Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
File: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft (raw, json)
Hash identifier: 1oAGOAvCTNA3WyagKC2mDTEychOzo++OhZdD16DP80E=
Subject key identifier: 5F:04:84:59:B0:DE:31:76:31:C6:9F:2D:77:C9:AF:D7:2B:42:4E:A0
Authority key identifier: B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
Certificate issuer: /CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Certificate serial: 01976B85F755E7FA78CBCFDA30F8872518C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
Manifest number: 035E
Signing time: Fri 13 Jun 2025 23:00:30 +0000
Manifest this update: Fri 13 Jun 2025 23:00:30 +0000
Manifest next update: Sat 14 Jun 2025 23:00:30 +0000
Files and hashes: 1: Ol4H0Ofe0seTJhjp23zwbv14mcA.roa (hash: h0M7hTbR8JXwLU22tU4Fw/p8crplmJ6JisUg1rjxv0k=)
2: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl (hash: f5Otes8Iia9LHbkibSfiij9B/ZIQrrjkBCQ/bsmsL5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 23:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:85:f7:55:e7:fa:78:cb:cf:da:30:f8:87:25:18:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Validity
Not Before: Jun 13 23:00:30 2025 GMT
Not After : Jun 14 23:00:30 2025 GMT
Subject: CN=5f048459b0de317631c69f2d77c9afd72b424ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e0:67:af:51:8c:82:89:38:be:2d:e2:d0:36:
ae:c2:8d:42:36:95:49:7d:18:b1:cb:d7:2f:f2:2b:
87:88:36:92:da:b8:5a:f3:fa:be:16:98:b3:97:5d:
15:6e:c1:62:6c:f6:a3:f4:5e:40:7a:15:43:1c:d0:
46:33:50:12:ea:0f:d5:9d:60:32:f6:d5:2f:30:e9:
2f:1b:5d:86:fb:51:f6:91:a4:ee:85:7f:50:3a:58:
1e:5a:68:00:b7:08:69:16:e0:e1:09:2d:32:9a:6e:
36:5f:7b:df:d9:fc:34:01:e8:04:f6:e0:d3:06:68:
60:10:d0:da:a9:77:4d:97:75:f9:db:bd:c9:d6:4e:
36:ed:1d:af:56:83:c1:25:c4:c0:18:29:b5:db:16:
08:43:64:4b:3e:9b:28:f6:4b:1c:27:a7:7f:86:6f:
34:4b:74:0c:dd:2e:0d:9e:a8:c9:74:ef:ff:ef:af:
3b:00:94:10:92:2d:3d:bf:87:ae:46:40:b2:69:3f:
a5:69:d9:3d:db:8f:b4:89:9a:c3:fc:56:09:66:c9:
9d:65:08:ce:e7:eb:ba:4f:ab:97:7a:e0:65:ed:a1:
85:2b:a8:a1:76:b5:0f:88:4e:7a:7d:11:c2:45:24:
9c:54:a4:3b:a5:e1:d1:80:42:c9:7a:84:78:65:69:
3e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:04:84:59:B0:DE:31:76:31:C6:9F:2D:77:C9:AF:D7:2B:42:4E:A0
X509v3 Authority Key Identifier:
keyid:B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
db:4d:94:51:23:2b:31:73:df:ef:af:5d:95:fb:f7:09:d4:80:
