Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier: 4duaNlFk5ZU9AoyrRx8VaMkB3Sr+D5Q8VYqgb9Q3qAM=
Subject key identifier: 22:7D:65:A7:CD:C5:2E:7D:1B:BA:3C:8C:A6:1F:DD:93:E6:55:E7:FC
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer: /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial: 019923A092803CB3602CB35794E8BFC6468C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number: 0C5E
Signing time: Sun 07 Sep 2025 10:02:29 +0000
Manifest this update: Sun 07 Sep 2025 10:02:29 +0000
Manifest next update: Mon 08 Sep 2025 10:02:29 +0000
Files and hashes: 1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: IO0iMgNLYfmALP7gnHh/JORMkb7i+qQlPMSdp67b9lQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:92:80:3c:b3:60:2c:b3:57:94:e8:bf:c6:46:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Validity
Not Before: Sep 7 10:02:29 2025 GMT
Not After : Sep 8 10:02:29 2025 GMT
Subject: CN=227d65a7cdc52e7d1bba3c8ca61fdd93e655e7fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:36:24:be:2c:98:4d:35:a0:77:bf:ff:ff:5f:
15:2e:48:dd:ee:cc:a4:aa:51:b4:2b:90:c5:b8:cb:
93:88:ca:d7:60:b3:3f:3b:d5:95:2e:0c:ef:5a:22:
4f:17:5e:e7:d9:ea:9b:bf:b4:04:55:7a:78:07:22:
60:c7:f8:eb:63:a3:a2:8b:97:e3:74:84:26:b9:f0:
12:7f:20:85:21:3a:26:d8:a6:fe:24:f9:fa:9a:ce:
36:c1:e1:8d:cd:26:3e:af:c2:80:5e:c8:09:51:fc:
df:eb:c3:01:f9:c8:f0:62:a1:2c:8c:d9:76:5d:95:
a5:53:64:dc:9a:1d:44:f3:f9:3c:b6:19:64:e7:60:
a1:fa:bd:b3:ad:99:e4:d6:b3:cd:ad:b6:6d:03:c8:
e5:e3:5b:63:d7:a9:7f:62:94:0b:49:82:d1:b8:c1:
e5:a3:0e:c7:3d:01:38:23:fc:26:b1:9a:fc:51:8e:
90:8e:91:c6:10:47:5d:9a:77:de:99:38:ea:bb:0b:
23:6e:c0:1c:a3:07:6f:c0:3d:1a:9c:ef:22:92:8e:
9b:da:68:28:91:e8:88:cf:95:3b:94:41:c3:fe:51:
89:0e:a6:9e:f4:07:58:6f:90:b6:b9:cc:47:66:da:
79:4d:b5:fb:ee:5b:98:19:6d:15:74:13:e2:bc:39:
ac:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:7D:65:A7:CD:C5:2E:7D:1B:BA:3C:8C:A6:1F:DD:93:E6:55:E7:FC
X509v3 Authority Key Identifier:
keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:b9:09:57:a2:bd:1d:fb:f4:69:9a:ea:04:82:ec:83:fb:2d:
da:79:bf:a9:c1:5b:39:c7:6d:f1:24:95:56:ac:f4:d4:f0:30:
8f:b9:ac:29:52:d2:86:6f:e0:9f:5d:79:8f:07:0c:ad:04:cf:
5e:51:cb:6e:92:8a:ea:f6:2e:f1:d3:3e:21:ec:c8:0a:13:f8:
15:58:c3:a7:2e:8c:15:9a:a5:db:ef:19:f1:8e:e2:32:4d:05:
b6:07:ba:4f:04:d4:a4:a0:1f:62:65:72:73:7e:03:88:8a:1e:
11:8b:84:4c:9c:d4:b6:80:16:80:00:c7:48:c9:da:70:6d:65:
2d:85:a1:3c:c4:11:62:e1:eb:d5:cc:5c:ce:8d:b2:8d:b6:fc:
1a:da:30:e7:f0:2a:1f:fc:4e:76:69:5c:c9:b2:e1:8d:41:ac:
c9:62:56:42:b7:5d:e8:4f:7e:bb:ae:44:ed:6b:14:c0:ef:c5:
9c:b9:af:55:31:2a:af:e6:2b:a0:fa:a4:aa:ab:c4:fe:1d:0a:
34:4b:98:86:04:61:f4:da:ee:48:da:a4:bd:df:62:b8:5e:c7:
9d:11:14:fc:c3:12:6c:89:2d:3e:95:e7:5a:88:48:6d:b2:56:
c9:85:d9:ea:ac:60:a7:e9:2f:10:62:64:06:9b:3b:69:9b:e2:
7e:8f:54:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjoJKAPLNgLLNXlOi/xkaMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMmRhZDgyMDY5OWYxNTNhMzFhNjZlZDY3ODNhMWRlNGUw
ZjhjZjUwHhcNMjUwOTA3MTAwMjI5WhcNMjUwOTA4MTAwMjI5WjAzMTEwLwYDVQQD
EygyMjdkNjVhN2NkYzUyZTdkMWJiYTNjOGNhNjFmZGQ5M2U2NTVlN2ZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTYkviyYTTWgd7///18VLkjd7syk
qlG0K5DFuMuTiMrXYLM/O9WVLgzvWiJPF17n2eqbv7QEVXp4ByJgx/jrY6Oii5fj
dIQmufASfyCFITom2Kb+JPn6ms42weGNzSY+r8KAXsgJUfzf68MB+cjwYqEsjNl2
XZWlU2Tcmh1E8/k8thlk52Ch+r2zrZnk1rPNrbZtA8jl41tj16l/YpQLSYLRuMHl
ow7HPQE4I/wmsZr8UY6QjpHGEEddmnfemTjquwsjbsAcowdvwD0anO8iko6b2mgo
keiIz5U7lEHD/lGJDqae9AdYb5C2ucxHZtp5TbX77luYGW0VdBPivDmsSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCJ9ZafNxS59G7o8jKYf3ZPmVef8MB8GA1UdIwQY
MBaAFEEtrYIGmfFToxpm7WeDod5OD4z1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iYTk0ZjQtOGEyMC00ZDEwLTkyN2Yt
YTg4MmRhNmMwY2ZjLzEvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9iYTk0ZjQtOGEyMC00ZDEwLTkyN2YtYTg4MmRhNmMwY2Zj
LzEvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAArkJV6K9
Hfv0aZrqBILsg/st2nm/qcFbOcdt8SSVVqz01PAwj7msKVLShm/gn115jwcMrQTP
XlHLbpKK6vYu8dM+IezIChP4FVjDpy6MFZql2+8Z8Y7iMk0Ftge6TwTUpKAfYmVy
c34DiIoeEYuETJzUtoAWgADHSMnacG1lLYWhPMQRYuHr1cxczo2yjbb8Gtow5/Aq
H/xOdmlcybLhjUGsyWJWQrdd6E9+u65E7WsUwO/FnLmvVTEqr+YroPqkqqvE/h0K
NEuYhgRh9NruSNqkvd9iuF7HnREU/MMSbIktPpXnWohIbbJWyYXZ6qxgp+kvEGJk
Bps7aZvifo9U0Q==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:42:37 2025 by rpki-client