Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: SzjFEcELxpJujBWODD09N/oSPEieXWQ/EMs3I6+ZU0U=
Subject key identifier: 62:F8:2A:1C:AA:BB:31:05:4B:A2:EB:E3:B3:94:33:31:20:C9:0B:73
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 019A2108DD0363F2239A8925AA1DF3E8C650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 0423
Signing time: Sun 26 Oct 2025 15:00:20 +0000
Manifest this update: Sun 26 Oct 2025 15:00:20 +0000
Manifest next update: Mon 27 Oct 2025 15:00:20 +0000
Files and hashes: 1: 21zXl1VT2wOLl9fEbNkRa053DOE.roa (hash: 5emuQVjcm3y58xrRXNGECOspFNylmBXZoEALIIh48B4=)
2: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: jY0x7vYNfIV7k2TjL1u/AA97OkR+HLn+FYfLaFymgb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:08:dd:03:63:f2:23:9a:89:25:aa:1d:f3:e8:c6:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Oct 26 15:00:20 2025 GMT
Not After : Oct 27 15:00:20 2025 GMT
Subject: CN=62f82a1caabb31054ba2ebe3b394333120c90b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1c:5c:37:58:a0:25:6c:30:a4:3c:1e:29:39:
82:6e:5b:2f:bc:a9:89:1b:1a:23:64:2d:08:6f:07:
3d:c2:a6:f5:d7:5d:9b:c8:19:d6:c9:8b:9e:e7:46:
fc:5d:af:76:d8:03:c2:71:55:fc:47:b7:e9:cf:51:
af:12:b1:b7:aa:01:a4:27:34:af:25:3e:65:96:14:
0e:04:35:a7:5f:63:06:4a:fa:ac:2e:6d:68:d6:31:
82:8b:3e:c0:cf:ab:be:96:0a:c8:6b:9a:44:1d:6f:
23:2e:26:74:f5:38:5f:b8:12:77:18:da:01:c7:2c:
91:16:30:47:bf:ed:72:07:a2:be:17:4e:2f:f7:7b:
fc:f0:86:9d:c9:61:32:26:c1:cc:51:39:f7:f5:1c:
93:8c:07:9c:54:6f:1f:42:49:d6:10:51:15:e6:72:
82:89:59:50:8a:52:c8:48:76:f6:bb:6a:77:3d:dc:
4d:38:13:93:f5:49:b3:cf:ae:7e:83:06:04:f5:28:
08:29:20:32:d1:24:1e:e8:15:47:d7:0c:17:8d:9a:
15:bb:bb:93:be:40:97:52:ca:e0:a9:99:ba:96:be:
81:1c:6c:51:24:e1:4d:7c:63:07:e5:b7:5c:6c:e9:
0d:f0:6b:54:ab:4b:d4:74:04:1b:09:1c:64:22:ae:
bd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F8:2A:1C:AA:BB:31:05:4B:A2:EB:E3:B3:94:33:31:20:C9:0B:73
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b0:85:e7:36:65:83:6d:f4:13:a8:6f:ca:c6:f5:3f:74:4c:
8a:42:ea:d9:9f:31:ad:0a:a1:f5:af:f3:7c:17:e9:0d:ac:01:
75:83:3a:31:97:92:4d:dd:80:a6:b3:65:c5:4c:d9:5f:59:6c:
29:24:18:e0:b3:0a:10:06:d9:92:e2:a9:ae:91:c3:79:7e:88:
b4:e2:b1:20:4d:a2:1d:d3:b4:90:07:81:a6:86:42:db:e0:ef:
f6:45:e1:76:ec:47:6d:d5:94:20:d3:58:37:a7:59:22:01:d3:
d2:31:67:51:04:dc:9e:72:e9:30:4f:03:2e:9b:c8:d5:f7:8c:
55:39:5c:15:6c:1d:65:10:14:1e:41:6e:be:e8:50:66:3f:b9:
59:7a:8c:10:39:90:55:0b:7e:6b:1a:17:86:d4:33:75:7e:ca:
93:2b:52:86:64:61:6c:e3:b7:ee:6e:6b:e6:ba:2f:50:32:83:
61:36:b0:f3:4f:16:a2:03:42:a2:cd:de:2a:02:6b:01:fe:3b:
34:eb:70:66:d5:b8:04:7f:98:60:61:82:21:76:94:2c:36:d0:
72:58:1d:c0:34:34:d6:54:3f:7f:a1:b3:eb:be:bb:8c:dc:aa:
dc:82:97:58:55:69:da:ea:70:2e:8b:ea:5d:de:01:f4:96:91:
23:4d:c3:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZohCN0DY/Ijmoklqh3z6MZQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyZGNkNGQxYmQzZGYyOWFkZDQwNzViNjhmMjlhZjkwNzA0
NzQ0M2MwHhcNMjUxMDI2MTUwMDIwWhcNMjUxMDI3MTUwMDIwWjAzMTEwLwYDVQQD
Eyg2MmY4MmExY2FhYmIzMTA1NGJhMmViZTNiMzk0MzMzMTIwYzkwYjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqRxcN1igJWwwpDweKTmCblsvvKmJ
GxojZC0Ibwc9wqb1112byBnWyYue50b8Xa922APCcVX8R7fpz1GvErG3qgGkJzSv
JT5llhQOBDWnX2MGSvqsLm1o1jGCiz7Az6u+lgrIa5pEHW8jLiZ09ThfuBJ3GNoB
xyyRFjBHv+1yB6K+F04v93v88IadyWEyJsHMUTn39RyTjAecVG8fQknWEFEV5nKC
iVlQilLISHb2u2p3PdxNOBOT9Umzz65+gwYE9SgIKSAy0SQe6BVH1wwXjZoVu7uT
vkCXUsrgqZm6lr6BHGxRJOFNfGMH5bdcbOkN8GtUq0vUdAQbCRxkIq69gwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGL4KhyquzEFS6Lr47OUMzEgyQtzMB8GA1UdIwQY
MBaAFELc1NG9PfKa3UB1to8pr5BwR0Q8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXR6VTBiMDk4cHJkUUhXMmp5bXZrSEJIUkR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8yOTdmMWUtOTIyYi00NWI0LTg5M2Yt
ZmI5OGZlM2RiYzE0LzEvUXR6VTBiMDk4cHJkUUhXMmp5bXZrSEJIUkR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8yOTdmMWUtOTIyYi00NWI0LTg5M2YtZmI5OGZlM2RiYzE0
LzEvUXR6VTBiMDk4cHJkUUhXMmp5bXZrSEJIUkR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW7CF5zZl
g230E6hvysb1P3RMikLq2Z8xrQqh9a/zfBfpDawBdYM6MZeSTd2AprNlxUzZX1ls
KSQY4LMKEAbZkuKprpHDeX6ItOKxIE2iHdO0kAeBpoZC2+Dv9kXhduxHbdWUINNY
N6dZIgHT0jFnUQTcnnLpME8DLpvI1feMVTlcFWwdZRAUHkFuvuhQZj+5WXqMEDmQ
VQt+axoXhtQzdX7KkytShmRhbOO37m5r5rovUDKDYTaw808WogNCos3eKgJrAf47
NOtwZtW4BH+YYGGCIXaULDbQclgdwDQ01lQ/f6Gz6767jNyq3IKXWFVp2upwLovq
Xd4B9JaRI03DZQ==
-----END CERTIFICATE-----
Generated at Sun Oct 26 20:25:55 2025 by rpki-client