Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
File: qF7VXxRNceZz5j9LdnDEE0TAlYA.mft (raw, json)
Hash identifier: eVYtQLSRDsPkRLbugf343rRxWcrvZLeYQVfoRv/Ts5M=
Subject key identifier: A2:BD:6A:E4:55:83:52:19:A9:2F:AC:1A:E8:81:55:4A:27:B4:3A:D2
Authority key identifier: A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80
Certificate issuer: /CN=a85ed55f144d71e673e63f4b7670c41344c09580
Certificate serial: 019749D6131976EC8B4AF7689748A8AD7B1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
Manifest number: 010A
Signing time: Sat 07 Jun 2025 10:00:55 +0000
Manifest this update: Sat 07 Jun 2025 10:00:55 +0000
Manifest next update: Sun 08 Jun 2025 10:00:55 +0000
Files and hashes: 1: cT2eGd63Px5rG_L6GRT2XCwHH8E.roa (hash: +Vm6cesMvrKle1O+NFaMGbBUxTSdI75W5YWzhqJGopE=)
2: qF7VXxRNceZz5j9LdnDEE0TAlYA.crl (hash: /SwOfc5IkE2ZeLf7uUYNPo5csbxBxIASIUfd+eVFOus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:13:19:76:ec:8b:4a:f7:68:97:48:a8:ad:7b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85ed55f144d71e673e63f4b7670c41344c09580
Validity
Not Before: Jun 7 10:00:55 2025 GMT
Not After : Jun 8 10:00:55 2025 GMT
Subject: CN=a2bd6ae455835219a92fac1ae881554a27b43ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:70:19:23:fa:bc:38:e0:f7:04:a7:10:ca:9f:
ba:87:a7:e6:7b:25:b3:d1:5e:3c:66:31:d2:6d:91:
88:2d:d5:82:b8:23:94:af:34:86:23:fd:ad:26:fe:
65:66:40:ee:b3:44:37:75:13:4f:3b:f9:6e:7d:f3:
a3:cc:10:a5:19:49:81:b3:aa:29:e6:ee:b2:dc:24:
cb:ba:8a:59:d6:a7:cc:c9:5e:52:d8:00:e8:a3:51:
20:8d:43:21:16:6d:df:b6:94:30:d9:98:e5:71:73:
0f:e1:19:01:f4:e8:4c:1d:e9:a1:e7:91:9c:64:d3:
74:6d:b9:f5:8f:82:c8:67:47:a8:4e:1f:cf:d5:87:
94:53:4d:bb:54:8c:be:53:1a:36:fa:0b:09:dd:8e:
ba:1e:58:82:e8:2c:d1:6b:9b:70:55:7e:21:61:44:
11:7c:45:49:e2:2f:18:4b:6c:7c:85:10:20:3a:b0:
85:7f:17:6d:92:88:de:c0:f7:17:62:a9:fd:35:87:
7b:a5:2e:54:5c:bd:9e:ec:04:11:65:33:d2:62:66:
a3:1f:38:26:c7:08:6b:e9:17:27:d0:d4:61:f9:54:
6c:46:86:6b:43:ab:c2:13:d5:5a:db:4c:9c:31:a7:
2f:3d:c4:a0:c5:f0:1a:55:9e:37:94:b0:d6:95:da:
3b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BD:6A:E4:55:83:52:19:A9:2F:AC:1A:E8:81:55:4A:27:B4:3A:D2
X509v3 Authority Key Identifier:
keyid:A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:ef:61:f0:bf:0d:29:e0:4c:8d:a7:b6:7b:df:37:5a:0b:95:
