Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
File: Q8d7RzY2gTePrORmFB1UzIg5nPU.mft (raw, json)
Hash identifier: 9V3DtLZnWEo1oDZfrqpJFUbgzzIsxRsa783P5xjTks8=
Subject key identifier: DA:16:3C:57:8F:56:0B:01:97:CC:CE:6F:05:13:79:62:F7:81:0D:B7
Authority key identifier: 43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
Certificate issuer: /CN=43c77b47363681378face466141d54cc88399cf5
Certificate serial: 019A71B82BCB98D20D8415857A78B6270CAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
Manifest number: 16B0
Signing time: Tue 11 Nov 2025 07:01:26 +0000
Manifest this update: Tue 11 Nov 2025 07:01:26 +0000
Manifest next update: Wed 12 Nov 2025 07:01:26 +0000
Files and hashes: 1: LhVPheiP2Wbqe7xFjCy9IQ_CSc0.roa (hash: Jd5k/N8+tstl7PIZFFMbIYM8R6nDjGK5pnVrR8G85AA=)
2: Q8d7RzY2gTePrORmFB1UzIg5nPU.crl (hash: mXlDawHB+aPaoQ5KOcAfBDGgf/WTqn0vwFeGcrMQJDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:2b:cb:98:d2:0d:84:15:85:7a:78:b6:27:0c:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c77b47363681378face466141d54cc88399cf5
Validity
Not Before: Nov 11 07:01:26 2025 GMT
Not After : Nov 12 07:01:26 2025 GMT
Subject: CN=da163c578f560b0197ccce6f05137962f7810db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:17:46:c2:27:c2:68:15:70:6b:c4:73:44:65:
e1:64:bd:c1:4b:ec:eb:36:37:98:6b:b4:f3:7a:52:
54:fd:a5:41:44:2a:b0:cc:ed:3d:a5:3a:7d:ea:39:
cc:5b:dc:c1:0f:c8:bc:a9:4c:3d:6e:34:5c:b6:70:
df:03:84:3a:e8:59:83:2a:e1:dd:44:d4:6b:6a:66:
12:42:bb:d5:80:b7:13:b7:ab:2a:44:9d:bd:7b:b5:
79:80:60:fb:37:56:45:05:2f:35:31:e1:48:9d:a6:
2d:60:91:a2:1b:78:fd:44:42:1d:c6:50:75:ff:68:
52:af:bb:b2:0e:cd:ea:63:d5:e8:b0:3e:8f:02:91:
8d:db:5e:ad:70:9f:37:0d:9f:02:43:25:f7:de:3b:
01:9c:a2:a2:76:03:62:6f:60:65:bc:6b:01:48:c0:
0d:88:b7:52:7f:b5:8d:ac:ab:61:a0:83:b9:c9:c9:
49:60:d5:5b:25:90:43:52:83:0d:3b:b7:b8:67:7a:
ca:ce:bf:ae:d8:70:4d:3a:0f:b9:a1:2a:ef:90:32:
63:7f:55:a7:2a:65:b0:12:cf:3c:1d:5c:4b:57:0d:
0c:bf:53:bc:80:50:f6:1b:35:cd:a5:59:50:c8:d9:
46:22:17:e4:f5:78:05:19:b5:09:af:42:cb:f1:c4:
75:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:16:3C:57:8F:56:0B:01:97:CC:CE:6F:05:13:79:62:F7:81:0D:B7
X509v3 Authority Key Identifier:
keyid:43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:45:ea:15:47:a5:2d:d3:c2:fe:55:31:29:06:34:5b:95:56:
d2:04:9d:31:ab:b1:64:d3:0e:b0:77:93:20:d2:7d:1d:d4:af:
9e:4f:43:10:32:94:ac:37:7a:5c:90:fe:7d:77:b2:60:44:ca:
ca:2d:8f:60:84:40:84:c3:62:28:42:95:03:f4:b0:11:61:f6:
23:58:5b:4f:7b:de:4b:66:a3:d9:a9:85:04:35:c5:87:5f:6f:
14:b2:1a:11:5e:e3:cd:0c:50:e8:75:4e:20:9d:85:ca:1f:d3:
1e:23:22:1b:0d:93:ab:07:27:af:8a:ad:f5:3b:ab:45:13:99:
c5:a4:c5:ac:1d:d2:66:cc:13:10:7c:1f:78:87:2c:24:56:eb:
c3:7c:10:b3:1e:d4:52:ab:09:57:ac:96:c7:cb:0a:ff:ad:1b:
93:f1:0c:85:68:cb:45:49:24:38:8e:bc:5d:8f:40:5c:09:d4:
c5:e8:07:82:3e:43:4f:66:25:ff:55:f3:81:fc:a0:c4:d5:5a:
64:bb:48:41:94:dc:be:e4:b3:ff:fc:e9:b9:27:61:90:d4:81:
ac:75:33:43:da:f9:f3:46:40:9b:16:fb:61:05:b5:b9:3d:49:
39:98:f4:d8:5e:59:cc:54:7a:86:e1:48:dd:48:a7:8e:51:78:
6e:61:fd:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuCvLmNINhBWFeni2JwytMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzYzc3YjQ3MzYzNjgxMzc4ZmFjZTQ2NjE0MWQ1NGNjODgz
OTljZjUwHhcNMjUxMTExMDcwMTI2WhcNMjUxMTEyMDcwMTI2WjAzMTEwLwYDVQQD
EyhkYTE2M2M1NzhmNTYwYjAxOTdjY2NlNmYwNTEzNzk2MmY3ODEwZGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxdGwifCaBVwa8RzRGXhZL3BS+zr
NjeYa7TzelJU/aVBRCqwzO09pTp96jnMW9zBD8i8qUw9bjRctnDfA4Q66FmDKuHd
RNRramYSQrvVgLcTt6sqRJ29e7V5gGD7N1ZFBS81MeFInaYtYJGiG3j9REIdxlB1
/2hSr7uyDs3qY9XosD6PApGN216tcJ83DZ8CQyX33jsBnKKidgNib2BlvGsBSMAN
iLdSf7WNrKthoIO5yclJYNVbJZBDUoMNO7e4Z3rKzr+u2HBNOg+5oSrvkDJjf1Wn
KmWwEs88HVxLVw0Mv1O8gFD2GzXNpVlQyNlGIhfk9XgFGbUJr0LL8cR1fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNoWPFePVgsBl8zObwUTeWL3gQ23MB8GA1UdIwQY
MBaAFEPHe0c2NoE3j6zkZhQdVMyIOZz1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUThkN1J6WTJnVGVQck9SbUZCMVV6SWc1blBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS8wMTgwOWItNDJkZC00MTM2LTk2YjEt
MWZkMTBkOGUwNzVmLzEvUThkN1J6WTJnVGVQck9SbUZCMVV6SWc1blBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS8wMTgwOWItNDJkZC00MTM2LTk2YjEtMWZkMTBkOGUwNzVm
LzEvUThkN1J6WTJnVGVQck9SbUZCMVV6SWc1blBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEEXqFUel
LdPC/lUxKQY0W5VW0gSdMauxZNMOsHeTINJ9HdSvnk9DEDKUrDd6XJD+fXeyYETK
yi2PYIRAhMNiKEKVA/SwEWH2I1hbT3veS2aj2amFBDXFh19vFLIaEV7jzQxQ6HVO
IJ2Fyh/THiMiGw2Tqwcnr4qt9TurRROZxaTFrB3SZswTEHwfeIcsJFbrw3wQsx7U
UqsJV6yWx8sK/60bk/EMhWjLRUkkOI68XY9AXAnUxegHgj5DT2Yl/1XzgfygxNVa
ZLtIQZTcvuSz//zpuSdhkNSBrHUzQ9r580ZAmxb7YQW1uT1JOZj02F5ZzFR6huFI
3UinjlF4bmH93g==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:37:00 2025 by rpki-client