Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft
File: QdFPKPmNO9zEXhkibx9WFw4xKr8.mft (raw, json)
Hash identifier: MugQ4w570KyrEwuGS0J+mtITH2OxdVxmSZzKnyIZ2Fk=
Subject key identifier: 7A:32:BC:7D:4E:D1:5D:E1:1A:34:08:0B:A4:28:74:18:AB:B6:92:00
Authority key identifier: 41:D1:4F:28:F9:8D:3B:DC:C4:5E:19:22:6F:1F:56:17:0E:31:2A:BF
Certificate issuer: /CN=41d14f28f98d3bdcc45e19226f1f56170e312abf
Certificate serial: 019749D5C042C18185F1D99F22481D6B0FB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdFPKPmNO9zEXhkibx9WFw4xKr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 10:00:34 +0000
Manifest this update: Sat 07 Jun 2025 10:00:34 +0000
Manifest next update: Sun 08 Jun 2025 10:00:34 +0000
Files and hashes: 1: QdFPKPmNO9zEXhkibx9WFw4xKr8.crl (hash: O/7j1KSFmK1PdVOiqC1IVqTDDPTWepoJOUAkAZPRfZQ=)
2: TfT6AZyh9UGWuKPzLXDw4XK7Cjc.roa (hash: 4OX2vbS8uyBAPoRn5NlTz3A25sxN9Wre4w3pzzWneG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdFPKPmNO9zEXhkibx9WFw4xKr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:c0:42:c1:81:85:f1:d9:9f:22:48:1d:6b:0f:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d14f28f98d3bdcc45e19226f1f56170e312abf
Validity
Not Before: Jun 7 10:00:34 2025 GMT
Not After : Jun 8 10:00:34 2025 GMT
Subject: CN=7a32bc7d4ed15de11a34080ba4287418abb69200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8d:39:3b:27:7e:4e:68:e3:38:77:63:c5:b0:
f5:86:66:9e:ff:7d:da:b0:25:24:25:e6:a2:a1:8b:
a0:02:72:32:64:ef:41:69:04:f6:52:31:02:ac:eb:
f7:30:13:e8:e5:49:6d:d2:a4:a1:e6:ec:1a:39:7e:
7f:b0:1c:3c:29:7b:23:e3:ce:12:30:db:5c:3c:a2:
e9:3d:d9:b4:d5:a1:06:8d:d2:a1:08:f9:b1:8e:09:
5e:a7:3f:92:36:e7:6d:3c:6a:57:4b:d5:bb:9c:c5:
7b:64:38:a7:b2:aa:64:3d:1a:d6:23:86:f7:94:92:
c3:c3:ca:86:ca:74:3b:7f:96:9e:eb:0d:f3:f6:88:
06:93:01:ce:2f:22:9d:37:3e:f1:17:8f:f7:c4:99:
b2:8a:f9:02:b2:33:2b:67:ee:38:22:e5:eb:09:8c:
cb:95:1a:2b:66:95:b1:a8:5c:75:a3:41:54:9e:a8:
18:e6:f0:9b:46:e2:fa:56:af:af:6d:ff:f7:fe:8d:
62:22:16:2b:fc:c6:59:54:a2:5c:48:8c:d1:6b:49:
3f:b2:60:1a:bf:dd:35:26:25:a8:16:f0:3a:e4:3d:
1f:9c:31:fe:16:a2:61:50:14:7d:66:35:ad:fb:97:
07:54:19:78:a2:1c:b7:2b:1f:71:fa:2d:00:1c:bd:
9f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:32:BC:7D:4E:D1:5D:E1:1A:34:08:0B:A4:28:74:18:AB:B6:92:00
X509v3 Authority Key Identifier:
keyid:41:D1:4F:28:F9:8D:3B:DC:C4:5E:19:22:6F:1F:56:17:0E:31:2A:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdFPKPmNO9zEXhkibx9WFw4xKr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a074e2-66ea-43cc-94a7-b380453267f9/1/QdFPKPmNO9zEXhkibx9WFw4xKr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:8f:42:8e:f5:59:9d:43:2f:f1:c4:44:9c:0a:9f:32:10:a8:
16:91:47:8c:f5:4b:6f:bf:0b:77:55:50:8b:76:48:84:94:d0:
99:87:b5:e3:88:af:b6:a0:94:f2:5b:e4:28:0e:bf:c7:d3:40:
e7:83:1a:b0:d5:8e:3a:ab:13:5c:1f:ed:a4:05:23:f8:27:cd:
be:f6:93:83:be:63:c2:ac:53:ac:55:9e:04:1b:a8:69:1a:73:
d1:4e:56:38:ae:d0:8a:9a:ff:ac:22:94:58:eb:f5:28:33:98:
4d:fd:ae:1d:99:b3:b2:4e:5d:49:bb:bb:64:23:8f:ec:c7:b0:
5d:31:16:1e:11:c4:66:af:57:9b:d6:14:ab:45:32:81:2f:5f:
58:ca:c1:b2:b4:ae:43:30:21:46:3f:16:2d:89:82:65:09:6b:
0e:9f:c4:e9:57:6e:c5:50:34:c2:e8:dc:ff:41:24:50:39:33:
f2:1d:58:1e:3b:14:21:61:af:f4:ad:57:6f:fe:33:03:55:d9:
d5:22:d9:e4:c5:85:b6:1d:73:fe:56:80:fe:72:a8:4b:b5:16:
cf:23:44:b6:cc:f6:35:1c:08:d3:9b:48:a3:40:e0:18:c7:fd:
e6:df:07:f7:5c:34:8b:b4:d4:53:94:c0:49:77:50:5b:08:96:
f1:ae:19:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJ1cBCwYGF8dmfIkgdaw+3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxZDE0ZjI4Zjk4ZDNiZGNjNDVlMTkyMjZmMWY1NjE3MGUz
MTJhYmYwHhcNMjUwNjA3MTAwMDM0WhcNMjUwNjA4MTAwMDM0WjAzMTEwLwYDVQQD
Eyg3YTMyYmM3ZDRlZDE1ZGUxMWEzNDA4MGJhNDI4NzQxOGFiYjY5MjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApo05Oyd+TmjjOHdjxbD1hmae/33a
sCUkJeaioYugAnIyZO9BaQT2UjECrOv3MBPo5Ult0qSh5uwaOX5/sBw8KXsj484S
MNtcPKLpPdm01aEGjdKhCPmxjglepz+SNudtPGpXS9W7nMV7ZDinsqpkPRrWI4b3
lJLDw8qGynQ7f5ae6w3z9ogGkwHOLyKdNz7xF4/3xJmyivkCsjMrZ+44IuXrCYzL
lRorZpWxqFx1o0FUnqgY5vCbRuL6Vq+vbf/3/o1iIhYr/MZZVKJcSIzRa0k/smAa
v901JiWoFvA65D0fnDH+FqJhUBR9ZjWt+5cHVBl4ohy3Kx9x+i0AHL2fuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHoyvH1O0V3hGjQIC6QodBirtpIAMB8GA1UdIwQY
MBaAFEHRTyj5jTvcxF4ZIm8fVhcOMSq/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWRGUEtQbU5POXpFWGhraWJ4OVdGdzR4S3I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9hMDc0ZTItNjZlYS00M2NjLTk0YTct
YjM4MDQ1MzI2N2Y5LzEvUWRGUEtQbU5POXpFWGhraWJ4OVdGdzR4S3I4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9hMDc0ZTItNjZlYS00M2NjLTk0YTctYjM4MDQ1MzI2N2Y5
LzEvUWRGUEtQbU5POXpFWGhraWJ4OVdGdzR4S3I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl49CjvVZ
nUMv8cREnAqfMhCoFpFHjPVLb78Ld1VQi3ZIhJTQmYe144ivtqCU8lvkKA6/x9NA
54MasNWOOqsTXB/tpAUj+CfNvvaTg75jwqxTrFWeBBuoaRpz0U5WOK7Qipr/rCKU
WOv1KDOYTf2uHZmzsk5dSbu7ZCOP7MewXTEWHhHEZq9Xm9YUq0UygS9fWMrBsrSu
QzAhRj8WLYmCZQlrDp/E6VduxVA0wujc/0EkUDkz8h1YHjsUIWGv9K1Xb/4zA1XZ
1SLZ5MWFth1z/laA/nKoS7UWzyNEtsz2NRwI05tIo0DgGMf95t8H91w0i7TUU5TA
SXdQWwiW8a4Z5A==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:27:32 2025 by rpki-client