Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
File: Q57sdw36ZitOpkoCLus46D2q4ig.mft (raw, json)
Hash identifier: iZkZjdqzZOsWHyaAntjdufkNTKgwbZJePeOUdCtiv4Y=
Subject key identifier: 86:40:E9:AD:1D:16:76:6D:C3:AB:29:5D:25:D6:87:5C:F6:41:DA:7E
Authority key identifier: 43:9E:EC:77:0D:FA:66:2B:4E:A6:4A:02:2E:EB:38:E8:3D:AA:E2:28
Certificate issuer: /CN=439eec770dfa662b4ea64a022eeb38e83daae228
Certificate serial: 0198499BEA7297E3364980FE201527ED6732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
Manifest number: 0797
Signing time: Sun 27 Jul 2025 02:00:11 +0000
Manifest this update: Sun 27 Jul 2025 02:00:11 +0000
Manifest next update: Mon 28 Jul 2025 02:00:11 +0000
Files and hashes: 1: Q57sdw36ZitOpkoCLus46D2q4ig.crl (hash: aYyuEMhZN48Ny0BfWbaxOnJtbQa5mP+LJ7NkERp0+iE=)
2: s-6iu0euq8mwctWc84gynbP4Gz8.roa (hash: ix817uYIHKTbd4XoAS5Yf6A1NltjL0SfzgZQTYUowKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:9b:ea:72:97:e3:36:49:80:fe:20:15:27:ed:67:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439eec770dfa662b4ea64a022eeb38e83daae228
Validity
Not Before: Jul 27 02:00:11 2025 GMT
Not After : Jul 28 02:00:11 2025 GMT
Subject: CN=8640e9ad1d16766dc3ab295d25d6875cf641da7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:44:20:73:8a:36:e0:5b:a8:62:0b:88:ad:d3:
d9:7d:b7:6d:30:a7:a4:ad:83:5e:ef:5c:79:d9:63:
6e:9e:e3:c9:6a:9a:c4:3b:cd:0e:11:fa:ee:3b:03:
49:7c:ef:7b:a2:95:80:f2:a9:ea:f7:63:89:12:11:
a2:6c:12:98:45:1e:b1:08:0f:ef:26:74:12:37:e0:
09:b8:99:53:5e:7b:b8:95:b5:bb:1a:52:bc:e2:41:
c5:5e:cf:ea:82:b2:c0:44:ba:0d:f9:dd:12:34:9d:
be:81:6c:a0:1d:5a:55:35:dd:76:bc:cb:b3:ed:ba:
6e:8a:1f:65:0e:32:2d:02:04:6e:53:7b:47:08:ac:
dc:ea:5c:77:1a:e9:26:7d:af:b4:59:47:bc:ee:39:
ab:bf:b8:71:cb:42:73:29:bc:bb:bf:9c:69:f4:9f:
f3:c4:3f:9d:e2:be:81:36:44:5c:ae:b8:53:c3:68:
7d:0d:12:db:f8:bb:43:05:9c:83:9c:0f:65:c0:2e:
54:97:96:8e:b5:55:5b:39:f0:92:64:9d:11:37:df:
75:85:fc:46:1e:f8:3e:99:36:e9:f9:07:15:63:42:
f6:ce:80:da:7a:90:33:69:f4:fb:b5:66:60:58:03:
62:1a:42:a8:d3:c3:4b:7d:1b:51:26:df:62:17:bc:
4d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:40:E9:AD:1D:16:76:6D:C3:AB:29:5D:25:D6:87:5C:F6:41:DA:7E
X509v3 Authority Key Identifier:
keyid:43:9E:EC:77:0D:FA:66:2B:4E:A6:4A:02:2E:EB:38:E8:3D:AA:E2:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q57sdw36ZitOpkoCLus46D2q4ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/6b8434-f454-41c7-92b9-352f7ca011ae/1/Q57sdw36ZitOpkoCLus46D2q4ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:ba:6f:4c:b1:0e:5b:cb:f1:d4:4b:5c:c7:32:b2:91:e8:d8:
