Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
File: WqKpJUebz8vBloipUqJDAfTnaDk.mft (raw, json)
Hash identifier: l0ovySN3s+kOULKwbCwyIzb/8E+T67e/9kd+cSsUupo=
Subject key identifier: 16:4D:66:2F:67:D4:73:E7:19:FB:B8:FE:0A:95:34:5D:72:11:44:15
Authority key identifier: 5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
Certificate issuer: /CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Certificate serial: 01974BC4614A4C37F22E87B6C8788FACD0DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
Manifest number: 06D5
Signing time: Sat 07 Jun 2025 19:00:50 +0000
Manifest this update: Sat 07 Jun 2025 19:00:50 +0000
Manifest next update: Sun 08 Jun 2025 19:00:50 +0000
Files and hashes: 1: WqKpJUebz8vBloipUqJDAfTnaDk.crl (hash: pxS3Of4hQmAET7qbsdTzd1m1ZVrA6WUIUH3ijSwTKSU=)
2: jYQY-U25B3NSBy3Axt-DvgoJjdQ.roa (hash: zP4WnXpWxsW1++MaE9e5/n5ALBQb36qRJjvWEAaaUiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:61:4a:4c:37:f2:2e:87:b6:c8:78:8f:ac:d0:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Validity
Not Before: Jun 7 19:00:50 2025 GMT
Not After : Jun 8 19:00:50 2025 GMT
Subject: CN=164d662f67d473e719fbb8fe0a95345d72114415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:76:c0:12:a7:b4:7f:fb:51:bf:bd:6f:6e:6f:
11:4f:74:29:a4:ff:c6:42:25:9c:70:6d:a9:18:54:
2f:46:e2:cc:f0:9b:4b:f6:9c:33:cd:d7:14:b6:4d:
f6:de:17:f7:82:3e:c6:9b:58:6c:5b:a8:b7:9c:06:
69:db:50:4b:9b:d3:1e:60:df:9c:9e:8f:17:69:2e:
36:64:a1:f2:f7:6d:af:4d:60:a0:8a:68:b3:ae:59:
49:37:13:9f:aa:75:f2:11:79:78:8f:01:e5:e4:7f:
7a:3b:ae:4a:2e:81:86:54:db:db:cf:c5:1d:4a:e5:
be:16:8f:8b:f5:0b:c8:e8:48:1b:74:43:b6:8e:f6:
da:f0:a5:c7:84:86:9c:2d:e6:8e:08:c3:77:a0:7e:
34:5a:f1:19:af:4d:7c:d1:fc:5c:68:62:76:a7:48:
11:77:8b:43:11:6f:66:f3:6c:08:4c:28:93:4e:8c:
dd:6e:52:79:70:4c:ba:05:be:cd:66:02:61:2a:fa:
bb:17:8e:de:ad:21:2f:45:df:3c:c6:8b:5e:82:b3:
1b:e0:50:68:7f:f4:3e:be:24:66:8c:9e:8c:8a:07:
c4:d2:02:6e:0e:a0:4d:b8:92:07:6f:af:9a:dd:48:
d9:e5:b2:c6:20:98:b7:01:67:ff:ce:7a:2b:f0:c6:
cb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4D:66:2F:67:D4:73:E7:19:FB:B8:FE:0A:95:34:5D:72:11:44:15
X509v3 Authority Key Identifier:
keyid:5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:b9:dd:2d:6e:32:33:18:9a:9b:4e:70:3f:f4:89:c4:29:ed:
3c:4e:23:35:bd:8c:75:20:47:9c:77:e5:04:3e:da:c8:71:a0:
bf:e6:54:88:0a:48:44:42:8e:3f:42:ea:63:4e:93:8d:40:45:
81:67:26:ea:0a:58:2c:72:ef:70:00:a6:ca:26:08:b6:c0:a7:
4c:bc:8a:85:ed:98:ca:1d:78:0f:28:48:1a:8c:57:bc:b8:7d:
59:53:8f:b0:a1:94:e4:29:46:1b:20:16:44:d6:22:5b:40:de:
a9:68:d0:27:c5:bf:38:32:b1:21:47:37:8d:39:b3:83:31:3d:
5a:73:2a:a5:70:3c:a5:3e:c2:ed:e0:98:1c:b2:8e:37:31:49:
6e:7e:b2:cc:69:83:7f:19:00:c9:06:e4:4f:ad:6b:75:fe:94:
96:a4:06:1c:86:d6:05:40:b8:a4:d6:f9:55:db:8d:4e:f6:79:
2c:a6:a6:20:5d:44:73:be:bb:47:05:19:96:4d:b0:bb:d9:bf:
f7:2f:cf:29:92:e0:9f:c5:63:2a:6c:62:f6:a1:18:44:a2:e4:
3e:d3:40:b2:f7:b4:2d:a7:a5:c0:24:ad:45:37:a4:5c:f7:49:
8a:2d:90:62:86:1b:df:8d:17:04:e4:ec:23:21:b9:6e:1e:c0:
a5:d9:6c:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLxGFKTDfyLoe2yHiPrNDeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhYTJhOTI1NDc5YmNmY2JjMTk2ODhhOTUyYTI0MzAxZjRl
NzY4MzkwHhcNMjUwNjA3MTkwMDUwWhcNMjUwNjA4MTkwMDUwWjAzMTEwLwYDVQQD
EygxNjRkNjYyZjY3ZDQ3M2U3MTlmYmI4ZmUwYTk1MzQ1ZDcyMTE0NDE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0nbAEqe0f/tRv71vbm8RT3QppP/G
QiWccG2pGFQvRuLM8JtL9pwzzdcUtk323hf3gj7Gm1hsW6i3nAZp21BLm9MeYN+c
no8XaS42ZKHy922vTWCgimizrllJNxOfqnXyEXl4jwHl5H96O65KLoGGVNvbz8Ud
SuW+Fo+L9QvI6EgbdEO2jvba8KXHhIacLeaOCMN3oH40WvEZr0180fxcaGJ2p0gR
d4tDEW9m82wITCiTTozdblJ5cEy6Bb7NZgJhKvq7F47erSEvRd88xotegrMb4FBo
f/Q+viRmjJ6MigfE0gJuDqBNuJIHb6+a3UjZ5bLGIJi3AWf/znor8MbLCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBZNZi9n1HPnGfu4/gqVNF1yEUQVMB8GA1UdIwQY
MBaAFFqiqSVHm8/LwZaIqVKiQwH052g5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3FLcEpVZWJ6OHZCbG9pcFVxSkRBZlRuYURrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8wYTAzMGYtYWJiNS00ZTM3LTk2YTMt
YjRmMTIwMTIyOTIyLzEvV3FLcEpVZWJ6OHZCbG9pcFVxSkRBZlRuYURrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS8wYTAzMGYtYWJiNS00ZTM3LTk2YTMtYjRmMTIwMTIyOTIy
LzEvV3FLcEpVZWJ6OHZCbG9pcFVxSkRBZlRuYURrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm7ndLW4y
Mxiam05wP/SJxCntPE4jNb2MdSBHnHflBD7ayHGgv+ZUiApIREKOP0LqY06TjUBF
gWcm6gpYLHLvcACmyiYItsCnTLyKhe2Yyh14DyhIGoxXvLh9WVOPsKGU5ClGGyAW
RNYiW0DeqWjQJ8W/ODKxIUc3jTmzgzE9WnMqpXA8pT7C7eCYHLKONzFJbn6yzGmD
fxkAyQbkT61rdf6UlqQGHIbWBUC4pNb5VduNTvZ5LKamIF1Ec767RwUZlk2wu9m/
9y/PKZLgn8VjKmxi9qEYRKLkPtNAsve0LaelwCStRTekXPdJii2QYoYb340XBOTs
IyG5bh7ApdlsYw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:10:05 2025 by rpki-client