35:90:73:40:f9:d3:2a:ca:50:cf:9c:05:c7:72:e4:a8:42:63:
bd:5c:b0:8b:1f:92:0a:68:67:5a:ed:c8:84:e4:24:72:0f:19:
be:b4:50:11:b8:77:86:85:1a:91:29:be:61:df:af:bd:59:c2:
7e:26:37:23:1e:6a:57:23:66:d7:70:02:39:27:15:05:4a:4c:
5e:6a:53:f1:3d:fc:ab:7f:cb:e9:c7:25:6c:3b:83:a5:36:ae:
22:30:22:16:0d:39:dd:05:c9:67:5b:a2:fa:8e:8b:3a:e0:fb:
c6:d1:91:e9:6f:6b:5c:26:61:c0:5b:f0:75:2c:7c:62:a2:79:
46:a8:49:46:4c:5d:9b:1d:b2:f3:82:17:3c:31:d8:ce:08:7f:
a0:31:60:65:fa:38:a1:8a:6e:09:cd:04:6a:2b:27:fa:26:f0:
f0:c5:f2:73:b5:4b:d6:4d:92:b1:30:42:8f:ac:08:d9:7b:2e:
b2:26:3b:1a:93:76:3f:cb:4b:4a:b7:33:dc:7b:b5:0d:78:d4:
b3:fa:c3:ed:71:e3:b9:57:dc:e7:32:8d:e6:5b:ae:33:e6:68:
77:d7:e7:83:fd:4b:41:29:dd:29:32:65:9b:a1:e2:2d:93:8e:
e9:ae:df:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdrhfdV5/p4y8/aMPiHJRjGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMmRkMDY1MDFmOTlkNDcwMjJkM2E0MDM5ZWZjZjQzOWQw
YmM3ZTYwHhcNMjUwNjEzMjMwMDMwWhcNMjUwNjE0MjMwMDMwWjAzMTEwLwYDVQQD
Eyg1ZjA0ODQ1OWIwZGUzMTc2MzFjNjlmMmQ3N2M5YWZkNzJiNDI0ZWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4uBnr1GMgok4vi3i0Dauwo1CNpVJ
fRixy9cv8iuHiDaS2rha8/q+Fpizl10VbsFibPaj9F5AehVDHNBGM1AS6g/VnWAy
9tUvMOkvG12G+1H2kaTuhX9QOlgeWmgAtwhpFuDhCS0ymm42X3vf2fw0AegE9uDT
BmhgENDaqXdNl3X5273J1k427R2vVoPBJcTAGCm12xYIQ2RLPpso9kscJ6d/hm80
S3QM3S4NnqjJdO//7687AJQQki09v4euRkCyaT+ladk924+0iZrD/FYJZsmdZQjO
5+u6T6uXeuBl7aGFK6ihdrUPiE56fRHCRSScVKQ7peHRgELJeoR4ZWk+gwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF8EhFmw3jF2McafLXfJr9crQk6gMB8GA1UdIwQY
MBaAFLIt0GUB+Z1HAi06QDnvz0OdC8fmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2kzUVpRSDVuVWNDTFRwQU9lX1BRNTBMeC1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8yMDI2MzMtYzY5MC00OGU1LTk2MTMt
NzExZmZkZjkxNjk4LzEvc2kzUVpRSDVuVWNDTFRwQU9lX1BRNTBMeC1ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS8yMDI2MzMtYzY5MC00OGU1LTk2MTMtNzExZmZkZjkxNjk4
LzEvc2kzUVpRSDVuVWNDTFRwQU9lX1BRNTBMeC1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA202UUSMr
MXPf769dlfv3CdSANZBzQPnTKspQz5wFx3LkqEJjvVywix+SCmhnWu3IhOQkcg8Z
vrRQEbh3hoUakSm+Yd+vvVnCfiY3Ix5qVyNm13ACOScVBUpMXmpT8T38q3/L6ccl
bDuDpTauIjAiFg053QXJZ1ui+o6LOuD7xtGR6W9rXCZhwFvwdSx8YqJ5RqhJRkxd
mx2y84IXPDHYzgh/oDFgZfo4oYpuCc0Eaisn+ibw8MXyc7VL1k2SsTBCj6wI2Xsu
siY7GpN2P8tLSrcz3Hu1DXjUs/rD7XHjuVfc5zKN5luuM+Zod9fng/1LQSndKTJl
m6HiLZOO6a7f2g==
-----END CERTIFICATE-----
Generated at Sat Jun 14 06:44:40 2025 by rpki-client