Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
File: pQHIn0SCnHLyqVPSorpK4Le1DYo.mft (raw, json)
Hash identifier: p/C1Njtod2Gv5+q2lUGHJE/WTOM/emFKBtU0ukkXFEQ=
Subject key identifier: C5:5F:A1:E1:20:AD:F7:86:85:06:70:89:62:13:50:B7:8B:91:27:36
Authority key identifier: A5:01:C8:9F:44:82:9C:72:F2:A9:53:D2:A2:BA:4A:E0:B7:B5:0D:8A
Certificate issuer: /CN=a501c89f44829c72f2a953d2a2ba4ae0b7b50d8a
Certificate serial: 019749311010C930C536574804D10A1550BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 07:00:41 +0000
Manifest this update: Sat 07 Jun 2025 07:00:41 +0000
Manifest next update: Sun 08 Jun 2025 07:00:41 +0000
Files and hashes: 1: D5U1j0YPEDas8bxMtDOehRJb48U.roa (hash: AkMtfy33YmmtJG2wcdM/0Qvh01UPoaXKoDXm68LNuus=)
2: pQHIn0SCnHLyqVPSorpK4Le1DYo.crl (hash: i+SC6J8FtHJ8s/uv5iNEX9KiopxfcRoHwYlUjr9hXgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:10:10:c9:30:c5:36:57:48:04:d1:0a:15:50:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a501c89f44829c72f2a953d2a2ba4ae0b7b50d8a
Validity
Not Before: Jun 7 07:00:41 2025 GMT
Not After : Jun 8 07:00:41 2025 GMT
Subject: CN=c55fa1e120adf78685067089621350b78b912736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:0d:65:df:90:21:aa:4d:55:c3:50:84:1c:e9:
d2:c2:e9:09:1c:9e:76:76:40:63:bb:aa:9f:bd:9c:
7c:3c:83:aa:d1:0d:44:20:7a:4e:b9:64:ab:11:8e:
5a:a8:08:9a:eb:4a:b0:3e:b4:96:14:5a:12:7e:0e:
4e:75:ce:3e:5e:9f:af:a2:92:2d:43:94:8c:db:23:
2b:47:a5:68:6c:4b:6f:ce:16:27:c2:31:e9:bf:10:
a4:3f:32:74:75:db:c2:26:ab:9d:bd:86:63:2e:c3:
7d:7f:46:24:40:f2:20:6d:19:96:c5:f6:ed:77:2a:
08:e8:b1:9d:fe:7a:ee:6c:15:ef:93:0a:c3:08:05:
97:18:23:02:12:04:4c:74:53:6f:30:bb:52:64:9c:
68:b2:16:0e:41:9b:41:15:ba:11:ec:82:24:24:8b:
33:cd:8f:ee:b8:f8:8a:66:10:d3:b8:4e:c0:a9:ba:
7f:cb:ea:b0:42:de:f7:10:e1:ea:f8:b2:5c:4e:03:
e8:bf:15:b7:bd:b9:16:dc:72:9d:d9:ca:34:ee:c7:
8f:fc:91:52:ae:96:68:f2:11:e1:0b:b4:11:7a:c4:
0b:94:58:d7:46:9d:02:93:5e:a9:8d:96:b0:60:e1:
ab:1b:d2:61:19:19:c1:4e:7f:d9:91:b6:ec:be:89:
30:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5F:A1:E1:20:AD:F7:86:85:06:70:89:62:13:50:B7:8B:91:27:36
X509v3 Authority Key Identifier:
keyid:A5:01:C8:9F:44:82:9C:72:F2:A9:53:D2:A2:BA:4A:E0:B7:B5:0D:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:2b:a7:24:b4:03:ff:c0:f4:d8:07:49:34:f0:8e:53:8b:6e:
f5:9b:cd:b2:15:c1:c4:08:98:79:15:b8:11:0e:70:c7:e0:97:
