVe+FMFXW3DezADDlMr1zURQEn4aOjS9VvWCobIh
kSNOO6AO8AnuimAxFKliTEJNgBD3EYN788SlOZtU74ARkRNqYIgIf9RZ2nU0mz+D
bR5YlskxZrCuQg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:02 2025 by rpki-client