Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
File: Q8FllZZq-wus8deTfyRdagUiIaM.mft (raw, json)
Hash identifier: 5lHcIucHZFhli5fZWpj86sNjy1TkxSVZ4PyyIZUxbsY=
Subject key identifier: 07:6A:A6:CF:61:E6:84:4E:00:88:67:76:F6:B1:89:A1:D4:5A:FB:69
Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3
Certificate serial: 019A13F23D3372B9D4F6F8B5B8FE44A88C9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
Manifest number: 16F1
Signing time: Fri 24 Oct 2025 02:00:33 +0000
Manifest this update: Fri 24 Oct 2025 02:00:33 +0000
Manifest next update: Sat 25 Oct 2025 02:00:33 +0000
Files and hashes: 1: 52v68hN6UT4PPJjjqq1uuE_KUSs.roa (hash: /ZapQrg7UEXSt0NcWwZ+kj+0zgSiaiRBd7g+qhPDHBg=)
2: 8S9ibO6esCTeLY2sD14WhmMZOvI.roa (hash: bmTNDF41Sq+c7Se/EWf8YA8iGIHNg20TI2zfC/lGrO0=)
3: Q8FllZZq-wus8deTfyRdagUiIaM.crl (hash: rNFXjt3fswJzSbYLj/By4gktRso5pVbg81NUjGG8pZ4=)
4: WvCj9VbsFj7fqJOx6tk2wit_WpE.roa (hash: /cLe2CDT0v+6sDR4E14KbBpNPCZZWPI/9CgtItdZn+0=)
5: a5Civ4TQY8vU2rue9PuRjdGc5Mc.roa (hash: QP4yk7Jx/AL7wrs9Y5ybfTghTEkjk/U3Nsn5OFbBsqk=)
6: gqvKWohVcj0Z7jlOtSMQwdCwp3g.roa (hash: hvyUYeos7vf6+TZ2NgvLPFstgzyNO3xqXZO7/gB/Dow=)
7: i6WUIDE1FurqyNNZ1EYEHsIVqvc.roa (hash: n8PwD1+DrWnTVld/M9MqGCrSY8HTEouEds18pHnIKJc=)
8: wcgpIPyLYXjF-mxVtLsqKcIhJUw.roa (hash: fPxLKa63iRiB09wOZmOOW+AEuYUUjId9x8Px9btJcDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:13:f2:3d:33:72:b9:d4:f6:f8:b5:b8:fe:44:a8:8c:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3
Validity
Not Before: Oct 24 02:00:33 2025 GMT
Not After : Oct 25 02:00:33 2025 GMT
Subject: CN=076aa6cf61e6844e00886776f6b189a1d45afb69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ce:3a:40:37:43:1c:4e:20:09:9c:9f:24:3e:
1a:34:d6:7e:19:d9:66:81:38:b0:09:ee:a8:a5:ba:
4b:9a:4b:0f:31:af:e5:40:a7:4f:75:41:02:9d:78:
0f:d2:48:1f:bd:be:8e:44:bd:61:e5:35:7d:ee:db:
10:03:85:a5:53:78:2c:32:fe:67:41:0d:1d:2e:2f:
c5:69:dd:6d:14:70:d3:1e:25:4d:16:8d:af:4a:06:
30:22:2d:64:5b:4a:ed:0b:86:83:8b:12:11:07:f7:
a1:c5:c0:bb:86:dd:80:54:5e:bc:8a:71:be:a3:86:
d1:12:6c:1a:9e:a3:7b:f0:28:57:d5:e5:4d:4c:d4:
17:c1:d3:1f:1d:0e:34:0a:c2:2e:eb:e4:54:05:27:
f8:65:09:67:9e:7a:6b:86:9d:a8:34:4a:7c:32:db:
c8:c1:be:bd:73:cf:39:9f:15:9b:ab:15:63:5f:f4:
55:bd:d6:65:f4:21:9a:7e:69:e1:7f:3a:35:dd:f7:
29:29:4e:c9:b9:9b:a0:76:3e:3d:bc:47:ce:f3:64:
9d:33:8e:e4:5c:bf:a4:a5:02:ff:1f:a1:7b:b2:52:
4a:a5:b5:d5:19:63:10:ff:d3:f5:90:fa:77:9e:ba:
4d:4f:62:72:01:fc:26:9c:86:3c:17:7f:d1:d6:f4:
97:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:6A:A6:CF:61:E6:84:4E:00:88:67:76:F6:B1:89:A1:D4:5A:FB:69
X509v3 Authority Key Identifier:
keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:ba:5c:9e:f8:97:7d:4e:03:a0:90:ea:af:6d:d4:ec:6d:4f:
1f:3c:c2:c9:ce:7d:9f:ef:3c:f4:a7:42:6a:28:d4:69:a5:2a:
43:71:ac:5a:39:22:77:4e:2c:03:0d:b5:8f:63:ac:a4:b6:be:
3a:22:3a:41:7a:b8:10:bf:d0:29:ea:fb:9b:51:b3:2e:6c:8d:
d0:d2:4c:05:cd:df:0b:98:11:eb:0d:97:b1:ec:f7:38:6f:4d:
70:c7:ce:4b:10:90:c7:22:64:7a:40:ba:6a:4c:09:5f:96:17:
c7:4a:4f:99:5e:7c:d1:24:1d:2b:2a:94:46:3b:13:4d:8b:dc:
38:ba:63:43:51:88:cf:94:f6:87:23:00:3f:48:55:c8:e5:32:
8b:ba:8f:11:31:57:f1:f6:c8:9d:92:19:9b:c0:26:aa:d7:98:
63:08:88:ec:45:6b:d5:33:c3:36:31:73:86:52:8f:05:c6:0c:
25:90:d8:d0:2f:25:75:8f:96:69:40:28:f5:78:8a:37:6e:ad:
04:21:07:ef:2e:a8:ad:6f:54:e4:f2:13:ce:3e:cd:de:f3:ca:
d5:c3:8c:76:47:d0:33:f7:68:64:82:8a:20:33:85:07:f4:32:
13:ab:3f:97:9a:bb:01:c2:3b:f2:d6:2e:99:1c:94:6e:7e:e9:
db:a2:da:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoT8j0zcrnU9vi1uP5EqIycMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzYzE2NTk1OTY2YWZiMGJhY2YxZDc5MzdmMjQ1ZDZhMDUy
MjIxYTMwHhcNMjUxMDI0MDIwMDMzWhcNMjUxMDI1MDIwMDMzWjAzMTEwLwYDVQQD
EygwNzZhYTZjZjYxZTY4NDRlMDA4ODY3NzZmNmIxODlhMWQ0NWFmYjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAis46QDdDHE4gCZyfJD4aNNZ+Gdlm
gTiwCe6opbpLmksPMa/lQKdPdUECnXgP0kgfvb6ORL1h5TV97tsQA4WlU3gsMv5n
QQ0dLi/Fad1tFHDTHiVNFo2vSgYwIi1kW0rtC4aDixIRB/ehxcC7ht2AVF68inG+
o4bREmwanqN78ChX1eVNTNQXwdMfHQ40CsIu6+RUBSf4ZQlnnnprhp2oNEp8MtvI
wb69c885nxWbqxVjX/RVvdZl9CGafmnhfzo13fcpKU7JuZugdj49vEfO82SdM47k
XL+kpQL/H6F7slJKpbXVGWMQ/9P1kPp3nrpNT2JyAfwmnIY8F3/R1vSXiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAdqps9h5oROAIhndvaxiaHUWvtpMB8GA1UdIwQY
MBaAFEPBZZWWavsLrPHXk38kXWoFIiGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGIt
NTk5MGVhNThlMDMwLzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGItNTk5MGVhNThlMDMw
LzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYbpcnviX
fU4DoJDqr23U7G1PHzzCyc59n+889KdCaijUaaUqQ3GsWjkid04sAw21j2OspLa+
OiI6QXq4EL/QKer7m1GzLmyN0NJMBc3fC5gR6w2Xsez3OG9NcMfOSxCQxyJkekC6
akwJX5YXx0pPmV580SQdKyqURjsTTYvcOLpjQ1GIz5T2hyMAP0hVyOUyi7qPETFX
8fbInZIZm8AmqteYYwiI7EVr1TPDNjFzhlKPBcYMJZDY0C8ldY+WaUAo9XiKN26t
BCEH7y6orW9U5PITzj7N3vPK1cOMdkfQM/doZIKKIDOFB/QyE6s/l5q7AcI78tYu
mRyUbn7p26La0w==
-----END CERTIFICATE-----
Generated at Fri Oct 24 05:29:23 2025 by rpki-client