Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
File: QGHbehW9JPvKFGzRLMcNQTnIW58.mft (raw, json)
Hash identifier: NiG/Vjf+aCuWqedQ1dbJL+zCMwgQhJEIskzPjKICtcU=
Subject key identifier: 7A:82:05:96:54:F1:01:88:F2:AA:BB:29:50:EF:84:F0:74:7D:3E:56
Authority key identifier: 40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
Certificate issuer: /CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Certificate serial: 01974DB273A4054C2E9CFB8340E47F8BA828
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
Manifest number: 154B
Signing time: Sun 08 Jun 2025 04:00:30 +0000
Manifest this update: Sun 08 Jun 2025 04:00:30 +0000
Manifest next update: Mon 09 Jun 2025 04:00:30 +0000
Files and hashes: 1: QGHbehW9JPvKFGzRLMcNQTnIW58.crl (hash: QAxQ+k133V/+XtrMIZWLwX66SJsrWLnc4Ybu3YS4tfk=)
2: o-ZlaW1WgunU3TjJVwdOR6husz0.roa (hash: 4yZiG/NqXqcKJ1Bdf8yQPmHJloI/I/ZH5JktUOUh3mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:73:a4:05:4c:2e:9c:fb:83:40:e4:7f:8b:a8:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Validity
Not Before: Jun 8 04:00:30 2025 GMT
Not After : Jun 9 04:00:30 2025 GMT
Subject: CN=7a82059654f10188f2aabb2950ef84f0747d3e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:68:dd:47:6f:ae:d3:23:fa:55:80:c1:a5:33:
0e:5b:1d:88:ae:c9:c4:a9:56:62:90:43:47:ca:fc:
45:33:94:5a:d8:b3:7f:7a:cf:fb:56:04:20:7d:1a:
c3:8c:dd:35:0a:a4:d9:3e:cd:76:11:af:17:dd:bc:
67:e1:e1:9b:a5:b6:68:93:a4:c6:cc:4e:c9:9f:c8:
e8:e1:91:7b:21:0e:4f:07:f6:26:4d:1c:2f:2d:01:
ab:b8:c7:f0:e5:cd:37:06:fe:23:03:1a:df:99:51:
b5:04:77:65:17:54:b0:9a:d6:bf:ef:6c:82:e7:87:
7b:f3:fa:49:ae:88:81:da:ba:9e:f7:6d:64:ec:05:
1f:bc:80:d3:d7:32:72:32:ae:60:0d:fb:ef:ce:7b:
c7:f5:25:af:ce:78:b1:ee:4f:d4:a1:aa:07:07:2f:
2b:1e:d8:02:33:0c:65:b2:ae:10:d1:d6:fc:f9:8b:
f2:79:46:71:8e:bf:ae:f8:cc:d6:5a:97:d4:e9:22:
5d:73:a3:32:86:d0:32:27:b2:45:d6:b6:48:2a:61:
f9:59:96:0c:bb:a0:83:a3:5f:7d:64:fa:f4:9b:80:
2f:08:88:c2:bc:ed:eb:90:dc:b9:a5:a5:15:ef:c6:
64:3e:87:c6:c2:00:93:e5:64:b7:b6:70:d2:d5:06:
12:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:82:05:96:54:F1:01:88:F2:AA:BB:29:50:EF:84:F0:74:7D:3E:56
X509v3 Authority Key Identifier:
keyid:40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:d0:33:a5:c3:1d:53:1d:e2:b0:95:f7:7a:eb:fa:53:dc:08:
af:ef:c8:f7:a0:be:74:76:e1:f9:92:3e:0f:27:a2:d8:4d:aa:
c1:ae:e3:c8:97:ad:d2:f0:38:e1:c6:e0:66:7e:6b:0c:ba:df:
9d:13:cd:22:15:44:dc:87:5b:98:77:14:66:f9:21:84:47:59:
1f:7c:81:5a:81:d9:41:ae:c2:78:41:30:35:f6:a1:d8:79:4f:
9b:55:1d:10:09:7b:33:cb:18:65:77:64:7d:04:51:3d:79:40:
e3:18:73:71:88:82:4e:4b:2a:36:03:d3:64:7f:9c:fa:cb:9d:
f0:30:17:dd:e6:1e:1b:03:af:44:46:45:53:bc:6f:d3:23:ad:
cb:41:9f:b2:c2:bc:4c:5f:84:94:18:0c:ea:3a:f2:e1:f8:59:
6b:69:63:9a:29:0f:3c:1d:86:de:92:df:99:71:32:7f:86:a5:
e5:b4:be:bc:b1:3c:be:2c:d2:3d:a2:0b:d2:14:ee:c6:f8:3f:
8e:5f:a7:db:d1:21:40:44:4c:c3:f4:f0:18:c9:91:22:51:94:
c6:17:33:f7:d5:8b:41:07:86:5d:5b:67:7e:f0:68:a9:08:d5:
3d:78:4f:af:db:a0:12:3e:f6:86:df:68:9a:e7:55:d1:f6:52:
73:e7:91:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNsnOkBUwunPuDQOR/i6goMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwNjFkYjdhMTViZDI0ZmJjYTE0NmNkMTJjYzcwZDQxMzlj
ODViOWYwHhcNMjUwNjA4MDQwMDMwWhcNMjUwNjA5MDQwMDMwWjAzMTEwLwYDVQQD
Eyg3YTgyMDU5NjU0ZjEwMTg4ZjJhYWJiMjk1MGVmODRmMDc0N2QzZTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnGjdR2+u0yP6VYDBpTMOWx2IrsnE
qVZikENHyvxFM5Ra2LN/es/7VgQgfRrDjN01CqTZPs12Ea8X3bxn4eGbpbZok6TG
zE7Jn8jo4ZF7IQ5PB/YmTRwvLQGruMfw5c03Bv4jAxrfmVG1BHdlF1Swmta/72yC
54d78/pJroiB2rqe921k7AUfvIDT1zJyMq5gDfvvznvH9SWvznix7k/UoaoHBy8r
HtgCMwxlsq4Q0db8+YvyeUZxjr+u+MzWWpfU6SJdc6MyhtAyJ7JF1rZIKmH5WZYM
u6CDo199ZPr0m4AvCIjCvO3rkNy5paUV78ZkPofGwgCT5WS3tnDS1QYSdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHqCBZZU8QGI8qq7KVDvhPB0fT5WMB8GA1UdIwQY
MBaAFEBh23oVvST7yhRs0SzHDUE5yFufMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUdIYmVoVzlKUHZLRkd6UkxNY05RVG5JVzU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8wMDRjM2ItYWEzZi00ZDhiLTgyNmYt
MTk5ZDE0YzA2YmNiLzEvUUdIYmVoVzlKUHZLRkd6UkxNY05RVG5JVzU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8wMDRjM2ItYWEzZi00ZDhiLTgyNmYtMTk5ZDE0YzA2YmNi
LzEvUUdIYmVoVzlKUHZLRkd6UkxNY05RVG5JVzU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgdAzpcMd
Ux3isJX3euv6U9wIr+/I96C+dHbh+ZI+Dyei2E2qwa7jyJet0vA44cbgZn5rDLrf
nRPNIhVE3IdbmHcUZvkhhEdZH3yBWoHZQa7CeEEwNfah2HlPm1UdEAl7M8sYZXdk
fQRRPXlA4xhzcYiCTksqNgPTZH+c+sud8DAX3eYeGwOvREZFU7xv0yOty0GfssK8
TF+ElBgM6jry4fhZa2ljmikPPB2G3pLfmXEyf4al5bS+vLE8vizSPaIL0hTuxvg/
jl+n29EhQERMw/TwGMmRIlGUxhcz99WLQQeGXVtnfvBoqQjVPXhPr9ugEj72ht9o
mudV0fZSc+eRGg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:55:32 2025 by rpki-client