44:29:c1:5b:3e:23:33:17:6d:37:e3:ec:0e:e9:23:a0:cb:a5:
87:34:9b:74:2f:84:7d:a2:e6:26:e5:16:e8:2f:1f:13:87:81:
5e:60:7f:9c:a9:93:88:04:7a:a8:74:ec:35:ee:0b:80:8b:a5:
f2:c8:d7:51:11:f9:31:6e:af:8a:eb:c3:b9:77:73:0f:4e:c8:
e9:63:dc:3d:da:f3:62:ea:61:53:17:c8:f5:61:ea:1e:94:05:
00:c9:85:47:f1:18:39:c0:20:72:0f:4e:77:80:c4:07:9c:99:
e7:ec:39:4d:52:56:26:2c:a7:62:ea:4a:cb:19:99:74:b4:2a:
4a:41:34:52:bd:c6:1d:c3:ba:77:2f:37:7e:2a:26:a7:29:57:
28:c0:d5:82:81:a5:61:20:01:bc:fe:31:6b:ec:9d:2c:02:b7:
f1:f0:21:10:2b:52:b3:16:31:b2:eb:4d:0d:3c:ac:e0:26:17:
7d:05:8b:70:d7:c0:66:39:ed:29:0c:88:50:96:14:cc:e1:7f:
3c:07:c7:26:9d:63:02:d8:c2:fc:2b:31:8a:89:98:bf:e0:3c:
96:ab:35:e0:79:94:9f:13:60:be:5b:c0:cd:07:80:f1:84:49:
39:92:86:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJ1hMZduyLSvdol0iorXsdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4NWVkNTVmMTQ0ZDcxZTY3M2U2M2Y0Yjc2NzBjNDEzNDRj
MDk1ODAwHhcNMjUwNjA3MTAwMDU1WhcNMjUwNjA4MTAwMDU1WjAzMTEwLwYDVQQD
EyhhMmJkNmFlNDU1ODM1MjE5YTkyZmFjMWFlODgxNTU0YTI3YjQzYWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg3AZI/q8OOD3BKcQyp+6h6fmeyWz
0V48ZjHSbZGILdWCuCOUrzSGI/2tJv5lZkDus0Q3dRNPO/luffOjzBClGUmBs6op
5u6y3CTLuopZ1qfMyV5S2ADoo1EgjUMhFm3ftpQw2ZjlcXMP4RkB9OhMHemh55Gc
ZNN0bbn1j4LIZ0eoTh/P1YeUU027VIy+Uxo2+gsJ3Y66HliC6CzRa5twVX4hYUQR
fEVJ4i8YS2x8hRAgOrCFfxdtkojewPcXYqn9NYd7pS5UXL2e7AQRZTPSYmajHzgm
xwhr6Rcn0NRh+VRsRoZrQ6vCE9Va20ycMacvPcSgxfAaVZ43lLDWldo7AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKK9auRVg1IZqS+sGuiBVUontDrSMB8GA1UdIwQY
MBaAFKhe1V8UTXHmc+Y/S3ZwxBNEwJWAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC83NDlkNzctZTk5NS00ODlhLTg3ZTAt
ZDAwYTEzYWFlNTQwLzEvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC83NDlkNzctZTk5NS00ODlhLTg3ZTAtZDAwYTEzYWFlNTQw
LzEvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACO9h8L8N
KeBMjae2e983WguVRCnBWz4jMxdtN+PsDukjoMulhzSbdC+EfaLmJuUW6C8fE4eB
XmB/nKmTiAR6qHTsNe4LgIul8sjXURH5MW6viuvDuXdzD07I6WPcPdrzYuphUxfI
9WHqHpQFAMmFR/EYOcAgcg9Od4DEB5yZ5+w5TVJWJiynYupKyxmZdLQqSkE0Ur3G
HcO6dy83fiompylXKMDVgoGlYSABvP4xa+ydLAK38fAhECtSsxYxsutNDTys4CYX
fQWLcNfAZjntKQyIUJYUzOF/PAfHJp1jAtjC/CsxiomYv+A8lqs14HmUnxNgvlvA
zQeA8YRJOZKGYg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 17:24:33 2025 by rpki-client