Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json)
Hash identifier: wetKyimi+fCKrzLfqKfzYpRbXwda1RQYv8DeIPtpmlk=
Subject key identifier: 41:22:B3:D5:0A:BA:28:15:DC:55:72:B8:5E:6F:1E:91:45:95:70:DA
Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Certificate serial: 01974A43AADA75EEBF733844CE7AFC53F194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
Manifest number: 11E1
Signing time: Sat 07 Jun 2025 12:00:37 +0000
Manifest this update: Sat 07 Jun 2025 12:00:37 +0000
Manifest next update: Sun 08 Jun 2025 12:00:37 +0000
Files and hashes: 1: CRyZWe4rqJ2qdiNWuAP-OJQeZow.roa (hash: g+uZ3IirtTKelPa51RylP3yoQBkp1cF9hHY0LUNHp8g=)
2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: vE4lCb+UupZYTGebyotXLdqtfUdliVNQy3YnQmEo7I4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:aa:da:75:ee:bf:73:38:44:ce:7a:fc:53:f1:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Validity
Not Before: Jun 7 12:00:37 2025 GMT
Not After : Jun 8 12:00:37 2025 GMT
Subject: CN=4122b3d50aba2815dc5572b85e6f1e91459570da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:34:65:4f:b2:60:27:36:72:e6:a1:c7:44:5a:
e1:31:1c:bb:00:66:e5:f4:6b:cc:c8:36:71:2a:d6:
5a:82:2d:7e:dd:36:1b:c0:32:49:3e:6f:36:3a:4f:
e9:cd:ea:5e:6e:68:ad:cc:2e:a0:57:46:cf:b2:9e:
6d:14:14:ae:5e:58:ad:e5:da:b7:81:fd:90:59:d0:
d9:f6:57:94:9a:95:ab:9e:f5:98:e0:dd:90:76:2b:
62:01:05:5b:c7:51:77:4b:a9:55:f7:d8:61:73:41:
21:09:77:21:cb:f2:d9:24:5a:83:15:3a:cd:45:ec:
21:ad:bc:a1:9b:71:28:e5:43:dc:55:4b:1c:3d:16:
6f:46:e2:74:ae:b9:d1:e5:de:7e:a7:e4:b7:11:5b:
a5:c2:7c:04:07:36:94:9b:c4:08:d2:be:78:b5:c9:
8a:82:c4:79:77:de:45:a1:76:ca:fc:68:e6:49:c2:
b7:2a:70:89:63:a3:e5:2c:bc:e8:8b:a0:e0:fd:8a:
2d:1f:19:49:de:0a:4e:a5:b5:fd:4e:4e:06:2f:15:
f1:f3:dd:44:5d:ba:0f:32:75:43:49:26:64:37:2e:
24:a8:cc:72:fb:c2:2e:df:91:ca:1f:33:38:db:9c:
e5:15:03:79:f3:1f:7c:ca:a8:0f:79:c1:e7:6d:7b:
8d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:22:B3:D5:0A:BA:28:15:DC:55:72:B8:5E:6F:1E:91:45:95:70:DA
X509v3 Authority Key Identifier:
keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:59:fd:5d:73:6f:77:9f:e3:6b:33:84:51:47:f5:26:f0:37:
e4:da:1f:28:5a:01:56:38:80:fc:45:07:09:0d:68:c2:f2:00:
91:9f:04:c9:81:59:f8:6a:cd:d3:ff:99:a5:92:9c:15:e2:6e:
0b:bf:de:73:2c:02:3d:d7:42:3b:24:d1:e0:00:86:39:9e:e8:
0d:44:e1:3c:1f:bb:a3:80:d4:47:f9:04:56:81:6d:89:f5:d6:
6e:5a:68:32:05:cb:ac:8f:98:9b:a9:67:80:bd:f6:4b:2d:3d:
9b:2d:71:30:32:4e:b9:94:b4:52:ed:6e:42:e2:d9:f3:60:9c:
da:30:7e:44:6f:40:9c:b9:de:d4:3e:e8:5c:1c:b9:99:7c:58:
c3:b9:a7:38:f1:08:28:3b:33:f4:cc:60:b1:cd:da:f0:83:42:
ee:5e:85:04:56:6c:db:ea:5d:c5:e9:ed:62:da:2c:2c:d6:5c:
c0:24:47:f0:02:01:c7:11:13:c4:bf:60:b1:3c:e7:b4:3e:7d:
c7:fc:6d:34:0c:78:5a:81:14:f4:f7:4d:61:35:83:15:93:88:
7b:fb:6d:bc:35:d3:d8:55:3c:c1:01:dd:56:91:a3:0f:6f:b8:
e4:c0:84:69:00:3e:e1:98:61:62:09:c1:70:09:5f:ce:86:c5:
4b:a4:fb:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKQ6rade6/czhEznr8U/GUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMGY5NDJlYjA3MzM1Y2EzZTdmYmQxOGYwNmMxNThkYjM3
Y2ZkNGIwHhcNMjUwNjA3MTIwMDM3WhcNMjUwNjA4MTIwMDM3WjAzMTEwLwYDVQQD
Eyg0MTIyYjNkNTBhYmEyODE1ZGM1NTcyYjg1ZTZmMWU5MTQ1OTU3MGRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzRlT7JgJzZy5qHHRFrhMRy7AGbl
9GvMyDZxKtZagi1+3TYbwDJJPm82Ok/pzepebmitzC6gV0bPsp5tFBSuXlit5dq3
gf2QWdDZ9leUmpWrnvWY4N2QditiAQVbx1F3S6lV99hhc0EhCXchy/LZJFqDFTrN
Rewhrbyhm3Eo5UPcVUscPRZvRuJ0rrnR5d5+p+S3EVulwnwEBzaUm8QI0r54tcmK
gsR5d95FoXbK/GjmScK3KnCJY6PlLLzoi6Dg/YotHxlJ3gpOpbX9Tk4GLxXx891E
XboPMnVDSSZkNy4kqMxy+8Iu35HKHzM425zlFQN58x98yqgPecHnbXuNNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEEis9UKuigV3FVyuF5vHpFFlXDaMB8GA1UdIwQY
MBaAFEAPlC6wczXKPn+9GPBsFY2zfP1LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUEtVUxyQnpOY28tZjcwWThHd1ZqYk44X1VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8yMDk4YWMtYzJkZS00MzYyLWEyNTUt
YWNkNzJkMmM2Y2I2LzEvUUEtVUxyQnpOY28tZjcwWThHd1ZqYk44X1VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC8yMDk4YWMtYzJkZS00MzYyLWEyNTUtYWNkNzJkMmM2Y2I2
LzEvUUEtVUxyQnpOY28tZjcwWThHd1ZqYk44X1VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFln9XXNv
d5/jazOEUUf1JvA35NofKFoBVjiA/EUHCQ1owvIAkZ8EyYFZ+GrN0/+ZpZKcFeJu
C7/ecywCPddCOyTR4ACGOZ7oDUThPB+7o4DUR/kEVoFtifXWblpoMgXLrI+Ym6ln
gL32Sy09my1xMDJOuZS0Uu1uQuLZ82Cc2jB+RG9AnLne1D7oXBy5mXxYw7mnOPEI
KDsz9Mxgsc3a8INC7l6FBFZs2+pdxentYtosLNZcwCRH8AIBxxETxL9gsTzntD59
x/xtNAx4WoEU9PdNYTWDFZOIe/ttvDXT2FU8wQHdVpGjD2+45MCEaQA+4ZhhYgnB
cAlfzobFS6T77A==
-----END CERTIFICATE-----
Generated at Sat Jun 7 21:01:33 2025 by rpki-client