Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json)
Hash identifier: Ko/q381vG7TtjXSV91QRQtO3KuvmZrHzDBlX+hsInec=
Subject key identifier: 39:9A:D9:34:D9:8F:4B:DD:C9:F7:54:3A:96:85:0D:DE:EE:4D:7A:F8
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 01974855978A4E721747EBF1CC10DB87EF13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 03:00:58 +0000
Manifest this update: Sat 07 Jun 2025 03:00:58 +0000
Manifest next update: Sun 08 Jun 2025 03:00:58 +0000
Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: knitBK/0Oi9oVVpPWM5nOzkH8tS+Or3OmsYO7dUQNaU=)
2: nqDbjTD7-4bF8APAmv3q39AmNtk.roa (hash: zWbRV6cXuufmhpJUA1tayT8JP8s9Ez0NcmTuvgMXFF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:97:8a:4e:72:17:47:eb:f1:cc:10:db:87:ef:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Jun 7 03:00:58 2025 GMT
Not After : Jun 8 03:00:58 2025 GMT
Subject: CN=399ad934d98f4bddc9f7543a96850ddeee4d7af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:68:f4:a3:42:da:59:b8:c0:20:eb:49:6a:bd:
3a:f3:e7:62:b0:8d:f8:8d:7f:37:bc:a9:8a:a3:cc:
67:d6:20:fe:ad:65:7b:b8:b4:31:4d:23:af:f0:3e:
1e:37:79:f1:0b:84:64:82:7e:4c:1a:5b:14:1f:3e:
06:1b:d7:66:59:f4:c6:5d:72:39:4b:30:0b:40:74:
c2:67:b1:ad:7f:cd:c3:32:fe:bb:75:6b:01:2a:13:
f6:b8:88:91:29:5b:4b:28:d2:d2:88:c2:e5:0d:84:
a7:e4:da:87:ab:d6:1e:f9:d1:d7:25:86:ac:32:71:
86:35:9e:0e:85:b1:49:0f:b5:63:8c:3d:13:fa:e9:
e7:c7:82:42:c5:7c:fa:75:7f:04:fa:ff:84:ca:96:
18:cc:4a:c6:cc:a8:27:88:28:62:9c:74:94:54:73:
99:a8:d6:12:ac:30:38:8c:7d:bc:fb:cc:5c:a8:94:
74:4a:cf:87:15:cd:e6:ee:e0:2c:ee:4f:83:37:14:
f2:fd:71:95:2b:9c:81:61:92:a9:91:6c:4b:f0:4f:
18:57:8e:ee:b6:1e:86:f1:11:76:79:8a:45:f2:96:
a6:29:c5:77:8d:97:9b:14:85:ab:0e:35:9a:c7:9f:
94:9a:2e:9c:a2:82:6d:e7:17:fa:4d:1e:de:ff:0c:
7b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:9A:D9:34:D9:8F:4B:DD:C9:F7:54:3A:96:85:0D:DE:EE:4D:7A:F8
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:54:9f:3c:2f:ed:b5:fe:27:e0:50:ec:f2:c4:09:a1:60:0c:
f8:59:29:a5:59:a5:de:aa:58:bf:08:d8:69:69:b7:52:a1:1c:
71:78:eb:f4:84:f2:6f:7f:fa:b3:6a:1e:68:0b:60:c9:a3:9a:
dc:2b:a0:c8:3d:f1:d3:8c:ec:57:6f:32:8e:99:d2:c5:c3:98:
ae:62:bb:64:c9:64:4f:4b:ac:18:fe:f2:48:28:2d:2e:bd:6b:
c3:7f:47:97:77:1a:cd:e4:80:ef:e5:79:6d:b7:64:71:23:48:
1c:28:f6:6a:48:4b:01:c3:71:95:6c:11:bc:23:a4:44:21:9e:
34:47:85:4c:bd:b2:fd:80:7f:2c:30:9e:80:d7:aa:30:47:fa:
e5:5d:92:0c:12:69:4f:a2:ce:d4:59:82:6f:76:fe:49:4e:49:
49:02:09:54:cc:89:51:dd:bf:e1:dd:69:57:9e:56:aa:5e:b6:
ba:e6:0e:b8:e8:a6:a6:2c:d4:53:cc:4c:d6:28:c8:45:00:c3:
e8:4a:2e:3b:aa:d4:c9:a6:dc:50:5a:ba:0b:6f:cb:05:6b:bc:
13:bc:0a:3f:93:aa:05:e3:85:c6:6b:51:a9:4b:ad:d3:e9:27:
77:8d:1f:9f:b8:c9:4d:fe:83:b7:7d:b6:fb:12:d6:1a:99:3c:
b1:7e:e6:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIVZeKTnIXR+vxzBDbh+8TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyYzA5NTkwMTE2MjdkZGQwZDA1N2Q3MzFlOGZhNWE1MTAy
OTY1OTIwHhcNMjUwNjA3MDMwMDU4WhcNMjUwNjA4MDMwMDU4WjAzMTEwLwYDVQQD
EygzOTlhZDkzNGQ5OGY0YmRkYzlmNzU0M2E5Njg1MGRkZWVlNGQ3YWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmj0o0LaWbjAIOtJar068+disI34
jX83vKmKo8xn1iD+rWV7uLQxTSOv8D4eN3nxC4Rkgn5MGlsUHz4GG9dmWfTGXXI5
SzALQHTCZ7Gtf83DMv67dWsBKhP2uIiRKVtLKNLSiMLlDYSn5NqHq9Ye+dHXJYas
MnGGNZ4OhbFJD7VjjD0T+unnx4JCxXz6dX8E+v+EypYYzErGzKgniChinHSUVHOZ
qNYSrDA4jH28+8xcqJR0Ss+HFc3m7uAs7k+DNxTy/XGVK5yBYZKpkWxL8E8YV47u
th6G8RF2eYpF8pamKcV3jZebFIWrDjWax5+Umi6cooJt5xf6TR7e/wx7BwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDma2TTZj0vdyfdUOpaFDd7uTXr4MB8GA1UdIwQY
MBaAFELAlZARYn3dDQV9cx6PpaUQKWWSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iYTEyY2QtMmU3ZS00MGRjLWFlODgt
MjQ4YjU5YzM2OTZiLzEvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iYTEyY2QtMmU3ZS00MGRjLWFlODgtMjQ4YjU5YzM2OTZi
LzEvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlSfPC/t
tf4n4FDs8sQJoWAM+FkppVml3qpYvwjYaWm3UqEccXjr9ITyb3/6s2oeaAtgyaOa
3CugyD3x04zsV28yjpnSxcOYrmK7ZMlkT0usGP7ySCgtLr1rw39Hl3cazeSA7+V5
bbdkcSNIHCj2akhLAcNxlWwRvCOkRCGeNEeFTL2y/YB/LDCegNeqMEf65V2SDBJp
T6LO1FmCb3b+SU5JSQIJVMyJUd2/4d1pV55Wql62uuYOuOimpizUU8xM1ijIRQDD
6EouO6rUyabcUFq6C2/LBWu8E7wKP5OqBeOFxmtRqUut0+knd40fn7jJTf6Dt322
+xLWGpk8sX7m2A==
-----END CERTIFICATE-----
Generated at Sat Jun 7 07:36:50 2025 by rpki-client