f6:f2:dd:5b:e8:5c:ff:20:fb:43:29:8e:53:60:c1:25:da:0e:
04:1e:43:f8:49:06:8c:8f:c3:76:3b:8f:96:26:c1:73:61:e2:
4f:92:d0:b7:41:8a:60:a5:d7:37:58:04:dd:c9:da:37:f0:e4:
72:af:a4:8f:81:1d:48:9e:74:18:cb:74:56:48:9a:c2:48:eb:
c3:f9:98:1e:64:57:ee:d3:83:fa:c9:f7:f2:b2:48:56:a5:ea:
91:57:02:34:82:56:a1:b3:af:ef:ce:6e:57:1e:55:a1:6a:9a:
b5:eb:f0:1b:d8:0e:36:90:a1:b6:94:14:ac:e1:07:45:e5:45:
ef:dd:aa:dd:0d:71:c7:88:64:5f:c4:0e:df:7f:2e:ff:fe:4b:
cc:9c:47:55:a7:4d:f4:03:a3:0f:41:28:5c:4b:33:8b:02:e9:
63:c8:a0:eb:fa:7a:d9:97:0b:fd:46:8f:aa:5e:89:f4:4e:9f:
91:77:af:c6:2d:e8:bb:c2:2c:31:87:b0:b4:15:fa:d2:5b:6b:
82:d0:fb:3d:8e:53:7f:30:27:c9:ef:91:35:13:36:10:2b:82:
62:84:e0:b5:0c:63:70:88:60:94:28:32:88:59:36:b4:d3:8d:
e9:ed:d2:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJm+pyl+M2SYD+IBUn7WcyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzOWVlYzc3MGRmYTY2MmI0ZWE2NGEwMjJlZWIzOGU4M2Rh
YWUyMjgwHhcNMjUwNzI3MDIwMDExWhcNMjUwNzI4MDIwMDExWjAzMTEwLwYDVQQD
Eyg4NjQwZTlhZDFkMTY3NjZkYzNhYjI5NWQyNWQ2ODc1Y2Y2NDFkYTdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEQgc4o24FuoYguIrdPZfbdtMKek
rYNe71x52WNunuPJaprEO80OEfruOwNJfO97opWA8qnq92OJEhGibBKYRR6xCA/v
JnQSN+AJuJlTXnu4lbW7GlK84kHFXs/qgrLARLoN+d0SNJ2+gWygHVpVNd12vMuz
7bpuih9lDjItAgRuU3tHCKzc6lx3Gukmfa+0WUe87jmrv7hxy0JzKby7v5xp9J/z
xD+d4r6BNkRcrrhTw2h9DRLb+LtDBZyDnA9lwC5Ul5aOtVVbOfCSZJ0RN991hfxG
Hvg+mTbp+QcVY0L2zoDaepAzafT7tWZgWANiGkKo08NLfRtRJt9iF7xNZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZA6a0dFnZtw6spXSXWh1z2Qdp+MB8GA1UdIwQY
MBaAFEOe7HcN+mYrTqZKAi7rOOg9quIoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTU3c2R3MzZaaXRPcGtvQ0x1czQ2RDJxNGlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi82Yjg0MzQtZjQ1NC00MWM3LTkyYjkt
MzUyZjdjYTAxMWFlLzEvUTU3c2R3MzZaaXRPcGtvQ0x1czQ2RDJxNGlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi82Yjg0MzQtZjQ1NC00MWM3LTkyYjktMzUyZjdjYTAxMWFl
LzEvUTU3c2R3MzZaaXRPcGtvQ0x1czQ2RDJxNGlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh7pvTLEO
W8vx1EtcxzKykejY9vLdW+hc/yD7QymOU2DBJdoOBB5D+EkGjI/DdjuPlibBc2Hi
T5LQt0GKYKXXN1gE3cnaN/Dkcq+kj4EdSJ50GMt0Vkiawkjrw/mYHmRX7tOD+sn3
8rJIVqXqkVcCNIJWobOv785uVx5VoWqatevwG9gONpChtpQUrOEHReVF792q3Q1x
x4hkX8QO338u//5LzJxHVadN9AOjD0EoXEsziwLpY8ig6/p62ZcL/UaPql6J9E6f
kXevxi3ou8IsMYewtBX60ltrgtD7PY5TfzAnye+RNRM2ECuCYoTgtQxjcIhglCgy
iFk2tNON6e3SLA==
-----END CERTIFICATE-----
Generated at Sun Jul 27 04:45:30 2025 by rpki-client