24:a4:19:d4:9b:cc:e3:82:4b:2a:72:61:af:f8:a3:fc:13:d4:
c1:7c:bc:de:48:67:46:b0:81:f5:d7:90:66:7d:a5:b1:6c:fb:
d1:9c:9a:f3:a6:3d:58:ef:49:ee:28:67:06:02:9b:d8:39:23:
4c:90:e4:5c:b5:45:4d:7f:92:9f:b8:93:33:6d:7b:d2:02:45:
2c:8a:64:91:dd:73:19:7c:06:d1:19:76:5d:94:c1:e8:56:92:
c0:c2:b2:69:65:da:60:0c:49:d6:d5:47:86:0c:c6:69:e3:72:
76:a4:09:22:af:e0:5f:55:dd:23:ca:84:62:c6:48:b4:2d:bc:
de:bf:c6:20:33:e5:ab:fd:47:ab:c3:93:47:4a:e7:25:a2:1a:
f5:ea:c3:a1:e4:18:e5:17:42:b6:90:7a:2a:0f:74:82:c8:51:
80:0c:1c:87:7c:49:67:b8:f2:7e:a2:30:dd:c8:c0:c3:56:f5:
b8:a2:cf:52:86:ce:83:8a:64:fa:e4:33:43:02:77:4a:54:ac:
4f:6c:30:91:a9:03:c9:60:e2:18:c7:be:62:ed:d0:64:2d:7f:
f5:97:58:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMRAQyTDFNldIBNEKFVC9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MDFjODlmNDQ4MjljNzJmMmE5NTNkMmEyYmE0YWUwYjdi
NTBkOGEwHhcNMjUwNjA3MDcwMDQxWhcNMjUwNjA4MDcwMDQxWjAzMTEwLwYDVQQD
EyhjNTVmYTFlMTIwYWRmNzg2ODUwNjcwODk2MjEzNTBiNzhiOTEyNzM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjg1l35Ahqk1Vw1CEHOnSwukJHJ52
dkBju6qfvZx8PIOq0Q1EIHpOuWSrEY5aqAia60qwPrSWFFoSfg5Odc4+Xp+vopIt
Q5SM2yMrR6VobEtvzhYnwjHpvxCkPzJ0ddvCJqudvYZjLsN9f0YkQPIgbRmWxfbt
dyoI6LGd/nrubBXvkwrDCAWXGCMCEgRMdFNvMLtSZJxoshYOQZtBFboR7IIkJIsz
zY/uuPiKZhDTuE7Aqbp/y+qwQt73EOHq+LJcTgPovxW3vbkW3HKd2co07seP/JFS
rpZo8hHhC7QResQLlFjXRp0Ck16pjZawYOGrG9JhGRnBTn/ZkbbsvokwXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMVfoeEgrfeGhQZwiWITULeLkSc2MB8GA1UdIwQY
MBaAFKUByJ9Egpxy8qlT0qK6SuC3tQ2KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFFISW4wU0NuSEx5cVZQU29ycEs0TGUxRFlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9kNWUxMDMtOTBiNS00NGYxLWI4NjQt
MTRhMWViNTUxMmQ2LzEvcFFISW4wU0NuSEx5cVZQU29ycEs0TGUxRFlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9kNWUxMDMtOTBiNS00NGYxLWI4NjQtMTRhMWViNTUxMmQ2
LzEvcFFISW4wU0NuSEx5cVZQU29ycEs0TGUxRFlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACyunJLQD
/8D02AdJNPCOU4tu9ZvNshXBxAiYeRW4EQ5wx+CXJKQZ1JvM44JLKnJhr/ij/BPU
wXy83khnRrCB9deQZn2lsWz70Zya86Y9WO9J7ihnBgKb2DkjTJDkXLVFTX+Sn7iT
M2170gJFLIpkkd1zGXwG0Rl2XZTB6FaSwMKyaWXaYAxJ1tVHhgzGaeNydqQJIq/g
X1XdI8qEYsZItC283r/GIDPlq/1Hq8OTR0rnJaIa9erDoeQY5RdCtpB6Kg90gshR
gAwch3xJZ7jyfqIw3cjAw1b1uKLPUobOg4pk+uQzQwJ3SlSsT2wwkakDyWDiGMe+
Yu3QZC1/9ZdYzQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:52:48 2025 by rpki-client