Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
File: QLt2qpbfjrfWd3s1clLhEVUjh4U.mft (raw, json)
Hash identifier: SrJwrlhmPTOikyeVFB5QWiS5sBFDky5yfHbKm3xTHYQ=
Subject key identifier: 52:90:05:77:87:05:56:A5:2E:3D:FB:0F:BE:FE:08:A6:46:D9:63:66
Authority key identifier: 40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85
Certificate issuer: /CN=40bb76aa96df8eb7d6777b357252e11155238785
Certificate serial: 0197488CC245D4D609BDD1E5F32EAFA0FEAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
Manifest number: 12D4
Signing time: Sat 07 Jun 2025 04:01:13 +0000
Manifest this update: Sat 07 Jun 2025 04:01:13 +0000
Manifest next update: Sun 08 Jun 2025 04:01:13 +0000
Files and hashes: 1: 78S4WmbXMNI8p1WLj4U6NB6Bpk8.roa (hash: bBamnPgie/uUwEiZyXlGtHo6lmaBP0c5URwdBpztxDc=)
2: QLt2qpbfjrfWd3s1clLhEVUjh4U.crl (hash: SQVl8NDOnlajKLY3B8EA0oaKxMKs8qUaVun5jdS4ATU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:c2:45:d4:d6:09:bd:d1:e5:f3:2e:af:a0:fe:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bb76aa96df8eb7d6777b357252e11155238785
Validity
Not Before: Jun 7 04:01:13 2025 GMT
Not After : Jun 8 04:01:13 2025 GMT
Subject: CN=52900577870556a52e3dfb0fbefe08a646d96366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:81:67:15:d7:4e:24:21:82:79:07:85:38:4c:
ea:c4:07:d0:e7:f6:41:d7:86:6f:df:9a:3f:1e:53:
ae:60:7c:c3:7c:1f:4f:61:d3:d2:5d:d2:90:43:aa:
29:5e:93:7d:82:09:b7:47:33:6b:7b:5d:f9:c1:71:
d4:d4:76:2b:8b:27:6d:e9:fb:d0:13:90:06:0a:d5:
13:2c:8f:ce:49:ad:3d:ae:91:f6:32:68:6f:a1:61:
f2:c9:82:11:80:c1:77:4f:dd:e2:0d:b0:c5:29:1a:
4d:a9:ca:12:b3:04:e9:bd:25:0f:20:ac:3a:99:22:
68:d9:c7:d2:fb:a2:60:06:59:37:0a:7e:8e:d9:1a:
c5:4e:78:da:7c:a0:8b:4b:b2:78:a8:e7:28:74:3e:
58:fe:9c:c4:98:82:70:e4:3a:21:68:0d:51:59:0f:
ed:6d:05:1d:4f:a1:ac:3b:2f:c0:78:d9:fe:b4:51:
56:3c:05:05:ba:20:5d:17:7b:77:fd:35:f4:4a:f5:
cb:23:bc:bf:98:66:57:e1:6d:ac:19:09:87:af:f8:
2f:49:0c:88:51:c0:be:69:b9:ab:da:dc:77:bc:70:
f9:5a:37:75:f3:b5:ec:cb:9b:81:78:ca:3b:3a:2c:
b5:74:a6:d3:15:53:cf:35:69:11:4a:f4:b5:75:71:
b7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:90:05:77:87:05:56:A5:2E:3D:FB:0F:BE:FE:08:A6:46:D9:63:66
X509v3 Authority Key Identifier:
keyid:40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:8c:e4:02:d0:3d:d2:dc:27:a3:03:38:1f:52:49:da:5d:71:
0d:0d:38:b4:8f:5a:10:61:9b:39:58:9b:ac:a9:eb:c2:36:37:
43:43:74:fd:65:9d:e4:34:d7:f1:e8:27:71:af:08:c4:ae:07:
37:f2:b7:db:e3:99:cc:71:3e:09:b7:0d:f0:00:bc:cf:a4:2b:
b9:4d:76:cf:0c:e8:c4:c7:74:44:02:f6:1e:b8:0a:ca:e1:8d:
47:ad:fa:f6:c5:2c:52:7d:5e:8c:04:ec:f3:d2:5a:eb:ad:62:
ec:82:b2:9b:1b:87:34:61:c9:29:16:3d:26:9e:2a:f3:ee:46:
51:19:30:e7:b0:fe:cc:67:e0:6a:21:29:ed:9b:57:38:7b:e1:
58:bb:d9:7f:6c:40:5a:af:31:40:8d:e5:92:31:3c:72:84:c4:
ac:ac:5f:6a:fe:9f:b0:62:ba:4b:d4:b0:bc:e7:be:5c:36:7d:
fd:7d:4f:a3:4b:64:a6:ab:27:f7:5a:d5:60:62:33:92:21:01:
ea:c7:b5:4c:da:b3:54:1d:c3:60:02:df:be:19:c4:ab:1c:26:
de:ee:bb:0b:11:ba:df:a2:43:e2:4c:ab:15:2b:bc:14:f8:a6:
52:34:fd:df:85:53:fa:0f:d0:8c:34:52:a1:fe:e3:a6:a5:e2:
70:c8:72:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjMJF1NYJvdHl8y6voP6sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYmI3NmFhOTZkZjhlYjdkNjc3N2IzNTcyNTJlMTExNTUy
Mzg3ODUwHhcNMjUwNjA3MDQwMTEzWhcNMjUwNjA4MDQwMTEzWjAzMTEwLwYDVQQD
Eyg1MjkwMDU3Nzg3MDU1NmE1MmUzZGZiMGZiZWZlMDhhNjQ2ZDk2MzY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYFnFddOJCGCeQeFOEzqxAfQ5/ZB
14Zv35o/HlOuYHzDfB9PYdPSXdKQQ6opXpN9ggm3RzNre135wXHU1HYriydt6fvQ
E5AGCtUTLI/OSa09rpH2MmhvoWHyyYIRgMF3T93iDbDFKRpNqcoSswTpvSUPIKw6
mSJo2cfS+6JgBlk3Cn6O2RrFTnjafKCLS7J4qOcodD5Y/pzEmIJw5DohaA1RWQ/t
bQUdT6GsOy/AeNn+tFFWPAUFuiBdF3t3/TX0SvXLI7y/mGZX4W2sGQmHr/gvSQyI
UcC+abmr2tx3vHD5Wjd187Xsy5uBeMo7Oiy1dKbTFVPPNWkRSvS1dXG3aQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFKQBXeHBValLj37D77+CKZG2WNmMB8GA1UdIwQY
MBaAFEC7dqqW34631nd7NXJS4RFVI4eFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUx0MnFwYmZqcmZXZDNzMWNsTGhFVlVqaDRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9lMzFkNjgtY2I2My00YmQxLTk5Yjkt
MzVlZTdhNzM5ZmQ5LzEvUUx0MnFwYmZqcmZXZDNzMWNsTGhFVlVqaDRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9lMzFkNjgtY2I2My00YmQxLTk5YjktMzVlZTdhNzM5ZmQ5
LzEvUUx0MnFwYmZqcmZXZDNzMWNsTGhFVlVqaDRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABYzkAtA9
0twnowM4H1JJ2l1xDQ04tI9aEGGbOVibrKnrwjY3Q0N0/WWd5DTX8egnca8IxK4H
N/K32+OZzHE+CbcN8AC8z6QruU12zwzoxMd0RAL2HrgKyuGNR6369sUsUn1ejATs
89Ja661i7IKymxuHNGHJKRY9Jp4q8+5GURkw57D+zGfgaiEp7ZtXOHvhWLvZf2xA
Wq8xQI3lkjE8coTErKxfav6fsGK6S9SwvOe+XDZ9/X1Po0tkpqsn91rVYGIzkiEB
6se1TNqzVB3DYALfvhnEqxwm3u67CxG636JD4kyrFSu8FPimUjT934VT+g/QjDRS
of7jpqXicMhy7w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 11:39:03 2025 by rpki-client