Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
File: Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft (raw, json)
Hash identifier: 5tqBp53z7tNLr0EHz0HUjM6GxEodvXyD0TcKzG7knlM=
Subject key identifier: BE:A4:F6:49:DF:16:76:42:D9:54:66:78:C1:E1:C4:35:3B:10:8D:24
Authority key identifier: 42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
Certificate issuer: /CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Certificate serial: 01976B4F72CB34E22D93F7E607B3B14643EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
Manifest number: 05E5
Signing time: Fri 13 Jun 2025 22:00:58 +0000
Manifest this update: Fri 13 Jun 2025 22:00:58 +0000
Manifest next update: Sat 14 Jun 2025 22:00:58 +0000
Files and hashes: 1: BR-wwst0Mwoj4cW4aMMLkST0T08.roa (hash: KhuoTa1EwW+NDwJopflLn+SOxpsU8qTU0jm6Bsplu/Y=)
2: Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl (hash: RDdYV2RwKfRa8oX93pu4OVqD2n5gEKMFd/IrudeURL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:4f:72:cb:34:e2:2d:93:f7:e6:07:b3:b1:46:43:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Validity
Not Before: Jun 13 22:00:58 2025 GMT
Not After : Jun 14 22:00:58 2025 GMT
Subject: CN=bea4f649df167642d9546678c1e1c4353b108d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:49:28:47:e6:3e:4e:10:d0:e4:49:5e:b9:84:
f6:d9:23:ba:fe:da:9e:e0:62:7b:d9:b7:40:37:31:
01:f9:1d:7e:e2:51:05:50:c6:af:22:18:96:69:3d:
14:d1:3e:cd:33:23:ee:23:4e:83:11:a5:80:8e:82:
d3:bc:f3:f7:84:8c:4f:93:96:95:cd:9a:37:2e:06:
19:ed:0b:f0:41:62:1a:af:08:aa:6b:68:5c:9f:e6:
cd:21:52:90:0b:32:3b:48:f8:10:5c:c7:21:b3:02:
c8:c0:2d:1d:f7:c7:23:0f:3a:18:3f:86:b7:7c:f3:
a0:12:bf:8c:6c:80:c0:92:81:52:8a:45:28:ea:ac:
b4:e3:67:67:42:9f:21:26:6c:d5:9b:14:51:b9:85:
24:75:ec:e4:fc:04:30:66:cc:ef:72:74:fb:be:f0:
72:56:c8:72:6c:2e:b5:ef:e6:ad:da:5c:57:02:4e:
67:53:ba:0f:16:ce:e8:76:fc:af:c5:51:52:1d:45:
fa:25:9a:f2:8c:00:1c:9d:64:fb:45:19:a4:99:c1:
bf:88:43:e2:1d:0a:b9:46:cc:d9:ac:49:95:11:ad:
16:c6:ef:b6:fa:ed:5f:eb:03:03:0f:b2:6f:da:2e:
16:b7:c9:c2:e1:91:59:01:17:ff:3c:e5:94:e8:37:
97:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A4:F6:49:DF:16:76:42:D9:54:66:78:C1:E1:C4:35:3B:10:8D:24
X509v3 Authority Key Identifier:
keyid:42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:13:9d:42:89:31:5b:2d:39:ad:22:46:f4:56:ec:92:63:a3:
08:cf:2c:42:3d:4e:6a:46:60:78:99:ce:61:7b:b2:24:f6:f4:
c7:e9:4c:f0:ae:a3:90:ac:18:56:f1:85:cf:9a:c5:b0:c9:7c:
04:87:dc:1e:04:f5:33:25:72:82:af:68:9f:ff:58:03:e6:a3:
70:4c:10:d9:f8:7d:e5:29:83:82:fc:c3:aa:3d:e5:33:50:e5:
24:5d:84:d7:e0:6b:1a:41:01:fa:fa:3f:f6:a1:d8:88:ca:41:
3e:fc:5b:d1:e2:93:82:b9:1b:f7:82:23:7a:d6:2a:b7:29:2f:
5c:e0:1b:97:21:e9:02:57:ff:7f:b1:c1:d0:61:b4:a4:4b:6f:
e5:b0:9f:32:84:9e:b0:10:d1:8c:58:e3:2d:84:7a:35:0b:e0:
c8:20:5f:03:c8:9e:85:4b:ad:a5:49:c2:98:6c:e6:4d:a1:82:
4e:cd:01:ec:38:42:a6:c1:fe:69:8f:c0:02:f7:39:b9:93:de:
0e:58:72:a3:32:50:0d:b1:d8:01:1c:cb:e0:b8:3b:10:bd:8c:
6b:09:ba:42:b7:0d:0f:fa:c8:6e:3d:79:98:b3:89:f1:41:ca:
82:9a:55:c9:ec:1c:7e:28:e7:80:81:5f:ab:fb:01:70:3f:66:
5e:6a:78:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdrT3LLNOItk/fmB7OxRkPvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyN2RmOTVlZTEwYTJhZDRlYWYwODJkZmFjMTU5ODM4YjM3
ZDM0NTAwHhcNMjUwNjEzMjIwMDU4WhcNMjUwNjE0MjIwMDU4WjAzMTEwLwYDVQQD
EyhiZWE0ZjY0OWRmMTY3NjQyZDk1NDY2NzhjMWUxYzQzNTNiMTA4ZDI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA60koR+Y+ThDQ5EleuYT22SO6/tqe
4GJ72bdANzEB+R1+4lEFUMavIhiWaT0U0T7NMyPuI06DEaWAjoLTvPP3hIxPk5aV
zZo3LgYZ7QvwQWIarwiqa2hcn+bNIVKQCzI7SPgQXMchswLIwC0d98cjDzoYP4a3
fPOgEr+MbIDAkoFSikUo6qy042dnQp8hJmzVmxRRuYUkdezk/AQwZszvcnT7vvBy
VshybC617+at2lxXAk5nU7oPFs7odvyvxVFSHUX6JZryjAAcnWT7RRmkmcG/iEPi
HQq5RszZrEmVEa0Wxu+2+u1f6wMDD7Jv2i4Wt8nC4ZFZARf/POWU6DeXJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL6k9knfFnZC2VRmeMHhxDU7EI0kMB8GA1UdIwQY
MBaAFEJ9+V7hCirU6vCC36wVmDizfTRQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUt
Nzk0M2Q5YTc5YmQyLzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUtNzk0M2Q5YTc5YmQy
LzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMxOdQokx
Wy05rSJG9FbskmOjCM8sQj1OakZgeJnOYXuyJPb0x+lM8K6jkKwYVvGFz5rFsMl8
BIfcHgT1MyVygq9on/9YA+ajcEwQ2fh95SmDgvzDqj3lM1DlJF2E1+BrGkEB+vo/
9qHYiMpBPvxb0eKTgrkb94IjetYqtykvXOAblyHpAlf/f7HB0GG0pEtv5bCfMoSe
sBDRjFjjLYR6NQvgyCBfA8iehUutpUnCmGzmTaGCTs0B7DhCpsH+aY/AAvc5uZPe
DlhyozJQDbHYARzL4Lg7EL2Mawm6QrcND/rIbj15mLOJ8UHKgppVyewcfijngIFf
q/sBcD9mXmp4RQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 06:24:57 2025 by rpki-client