
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
File: qiEQS093IiTRGFaiTt-UZqhE0mw.mft (raw, json)
Hash identifier: 3c5Tnm3PTYhOq5RBKc3xvF3ftK5asPII1nJaSc9a+R8=
Subject key identifier: C7:04:8E:46:86:70:8C:E8:F7:00:3D:9A:52:15:F5:F2:76:4C:71:32
Authority key identifier: AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C
Certificate issuer: /CN=aa21104b4f772224d11856a24edf9466a844d26c
Certificate serial: 01975E3800E261BAA3B6E56B08C37ECB2FFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
Manifest number: 0981
Signing time: Wed 11 Jun 2025 09:00:17 +0000
Manifest this update: Wed 11 Jun 2025 09:00:17 +0000
Manifest next update: Thu 12 Jun 2025 09:00:17 +0000
Files and hashes: 1: C9Uc2-MMZLc56ntn-MTlSYOC9E8.roa (hash: 7Vks3Vs+iWpgcZieiS4e05rACvsjBFcyY3uhYDWshE0=)
2: qiEQS093IiTRGFaiTt-UZqhE0mw.crl (hash: WjPRARBEe5Fe38lPmNao0LOMHpy0MM5pawygwLKJLns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:38:00:e2:61:ba:a3:b6:e5:6b:08:c3:7e:cb:2f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa21104b4f772224d11856a24edf9466a844d26c
Validity
Not Before: Jun 11 09:00:17 2025 GMT
Not After : Jun 12 09:00:17 2025 GMT
Subject: CN=c7048e4686708ce8f7003d9a5215f5f2764c7132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a0:54:14:d3:31:25:be:17:24:68:bc:13:8d:
91:56:0a:1d:15:9f:22:be:6e:38:4b:9b:19:e9:7f:
ef:7d:b6:d0:93:e8:59:ae:62:77:84:e9:3e:27:ff:
05:23:a4:b1:41:2b:30:10:ef:86:44:b4:57:4f:73:
c4:25:95:1d:3e:fc:47:27:c4:f7:1a:75:f2:6d:3b:
a5:38:0b:90:07:37:33:6d:16:b3:1f:ef:01:d5:3d:
32:4d:fd:05:bf:0c:f0:5c:34:aa:5b:2f:1d:dd:39:
c3:aa:1e:ae:86:aa:c2:01:ab:8b:85:88:af:6a:81:
56:9a:b3:12:bb:c6:28:f7:74:a6:c6:d7:fb:ed:bb:
81:ce:ca:51:78:49:4f:52:6d:f8:f0:51:54:8e:c9:
63:21:60:1c:e0:79:f4:b0:e1:70:4a:c0:4f:5e:bb:
d6:1c:d3:ce:b5:bb:7c:ec:cd:75:ec:35:4d:9b:93:
52:ee:cc:27:0d:5f:df:e5:af:57:0e:c3:1c:2f:c8:
2a:3a:b7:93:31:13:64:f6:49:40:60:4d:12:89:b1:
d0:6b:e6:a2:69:0b:9f:6e:3a:89:f6:4c:19:0f:ba:
20:68:84:55:31:9d:66:13:c4:3e:df:12:73:1c:37:
65:91:18:ae:1e:8d:fb:e3:35:da:95:5b:e0:b4:92:
f8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:04:8E:46:86:70:8C:E8:F7:00:3D:9A:52:15:F5:F2:76:4C:71:32
X509v3 Authority Key Identifier:
keyid:AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:54:d4:72:48:9b:8c:26:0c:23:6c:d6:8c:79:09:da:29:9a:
08:b8:24:f1:03:cf:bc:04:52:da:33:19:0a:80:b0:4d:3e:9f:
ae:39:15:31:d6:88:9a:93:c3:d1:9a:ed:82:d7:57:ed:45:40:
1b:e9:9e:a1:22:f2:a5:29:a6:5c:2f:cf:e2:35:d5:7b:2d:d1:
63:4c:24:83:a0:0a:26:eb:95:c9:50:10:cd:f2:f6:de:eb:f5:
16:b4:75:0f:bf:87:93:e8:35:19:6e:9f:19:34:fd:97:e6:90:
01:32:e7:14:54:76:3f:b3:76:37:04:01:ac:d9:c4:1e:d9:d6:
16:16:68:d7:97:8a:1e:c5:f2:ec:0e:08:74:d8:0c:e1:d2:4e:
58:98:45:f2:af:6d:b1:df:e9:7d:54:f2:5d:85:84:d6:cd:16:
5e:79:15:96:3a:25:ae:3b:e2:95:d0:45:dc:ca:be:46:8f:60:
2f:b7:e4:ef:e2:10:4c:a4:5f:ae:fe:de:72:cb:da:c4:54:12:
cf:73:6a:dd:43:a0:2c:c6:3a:1c:ba:42:be:8f:03:49:e3:b3:
f3:a7:9a:4d:67:fa:3c:8a:34:71:bd:19:0a:ab:6f:74:8b:3c:
8b:29:f6:2e:e5:90:49:70:44:a4:bd:be:83:f4:2b:93:a8:c7:
9d:be:3e:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdeOADiYbqjtuVrCMN+yy/6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhMjExMDRiNGY3NzIyMjRkMTE4NTZhMjRlZGY5NDY2YTg0
NGQyNmMwHhcNMjUwNjExMDkwMDE3WhcNMjUwNjEyMDkwMDE3WjAzMTEwLwYDVQQD
EyhjNzA0OGU0Njg2NzA4Y2U4ZjcwMDNkOWE1MjE1ZjVmMjc2NGM3MTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKBUFNMxJb4XJGi8E42RVgodFZ8i
vm44S5sZ6X/vfbbQk+hZrmJ3hOk+J/8FI6SxQSswEO+GRLRXT3PEJZUdPvxHJ8T3
GnXybTulOAuQBzczbRazH+8B1T0yTf0FvwzwXDSqWy8d3TnDqh6uhqrCAauLhYiv
aoFWmrMSu8Yo93Smxtf77buBzspReElPUm348FFUjsljIWAc4Hn0sOFwSsBPXrvW
HNPOtbt87M117DVNm5NS7swnDV/f5a9XDsMcL8gqOreTMRNk9klAYE0SibHQa+ai
aQufbjqJ9kwZD7ogaIRVMZ1mE8Q+3xJzHDdlkRiuHo374zXalVvgtJL4DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMcEjkaGcIzo9wA9mlIV9fJ2THEyMB8GA1UdIwQY
MBaAFKohEEtPdyIk0RhWok7flGaoRNJsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWlFUVMwOTNJaVRSR0ZhaVR0LVVacWhFMG13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9kYWJhY2ItZTZmNS00MDY1LTg2YjYt
OGUwZDgzYzVlZGZlLzEvcWlFUVMwOTNJaVRSR0ZhaVR0LVVacWhFMG13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9kYWJhY2ItZTZmNS00MDY1LTg2YjYtOGUwZDgzYzVlZGZl
LzEvcWlFUVMwOTNJaVRSR0ZhaVR0LVVacWhFMG13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZVTUckib
jCYMI2zWjHkJ2imaCLgk8QPPvARS2jMZCoCwTT6frjkVMdaImpPD0ZrtgtdX7UVA
G+meoSLypSmmXC/P4jXVey3RY0wkg6AKJuuVyVAQzfL23uv1FrR1D7+Hk+g1GW6f
GTT9l+aQATLnFFR2P7N2NwQBrNnEHtnWFhZo15eKHsXy7A4IdNgM4dJOWJhF8q9t
sd/pfVTyXYWE1s0WXnkVljolrjvildBF3Mq+Ro9gL7fk7+IQTKRfrv7ecsvaxFQS
z3Nq3UOgLMY6HLpCvo8DSeOz86eaTWf6PIo0cb0ZCqtvdIs8iyn2LuWQSXBEpL2+
g/Qrk6jHnb4+EQ==
-----END CERTIFICATE-----
Generated at Wed Jun 11 11:09:24 2025 by rpki-client