Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json)
Hash identifier: I1UZIr81U4vXAR6cWI4R/hZnV9mPacsMrA7BfeIoZM8=
Subject key identifier: E4:72:31:06:48:14:0F:7F:E2:5F:AA:2F:3A:0A:55:67:B0:A9:24:93
Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Certificate serial: 01974FA0BEF89C475DCB891F7675C2DE960A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
Manifest number: 0493
Signing time: Sun 08 Jun 2025 13:00:23 +0000
Manifest this update: Sun 08 Jun 2025 13:00:23 +0000
Manifest next update: Mon 09 Jun 2025 13:00:23 +0000
Files and hashes: 1: 4PjPPpWKgAtzAAOasr7gIk0JbPI.roa (hash: yiKX1aQ5yWrVl7HwLmjfK1M9G+FpWFiXbyU5qVlLbDY=)
2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: 8wmBBrKoYt1hHh942S2bif2q3sRsWR8VDfZKf5D9jVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 13:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:a0:be:f8:9c:47:5d:cb:89:1f:76:75:c2:de:96:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Validity
Not Before: Jun 8 13:00:23 2025 GMT
Not After : Jun 9 13:00:23 2025 GMT
Subject: CN=e472310648140f7fe25faa2f3a0a5567b0a92493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4e:f7:a8:d2:16:17:44:d9:66:42:fc:28:71:
41:b6:e2:bf:a1:5a:75:3b:70:b2:6c:1f:75:b0:fe:
31:b7:ba:ab:d6:f5:0a:98:c2:e4:cf:22:f8:d0:c4:
3a:c0:1b:a4:59:17:d9:a3:d3:22:b5:e8:78:38:88:
21:27:26:ca:3a:55:3b:30:9a:2c:53:b6:96:ed:d1:
e7:ab:65:24:66:ff:a7:36:bd:05:ce:e1:5a:ad:03:
38:92:3c:9f:25:83:13:ed:d7:af:96:b0:3b:62:0e:
e1:45:29:25:35:75:13:0b:a9:99:b4:19:f5:bc:a4:
e0:e1:ff:84:f2:a4:f1:22:7d:a3:4a:49:97:ca:71:
42:c9:e0:4d:f8:bd:fd:b9:5e:26:90:97:b1:c7:3f:
8a:09:cc:ed:f4:c9:14:f7:15:7f:1e:d8:9c:85:ec:
04:80:db:a2:df:7d:fe:61:87:f6:10:b8:75:18:4c:
7c:df:2f:87:f9:11:6f:79:b0:4a:36:47:8b:80:a6:
7c:d3:bc:77:2c:63:72:e7:57:16:58:98:15:4c:87:
b5:b4:34:41:85:4e:e2:af:fc:de:7e:5a:b0:8e:86:
a5:39:e0:aa:44:5a:1a:75:82:db:fa:60:59:e4:83:
37:b2:b9:a3:a7:65:33:5a:aa:c3:23:01:b1:b9:b5:
22:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:72:31:06:48:14:0F:7F:E2:5F:AA:2F:3A:0A:55:67:B0:A9:24:93
X509v3 Authority Key Identifier:
keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:3f:49:0d:ff:09:f4:2a:27:d9:1c:06:ac:a5:e2:f0:5d:f7:
7a:f2:b9:8f:74:88:7f:9e:34:bb:03:cc:35:96:f8:31:6a:2b:
78:46:60:49:25:0f:b8:ba:a7:cf:53:cc:49:39:ae:9e:a3:a5:
40:0b:2a:81:43:6b:3e:98:5d:13:17:0a:06:4e:ae:4c:2c:72:
02:1d:15:58:af:e7:6c:a1:82:22:7a:6f:88:fe:c4:b0:4d:76:
eb:2c:f8:2a:86:a7:4e:1a:33:35:b6:d5:b6:40:70:d9:e0:62:
c3:68:8f:f6:3a:7e:0b:b0:ef:8c:1d:db:02:06:44:0e:d9:fc:
04:cc:4e:25:4d:49:2a:f7:20:46:49:ee:5a:55:e5:93:37:91:
d4:c8:a1:ae:89:fc:88:35:40:8d:50:24:9e:8f:43:9d:92:6e:
76:b2:8b:b9:2d:a1:10:b4:8c:37:c0:df:11:09:4f:20:1a:68:
3f:1f:e3:2d:bc:4c:a4:e3:35:a2:33:13:54:dc:57:c4:4d:53:
17:35:58:db:fe:7f:ad:1d:59:b0:a9:74:5f:58:07:cb:56:72:
f3:23:59:8e:e2:d6:76:70:55:c4:6e:78:35:a6:fb:49:22:bb:
bf:fe:81:f8:5a:67:ab:26:cb:c0:08:ad:56:25:80:e1:be:c9:
90:59:1f:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdPoL74nEddy4kfdnXC3pYKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwM2YwOGJiYWZmYTQxNjE4NDMyMDNhOGE3NTdhYjZlOTU0
NmIwY2UwHhcNMjUwNjA4MTMwMDIzWhcNMjUwNjA5MTMwMDIzWjAzMTEwLwYDVQQD
EyhlNDcyMzEwNjQ4MTQwZjdmZTI1ZmFhMmYzYTBhNTU2N2IwYTkyNDkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1073qNIWF0TZZkL8KHFBtuK/oVp1
O3CybB91sP4xt7qr1vUKmMLkzyL40MQ6wBukWRfZo9Miteh4OIghJybKOlU7MJos
U7aW7dHnq2UkZv+nNr0FzuFarQM4kjyfJYMT7devlrA7Yg7hRSklNXUTC6mZtBn1
vKTg4f+E8qTxIn2jSkmXynFCyeBN+L39uV4mkJexxz+KCczt9MkU9xV/HtichewE
gNui333+YYf2ELh1GEx83y+H+RFvebBKNkeLgKZ807x3LGNy51cWWJgVTIe1tDRB
hU7ir/zeflqwjoalOeCqRFoadYLb+mBZ5IM3srmjp2UzWqrDIwGxubUikwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFORyMQZIFA9/4l+qLzoKVWewqSSTMB8GA1UdIwQY
MBaAFEA/CLuv+kFhhDIDqKdXq26VRrDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5Yjgt
MzhkOGE3OGE0ODYyLzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5YjgtMzhkOGE3OGE0ODYy
LzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbj9JDf8J
9Con2RwGrKXi8F33evK5j3SIf540uwPMNZb4MWoreEZgSSUPuLqnz1PMSTmunqOl
QAsqgUNrPphdExcKBk6uTCxyAh0VWK/nbKGCInpviP7EsE126yz4KoanThozNbbV
tkBw2eBiw2iP9jp+C7DvjB3bAgZEDtn8BMxOJU1JKvcgRknuWlXlkzeR1Mihron8
iDVAjVAkno9DnZJudrKLuS2hELSMN8DfEQlPIBpoPx/jLbxMpOM1ojMTVNxXxE1T
FzVY2/5/rR1ZsKl0X1gHy1Zy8yNZjuLWdnBVxG54Nab7SSK7v/6B+FpnqybLwAit
ViWA4b7JkFkf0w==
-----END CERTIFICATE-----
Generated at Sun Jun 8 23:30:05 2025 by rpki-client