Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: OxGpEmuOY/ziTXI9eUvkX5nY/sAVU95CI50hG3cq6Rc=
Subject key identifier: 90:C1:6D:D5:03:09:74:A6:A6:B5:97:FF:C5:42:E2:BA:13:73:41:78
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 019921B0AD6937D2310D8C9F4E1A79887B71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1676
Signing time: Sun 07 Sep 2025 01:00:50 +0000
Manifest this update: Sun 07 Sep 2025 01:00:50 +0000
Manifest next update: Mon 08 Sep 2025 01:00:50 +0000
Files and hashes: 1: 1-QaESH-Y2QhPqcpSoi8t5RQnRzA.roa (hash: tm4k5KqgYtwGTZCVOd0pYNB6yIwBE4zoDNRsM5SfEu8=)
2: Ivy3m4Flvw_zoq8Hw6rIxjNbc60.roa (hash: r8eSfS6R14mAIVwo2SfhQBG0x09EdYm/K0sgoOKrdGE=)
3: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: 3hfV7vz4P88WhAYmFB0WXK5a7TMDc/O286kz6u/aYfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:ad:69:37:d2:31:0d:8c:9f:4e:1a:79:88:7b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Sep 7 01:00:50 2025 GMT
Not After : Sep 8 01:00:50 2025 GMT
Subject: CN=90c16dd5030974a6a6b597ffc542e2ba13734178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6c:71:8c:b0:5e:7f:4c:13:18:a4:15:1f:3e:
5c:1d:d1:33:56:db:2f:34:d4:0e:dc:73:76:43:ea:
6d:25:cf:fc:e8:f7:02:77:ad:c0:6c:b8:3b:2a:72:
e4:0c:33:5f:6f:3b:75:ed:7c:50:0a:29:9d:94:63:
95:36:6e:65:6a:fa:09:29:7e:36:75:d5:8a:b8:15:
26:d2:22:41:0a:a3:dd:03:d3:7c:3c:c8:50:f1:6c:
06:25:e2:a2:08:31:ec:76:0c:7f:0b:87:b4:ae:3b:
69:95:9a:63:76:24:23:87:b1:d4:ea:ae:8a:60:3d:
6e:02:d8:77:f8:74:cc:22:c5:fc:15:f0:c1:cd:48:
a4:bb:98:b0:39:17:02:a5:b1:b2:31:bb:e6:77:0a:
41:eb:d4:64:65:1e:83:c2:1b:5c:07:0a:3d:2b:77:
7e:8f:85:f8:7e:e4:f7:c4:d7:14:1e:95:8f:d2:2d:
93:3f:16:83:0c:08:2e:71:d4:b9:aa:44:a7:17:ef:
ce:d2:6f:8b:c4:58:ca:1a:b4:49:71:96:e2:81:f4:
38:50:79:37:37:ea:ae:92:bb:d8:7a:d9:da:a9:98:
de:3e:e5:03:63:36:62:71:b8:2d:18:96:65:36:f5:
23:67:cf:a4:44:f1:47:7e:ad:6f:4c:21:4b:89:3b:
79:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C1:6D:D5:03:09:74:A6:A6:B5:97:FF:C5:42:E2:BA:13:73:41:78
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:11:1c:e8:19:74:60:bd:e3:01:2b:4f:33:f8:7f:ac:27:f1:
03:e8:68:3b:69:66:97:80:25:b8:30:ea:5c:cf:53:6e:26:ce:
60:57:cd:40:14:24:07:8d:c2:87:11:25:e8:c9:cd:4f:56:81:
fb:32:fa:ba:91:14:b2:76:0c:82:f9:a4:ea:48:82:2f:a6:fd:
c4:cc:ca:33:3f:1d:9e:ad:4d:7b:8c:9b:76:ea:ac:dd:13:f9:
18:d9:a9:45:bf:0b:ba:94:8b:98:a9:cc:91:dd:d2:9c:9c:ea:
d5:6d:dc:0d:ad:76:bc:3e:23:6d:84:7e:8c:d5:c3:98:a4:90:
2e:12:3e:13:90:c3:b7:da:cd:d4:93:62:94:f2:c9:d4:59:7c:
d9:27:9a:13:ab:1b:42:aa:b4:e9:d7:91:7e:bf:8d:71:78:a6:
59:48:e0:22:e8:82:62:97:5a:4f:7c:e0:5d:9c:3c:37:4e:a4:
1d:e1:04:aa:53:84:1e:5b:33:00:6c:9b:ce:5e:2b:21:c6:2e:
b7:a9:84:37:b4:a2:a7:9c:e8:43:af:8f:28:3c:e4:b4:52:bf:
d2:af:c1:0d:77:19:80:ff:8f:f7:9a:05:6a:76:97:cc:ce:4b:
df:b2:20:96:cd:64:f1:5d:39:0c:d5:89:38:d7:20:45:b6:e0:
58:d3:00:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsK1pN9IxDYyfThp5iHtxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMWJhZTk4OTg5OGQ5NDAyNDI0YWFkYWZiYjQ3YzNhNmQ0
YzI1YjMwHhcNMjUwOTA3MDEwMDUwWhcNMjUwOTA4MDEwMDUwWjAzMTEwLwYDVQQD
Eyg5MGMxNmRkNTAzMDk3NGE2YTZiNTk3ZmZjNTQyZTJiYTEzNzM0MTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk2xxjLBef0wTGKQVHz5cHdEzVtsv
NNQO3HN2Q+ptJc/86PcCd63AbLg7KnLkDDNfbzt17XxQCimdlGOVNm5lavoJKX42
ddWKuBUm0iJBCqPdA9N8PMhQ8WwGJeKiCDHsdgx/C4e0rjtplZpjdiQjh7HU6q6K
YD1uAth3+HTMIsX8FfDBzUiku5iwORcCpbGyMbvmdwpB69RkZR6DwhtcBwo9K3d+
j4X4fuT3xNcUHpWP0i2TPxaDDAgucdS5qkSnF+/O0m+LxFjKGrRJcZbigfQ4UHk3
N+qukrvYetnaqZjePuUDYzZicbgtGJZlNvUjZ8+kRPFHfq1vTCFLiTt5sQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJDBbdUDCXSmprWX/8VC4roTc0F4MB8GA1UdIwQY
MBaAFEIbrpiYmNlAJCSq2vu0fDptTCWzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUt
NjdlZmNiM2Q4NmZlLzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUtNjdlZmNiM2Q4NmZl
LzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfBEc6Bl0
YL3jAStPM/h/rCfxA+hoO2lml4AluDDqXM9TbibOYFfNQBQkB43ChxEl6MnNT1aB
+zL6upEUsnYMgvmk6kiCL6b9xMzKMz8dnq1Ne4ybduqs3RP5GNmpRb8LupSLmKnM
kd3SnJzq1W3cDa12vD4jbYR+jNXDmKSQLhI+E5DDt9rN1JNilPLJ1Fl82SeaE6sb
Qqq06deRfr+NcXimWUjgIuiCYpdaT3zgXZw8N06kHeEEqlOEHlszAGybzl4rIcYu
t6mEN7Sip5zoQ6+PKDzktFK/0q/BDXcZgP+P95oFanaXzM5L37Igls1k8V05DNWJ
ONcgRbbgWNMA7w==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:38 2025 by rpki-client