Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: Pr3oiW/ftBBg7ipqy0G1AsJEzRvOo0QCw62nvtRWypE=
Subject key identifier: F5:F3:7E:05:E9:14:36:B3:CC:FA:2F:C1:A4:3A:E0:BC:26:91:EC:E4
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 019931914F5521D02FDEFAFDEA8EA22F6DEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 03A7
Signing time: Wed 10 Sep 2025 03:00:30 +0000
Manifest this update: Wed 10 Sep 2025 03:00:30 +0000
Manifest next update: Thu 11 Sep 2025 03:00:30 +0000
Files and hashes: 1: 21zXl1VT2wOLl9fEbNkRa053DOE.roa (hash: 5emuQVjcm3y58xrRXNGECOspFNylmBXZoEALIIh48B4=)
2: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: Aq4gPOjasFSsMydhzhm0YsEOwnOytWfQiTq6/DaFjjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:91:4f:55:21:d0:2f:de:fa:fd:ea:8e:a2:2f:6d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Sep 10 03:00:30 2025 GMT
Not After : Sep 11 03:00:30 2025 GMT
Subject: CN=f5f37e05e91436b3ccfa2fc1a43ae0bc2691ece4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:25:60:14:b4:50:75:a9:17:3c:ef:ed:5a:24:
0d:bb:f4:4d:8d:24:22:5c:3c:b1:79:cc:65:de:50:
ca:7e:14:4c:97:13:6d:7f:14:fa:3a:dd:64:97:22:
41:57:9d:c5:53:c4:1c:2e:2c:f1:87:f6:cc:d4:73:
6b:7f:94:e3:ef:16:15:1d:8d:9d:71:56:76:1b:44:
f7:30:24:a1:80:80:d1:ec:25:b7:60:08:ac:79:e7:
67:cc:8e:f5:c1:13:f4:5c:2f:e4:28:cb:21:d5:cb:
35:45:cd:49:9b:14:ea:d4:9f:95:33:9e:ef:5a:7b:
93:30:94:c9:eb:b6:94:66:af:a8:b8:9f:69:89:4c:
c3:48:66:5e:44:ac:2b:65:d6:be:6e:28:fc:e8:08:
7c:55:e6:de:8c:77:a9:e0:69:98:ed:88:76:6b:5d:
5b:47:1d:8d:7d:44:2d:1d:f8:66:81:0d:e3:ea:11:
44:76:b3:dd:70:a8:39:43:a7:37:fe:90:06:12:02:
d7:0c:7c:fe:12:d2:47:f3:ab:ac:1b:cd:75:76:70:
49:3e:6a:e6:25:44:61:4f:bf:28:1b:aa:73:d6:0b:
1b:e4:c8:a3:e0:bd:52:ac:14:40:8f:eb:43:94:d5:
41:2e:f9:1f:82:40:4f:5f:63:93:be:86:4c:f7:89:
d6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F3:7E:05:E9:14:36:B3:CC:FA:2F:C1:A4:3A:E0:BC:26:91:EC:E4
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:ac:38:85:27:64:31:5f:4d:38:1e:69:64:78:cd:0c:f2:3f:
ab:fb:e0:9b:bc:5d:e4:c7:13:f4:ee:2b:3d:42:5b:ea:29:41:
2f:49:a0:35:89:6b:0a:11:b9:ba:9d:59:0a:42:eb:e2:c6:e1:
59:05:bc:ad:86:90:7a:c3:75:17:a4:c5:f1:2a:d5:1c:56:cd:
b7:fc:6e:c5:3c:57:c7:96:87:4c:22:87:e6:e6:62:95:b9:d3:
3d:05:80:cd:c2:eb:17:39:b9:f6:da:dc:74:dc:b8:f2:61:b2:
8f:bb:20:1a:e9:d1:0c:38:5c:c0:c8:10:3e:e0:96:df:e4:be:
e6:41:ef:86:a3:8e:c8:2a:9d:ad:09:c9:f6:42:5b:2c:54:48:
1f:f3:7d:b9:95:44:b9:71:59:a8:8d:98:61:82:0b:fc:e8:87:
da:5d:3b:2b:1c:fb:ef:95:a6:59:a3:07:31:f4:b6:2e:a9:84:
86:f9:87:da:0c:14:fe:67:45:6d:e3:e8:0e:66:f5:e4:83:4e:
1c:b7:ef:2b:fc:d2:80:28:d2:eb:e8:7c:7a:dd:0a:f1:b2:00:
30:c1:7b:9b:34:3c:1b:a0:c0:9e:e9:22:56:93:d6:62:b5:70:
f6:ee:17:19:89:88:46:7f:42:b7:07:8a:64:87:d2:69:0b:f4:
a9:a4:5e:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkxkU9VIdAv3vr96o6iL23qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyZGNkNGQxYmQzZGYyOWFkZDQwNzViNjhmMjlhZjkwNzA0
NzQ0M2MwHhcNMjUwOTEwMDMwMDMwWhcNMjUwOTExMDMwMDMwWjAzMTEwLwYDVQQD
EyhmNWYzN2UwNWU5MTQzNmIzY2NmYTJmYzFhNDNhZTBiYzI2OTFlY2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSVgFLRQdakXPO/tWiQNu/RNjSQi
XDyxecxl3lDKfhRMlxNtfxT6Ot1klyJBV53FU8QcLizxh/bM1HNrf5Tj7xYVHY2d
cVZ2G0T3MCShgIDR7CW3YAiseednzI71wRP0XC/kKMsh1cs1Rc1JmxTq1J+VM57v
WnuTMJTJ67aUZq+ouJ9piUzDSGZeRKwrZda+bij86Ah8VebejHep4GmY7Yh2a11b
Rx2NfUQtHfhmgQ3j6hFEdrPdcKg5Q6c3/pAGEgLXDHz+EtJH86usG811dnBJPmrm
JURhT78oG6pz1gsb5Mij4L1SrBRAj+tDlNVBLvkfgkBPX2OTvoZM94nW6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPXzfgXpFDazzPovwaQ64LwmkezkMB8GA1UdIwQY
MBaAFELc1NG9PfKa3UB1to8pr5BwR0Q8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXR6VTBiMDk4cHJkUUhXMmp5bXZrSEJIUkR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8yOTdmMWUtOTIyYi00NWI0LTg5M2Yt
ZmI5OGZlM2RiYzE0LzEvUXR6VTBiMDk4cHJkUUhXMmp5bXZrSEJIUkR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8yOTdmMWUtOTIyYi00NWI0LTg5M2YtZmI5OGZlM2RiYzE0
LzEvUXR6VTBiMDk4cHJkUUhXMmp5bXZrSEJIUkR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP6w4hSdk
MV9NOB5pZHjNDPI/q/vgm7xd5McT9O4rPUJb6ilBL0mgNYlrChG5up1ZCkLr4sbh
WQW8rYaQesN1F6TF8SrVHFbNt/xuxTxXx5aHTCKH5uZilbnTPQWAzcLrFzm59trc
dNy48mGyj7sgGunRDDhcwMgQPuCW3+S+5kHvhqOOyCqdrQnJ9kJbLFRIH/N9uZVE
uXFZqI2YYYIL/OiH2l07Kxz775WmWaMHMfS2LqmEhvmH2gwU/mdFbePoDmb15INO
HLfvK/zSgCjS6+h8et0K8bIAMMF7mzQ8G6DAnukiVpPWYrVw9u4XGYmIRn9CtweK
ZIfSaQv0qaReVg==
-----END CERTIFICATE-----
Generated at Wed Sep 10 12:19:04 2025 by rpki-client