Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
File: qYW1Uh0gkBiCR48PCUGWLD6clPo.mft (raw, json)
Hash identifier: Q2xpqYNhcPJRqXgkaXbyVc4shC1pwdctr3yspdl6igA=
Subject key identifier: 41:94:AC:E2:F5:FE:9F:87:52:F4:1B:22:E4:57:D3:ED:4A:74:2E:F5
Authority key identifier: A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
Certificate issuer: /CN=a985b5521d20901882478f0f0941962c3e9c94fa
Certificate serial: 01974A0C93F37F9C54EB5F7A439F8A8F6C0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
Manifest number: 0203
Signing time: Sat 07 Jun 2025 11:00:27 +0000
Manifest this update: Sat 07 Jun 2025 11:00:27 +0000
Manifest next update: Sun 08 Jun 2025 11:00:27 +0000
Files and hashes: 1: 5AKIjXxvlD1ejPdjcCa3GKRo67k.roa (hash: tQg1Hre7Hi5yVH1kQPOYLNbXNBUZ5paMSfhayTmbmmc=)
2: qYW1Uh0gkBiCR48PCUGWLD6clPo.crl (hash: iHr6Sg8M5gOjyGrSGxk+6JGjtsj3Q1+4+AWIg2HG5EI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:93:f3:7f:9c:54:eb:5f:7a:43:9f:8a:8f:6c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a985b5521d20901882478f0f0941962c3e9c94fa
Validity
Not Before: Jun 7 11:00:27 2025 GMT
Not After : Jun 8 11:00:27 2025 GMT
Subject: CN=4194ace2f5fe9f8752f41b22e457d3ed4a742ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4e:37:b8:00:95:a3:be:38:bc:1d:e3:10:cc:
34:db:13:46:8f:aa:bb:05:be:a5:36:59:e5:42:2d:
24:11:51:72:03:68:7e:f5:71:a0:0c:7e:d2:a4:1b:
20:7a:d2:90:f0:cc:0f:35:5d:89:66:e9:73:e8:97:
56:c5:70:c3:9f:f4:a7:cf:94:65:b0:fc:19:31:52:
6f:93:13:f5:d4:83:49:c0:89:7a:ba:5b:73:93:65:
b8:c5:8e:cf:9a:0c:76:9d:fc:0f:a8:d6:c3:5f:93:
e0:ee:4b:e0:d4:33:0d:d3:e1:2b:c8:87:f0:52:6a:
6f:12:64:61:27:49:a1:13:9d:82:72:97:68:e3:77:
bd:d5:fc:cb:2b:11:2e:b4:cf:fb:98:16:79:0c:37:
0e:96:aa:e5:9f:fb:b5:3f:1b:47:5c:6a:bb:fc:f0:
68:f8:2a:d4:24:47:67:ff:a3:8b:bc:6a:94:66:01:
b9:1d:77:df:af:0b:a1:8a:ce:a7:ce:c8:00:ad:96:
2c:f8:5d:9f:6e:79:be:dc:dc:a3:f0:45:14:a2:d2:
40:e4:c1:f2:94:3f:c2:a8:04:13:04:5d:59:66:59:
eb:26:34:54:84:c0:03:b9:e7:73:1c:ae:79:bd:9d:
de:24:23:d3:01:43:b0:c8:ef:11:3e:98:51:11:d8:
b6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:94:AC:E2:F5:FE:9F:87:52:F4:1B:22:E4:57:D3:ED:4A:74:2E:F5
X509v3 Authority Key Identifier:
keyid:A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:3e:8b:9c:26:ca:a2:ec:4e:7d:b9:44:b4:a8:c0:35:23:6b:
b9:58:86:35:ab:88:81:d6:02:7e:3c:ef:bd:12:97:3d:b1:99:
2b:e4:1e:ee:43:6d:e7:c5:d4:f9:f8:48:83:02:19:1a:ac:27:
a6:2d:7c:05:aa:4f:15:fa:05:56:40:34:61:0c:4a:78:4a:50:
8b:7a:e0:4b:16:ca:e5:9e:8e:53:5e:b4:45:97:6d:90:18:fb:
0c:c8:eb:d4:c1:05:df:7b:6f:df:a3:1c:52:20:a3:85:8d:62:
c7:98:dd:74:73:61:b1:74:a5:75:85:95:47:bc:06:be:0c:32:
ba:1b:1f:12:02:a8:12:11:58:e5:71:0a:4b:68:0b:de:36:4b:
42:0a:d1:02:2e:e3:b6:e8:63:11:a7:2f:85:bd:8c:9d:89:c9:
54:83:56:49:cc:7f:d8:cc:2f:6f:08:67:6c:13:1c:8d:82:b3:
b5:25:cc:f2:05:10:0c:47:c7:8d:c7:b4:ba:84:fd:6e:e4:a8:
cb:41:02:ce:dc:8d:c5:f9:8d:27:6a:d5:94:98:96:da:16:bc:
f1:b8:62:56:25:a7:75:3c:b7:c3:2f:fd:49:ce:ec:d4:5d:6c:
6d:37:58:dd:e1:34:8f:e6:0f:41:ef:45:3b:db:e2:63:77:46:
55:4e:e7:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKDJPzf5xU6196Q5+Kj2wNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5ODViNTUyMWQyMDkwMTg4MjQ3OGYwZjA5NDE5NjJjM2U5
Yzk0ZmEwHhcNMjUwNjA3MTEwMDI3WhcNMjUwNjA4MTEwMDI3WjAzMTEwLwYDVQQD
Eyg0MTk0YWNlMmY1ZmU5Zjg3NTJmNDFiMjJlNDU3ZDNlZDRhNzQyZWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqE43uACVo744vB3jEMw02xNGj6q7
Bb6lNlnlQi0kEVFyA2h+9XGgDH7SpBsgetKQ8MwPNV2JZulz6JdWxXDDn/Snz5Rl
sPwZMVJvkxP11INJwIl6ultzk2W4xY7Pmgx2nfwPqNbDX5Pg7kvg1DMN0+EryIfw
UmpvEmRhJ0mhE52Ccpdo43e91fzLKxEutM/7mBZ5DDcOlqrln/u1PxtHXGq7/PBo
+CrUJEdn/6OLvGqUZgG5HXffrwuhis6nzsgArZYs+F2fbnm+3Nyj8EUUotJA5MHy
lD/CqAQTBF1ZZlnrJjRUhMADuedzHK55vZ3eJCPTAUOwyO8RPphREdi2YQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEGUrOL1/p+HUvQbIuRX0+1KdC71MB8GA1UdIwQY
MBaAFKmFtVIdIJAYgkePDwlBliw+nJT6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS83ZmZiM2UtOGE0Yy00MGI3LTg3NmUt
NjAwM2Q1YWVlZDFmLzEvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS83ZmZiM2UtOGE0Yy00MGI3LTg3NmUtNjAwM2Q1YWVlZDFm
LzEvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcj6LnCbK
ouxOfblEtKjANSNruViGNauIgdYCfjzvvRKXPbGZK+Qe7kNt58XU+fhIgwIZGqwn
pi18BapPFfoFVkA0YQxKeEpQi3rgSxbK5Z6OU160RZdtkBj7DMjr1MEF33tv36Mc
UiCjhY1ix5jddHNhsXSldYWVR7wGvgwyuhsfEgKoEhFY5XEKS2gL3jZLQgrRAi7j
tuhjEacvhb2MnYnJVINWScx/2MwvbwhnbBMcjYKztSXM8gUQDEfHjce0uoT9buSo
y0ECztyNxfmNJ2rVlJiW2ha88bhiViWndTy3wy/9Sc7s1F1sbTdY3eE0j+YPQe9F
O9viY3dGVU7nbg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:34:46 2025 by rpki-client