Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
File: q53IX5TKZH3g22TXTTE5lHzESbo.mft (raw, json)
Hash identifier: D/msZdMKyAgW0iz+Vr1repqPEcNBRFsJFrZejhLeO4w=
Subject key identifier: 7B:6E:6B:0D:85:8D:2F:82:57:89:92:35:A6:F0:CF:36:00:78:43:9E
Authority key identifier: AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
Certificate issuer: /CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Certificate serial: 019748FA88376A5A08008CF7865DE0AA4266
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
Manifest number: 1269
Signing time: Sat 07 Jun 2025 06:01:07 +0000
Manifest this update: Sat 07 Jun 2025 06:01:07 +0000
Manifest next update: Sun 08 Jun 2025 06:01:07 +0000
Files and hashes: 1: 3U4MivbAgZFFTzpri9v9qzr-9Dg.roa (hash: OpxoqQJPTPV/7nPesTeS09o0jfmFmQcqEJLqODzVTIM=)
2: q53IX5TKZH3g22TXTTE5lHzESbo.crl (hash: sXejrBbliDNm/p3YAeAHU9OxOwZYGgVGLjG2opaEWqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:88:37:6a:5a:08:00:8c:f7:86:5d:e0:aa:42:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Validity
Not Before: Jun 7 06:01:07 2025 GMT
Not After : Jun 8 06:01:07 2025 GMT
Subject: CN=7b6e6b0d858d2f8257899235a6f0cf360078439e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9d:ef:45:33:76:bf:71:1f:db:fb:d1:7e:c6:
93:46:b5:78:cb:41:cb:ee:22:bf:74:8d:e8:45:56:
6c:eb:a2:f8:8f:28:0c:1a:6e:e0:2d:4e:1a:63:94:
0c:32:a8:60:63:d5:dd:6a:63:57:1d:91:39:07:a1:
34:0b:2b:39:a7:b0:91:92:6f:37:89:2c:8d:12:c1:
4d:44:d5:9b:94:54:7f:ee:8a:cd:16:e9:47:f7:b9:
fc:ed:81:71:48:c7:82:f4:3a:56:84:84:76:88:20:
e2:88:7a:29:12:7b:19:11:11:df:ae:a3:6b:02:36:
cf:46:fb:65:ac:80:14:9a:17:12:d7:ef:54:51:24:
7a:3d:77:80:41:b3:b7:46:48:5a:60:43:26:58:1a:
93:1c:ef:00:29:f8:f0:c7:84:08:29:03:62:75:f3:
14:f5:d2:57:6e:03:45:9a:12:1d:a6:f3:fd:8d:c8:
a6:30:93:cd:73:61:0d:9f:b5:64:e4:84:89:46:5e:
0c:3f:17:6a:7d:19:2e:87:c8:40:6f:5e:b3:16:62:
79:45:a7:18:f0:79:c2:c5:d5:67:27:0b:6f:2d:29:
45:c1:d7:ca:9a:65:03:54:3d:3a:60:b6:14:2d:38:
b7:cc:17:6b:3d:ee:87:2e:dc:f2:88:4f:af:0a:65:
bb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6E:6B:0D:85:8D:2F:82:57:89:92:35:A6:F0:CF:36:00:78:43:9E
X509v3 Authority Key Identifier:
keyid:AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:02:f4:65:df:6c:18:4c:62:27:c5:5f:28:78:09:b4:c8:29:
9f:8c:e8:a4:7a:29:2e:29:1d:29:29:0a:e6:73:fe:77:83:aa:
13:ed:be:9a:fc:5b:9e:56:d6:f3:c2:47:24:bf:06:a2:59:9e:
9a:45:aa:e1:17:53:58:41:89:67:5d:d0:e4:3a:46:5f:0b:09:
3c:27:e8:74:d8:d3:9d:bc:73:b1:c7:b7:95:1c:98:6a:31:e4:
85:06:97:61:d9:ad:6a:e7:18:3b:bb:9e:81:e1:98:47:8d:d9:
6c:b6:88:63:a0:68:10:05:9e:63:98:d3:4c:a9:01:5a:90:77:
8e:24:6e:08:65:4f:ef:e6:0f:b7:10:e9:89:1d:a2:fa:d6:36:
03:4c:46:db:2c:83:c1:c2:04:ee:b6:81:23:b2:93:79:9e:7e:
ce:26:21:2a:87:94:97:b5:e7:57:7e:68:fa:8c:4f:62:28:55:
81:17:8d:fc:ca:ec:87:e5:c5:ad:4b:a3:8f:c3:2c:ac:6f:f7:
54:d7:ef:1e:75:88:ab:f5:05:1d:26:e7:11:5f:6d:b7:9d:4d:
9d:da:ae:18:ca:51:f8:81:89:e3:b7:2d:3e:d4:e5:03:ae:31:
39:a3:4c:2e:ce:0d:5a:b5:3b:d9:23:94:ad:b3:11:f5:9e:2b:
92:7c:90:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+og3aloIAIz3hl3gqkJmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiOWRjODVmOTRjYTY0N2RlMGRiNjRkNzRkMzEzOTk0N2Nj
NDQ5YmEwHhcNMjUwNjA3MDYwMTA3WhcNMjUwNjA4MDYwMTA3WjAzMTEwLwYDVQQD
Eyg3YjZlNmIwZDg1OGQyZjgyNTc4OTkyMzVhNmYwY2YzNjAwNzg0MzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs53vRTN2v3Ef2/vRfsaTRrV4y0HL
7iK/dI3oRVZs66L4jygMGm7gLU4aY5QMMqhgY9XdamNXHZE5B6E0Cys5p7CRkm83
iSyNEsFNRNWblFR/7orNFulH97n87YFxSMeC9DpWhIR2iCDiiHopEnsZERHfrqNr
AjbPRvtlrIAUmhcS1+9UUSR6PXeAQbO3RkhaYEMmWBqTHO8AKfjwx4QIKQNidfMU
9dJXbgNFmhIdpvP9jcimMJPNc2ENn7Vk5ISJRl4MPxdqfRkuh8hAb16zFmJ5RacY
8HnCxdVnJwtvLSlFwdfKmmUDVD06YLYULTi3zBdrPe6HLtzyiE+vCmW7DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHtuaw2FjS+CV4mSNabwzzYAeEOeMB8GA1UdIwQY
MBaAFKudyF+UymR94Ntk100xOZR8xEm6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTUzSVg1VEtaSDNnMjJUWFRURTVsSHpFU2JvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85YzgzYTUtM2E5YS00NzE1LTliMTYt
NDA0NjMyNDk3MGFmLzEvcTUzSVg1VEtaSDNnMjJUWFRURTVsSHpFU2JvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy85YzgzYTUtM2E5YS00NzE1LTliMTYtNDA0NjMyNDk3MGFm
LzEvcTUzSVg1VEtaSDNnMjJUWFRURTVsSHpFU2JvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARgL0Zd9s
GExiJ8VfKHgJtMgpn4zopHopLikdKSkK5nP+d4OqE+2+mvxbnlbW88JHJL8Golme
mkWq4RdTWEGJZ13Q5DpGXwsJPCfodNjTnbxzsce3lRyYajHkhQaXYdmtaucYO7ue
geGYR43ZbLaIY6BoEAWeY5jTTKkBWpB3jiRuCGVP7+YPtxDpiR2i+tY2A0xG2yyD
wcIE7raBI7KTeZ5+ziYhKoeUl7XnV35o+oxPYihVgReN/Mrsh+XFrUujj8MsrG/3
VNfvHnWIq/UFHSbnEV9tt51NndquGMpR+IGJ47ctPtTlA64xOaNMLs4NWrU72SOU
rbMR9Z4rknyQhQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 12:59:33 2025 by rpki-client