Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
File: qajkTlc8U8cZIxL8xyFQ0t43fW0.mft (raw, json)
Hash identifier: nhVhfkYQYa9H8CjcU3qqd6Lktjsc5IVLC48HPt2Ph4M=
Subject key identifier: 99:EF:DD:19:BA:A5:E7:99:69:23:3B:20:86:D6:63:04:C5:FC:4A:B4
Authority key identifier: A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
Certificate issuer: /CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Certificate serial: 01974B8DC03A3B5667EACC746B3D09494278
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
Manifest number: 1583
Signing time: Sat 07 Jun 2025 18:01:10 +0000
Manifest this update: Sat 07 Jun 2025 18:01:10 +0000
Manifest next update: Sun 08 Jun 2025 18:01:10 +0000
Files and hashes: 1: CTedhf-UDhDCo0gKWN1eFB95iME.roa (hash: Vr6y6sdI8B/BSyNE6gcBQftZW1dE4fIdtomKsz3LLNE=)
2: qajkTlc8U8cZIxL8xyFQ0t43fW0.crl (hash: 7I1gdZZ0KGgKNF8oj3RUnswb8GfiZ1bkllwbFEm/+WE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:c0:3a:3b:56:67:ea:cc:74:6b:3d:09:49:42:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Validity
Not Before: Jun 7 18:01:10 2025 GMT
Not After : Jun 8 18:01:10 2025 GMT
Subject: CN=99efdd19baa5e79969233b2086d66304c5fc4ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ed:6a:f0:47:d8:f7:bc:d4:20:c4:30:8d:a5:
6b:bf:62:40:ae:eb:44:e1:b4:48:12:eb:0e:f8:6b:
cb:e6:46:80:45:f4:8c:05:e9:bf:93:ea:6e:d8:75:
2f:36:fb:06:88:61:dd:2a:a4:7f:06:5d:83:63:67:
4a:46:eb:9d:0d:d0:61:84:e8:8b:73:4f:c8:81:36:
df:ba:ca:0a:1f:42:f3:f2:e3:94:c7:b1:cb:b2:41:
2a:c4:d4:64:83:9b:ab:81:4a:dc:00:ec:fe:ed:1c:
be:86:6e:8a:bb:3e:dd:6f:f7:5b:12:4f:58:87:32:
13:0e:4e:c4:41:6e:c1:57:c4:a0:1a:85:cc:62:ba:
25:ab:92:f4:0c:0a:fb:d2:9f:77:c8:f8:b5:e7:4b:
f6:b3:f8:fb:c5:82:3e:96:76:5b:20:a2:f6:a4:8f:
00:89:db:bc:88:7d:d7:b3:cd:21:3f:b9:9d:33:2c:
be:4e:9f:f6:15:0a:c4:63:cd:5c:c8:50:90:04:13:
12:30:e3:89:27:9c:17:0d:2d:f3:b4:49:25:6f:4e:
52:11:4f:3b:0d:bf:27:8b:46:07:77:fa:a9:7f:bc:
6f:06:b5:12:42:06:6c:0d:a8:b3:98:97:8c:24:44:
df:db:1d:7a:9c:f4:f9:5d:f5:15:a9:ff:7d:d0:43:
ec:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EF:DD:19:BA:A5:E7:99:69:23:3B:20:86:D6:63:04:C5:FC:4A:B4
X509v3 Authority Key Identifier:
keyid:A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:db:3a:03:85:8a:b8:45:8d:b0:34:c2:d0:ef:78:df:82:0a:
f2:c9:44:15:e6:d0:7c:e4:e3:c8:79:69:e3:e5:0a:68:47:4b:
8d:f4:e6:96:b5:c1:ae:a1:3b:ac:23:33:e3:89:7a:11:d0:ae:
64:a6:6b:a8:7a:46:e7:3d:0c:79:bf:b1:6a:e7:bd:db:42:ba:
9c:0f:1c:6d:d7:b5:e3:af:1f:0e:6b:cd:83:88:11:5a:21:52:
6e:29:f8:38:f9:08:c5:72:42:3f:e3:4e:cc:24:de:fa:f6:b0:
d4:82:79:d4:35:79:93:a6:5c:c8:70:e3:ed:79:f0:38:12:a3:
3a:2a:dc:11:6b:b8:2c:02:14:cb:1f:d6:e3:00:b7:ba:b6:70:
e5:2d:8f:cf:24:3f:db:60:e3:42:31:a9:a0:b0:ec:ff:2f:fb:
bc:ec:ee:be:aa:a1:11:c1:5d:51:41:46:f2:36:de:0d:1b:ea:
4d:0b:74:8f:ea:c6:c1:ca:7d:67:50:8e:e9:25:9d:c0:1f:eb:
58:a2:c0:02:cb:d6:a3:d4:e5:ac:67:3c:44:9c:89:b3:54:a8:
76:ad:fe:52:34:9e:41:8b:3b:b3:30:83:75:5c:b9:17:15:2b:
49:a5:5b:09:96:00:e2:cb:95:bc:2b:0a:95:f0:07:ea:97:22:
3d:26:47:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLjcA6O1Zn6sx0az0JSUJ4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5YThlNDRlNTczYzUzYzcxOTIzMTJmY2M3MjE1MGQyZGUz
NzdkNmQwHhcNMjUwNjA3MTgwMTEwWhcNMjUwNjA4MTgwMTEwWjAzMTEwLwYDVQQD
Eyg5OWVmZGQxOWJhYTVlNzk5NjkyMzNiMjA4NmQ2NjMwNGM1ZmM0YWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2O1q8EfY97zUIMQwjaVrv2JArutE
4bRIEusO+GvL5kaARfSMBem/k+pu2HUvNvsGiGHdKqR/Bl2DY2dKRuudDdBhhOiL
c0/IgTbfusoKH0Lz8uOUx7HLskEqxNRkg5urgUrcAOz+7Ry+hm6Kuz7db/dbEk9Y
hzITDk7EQW7BV8SgGoXMYrolq5L0DAr70p93yPi150v2s/j7xYI+lnZbIKL2pI8A
idu8iH3Xs80hP7mdMyy+Tp/2FQrEY81cyFCQBBMSMOOJJ5wXDS3ztEklb05SEU87
Db8ni0YHd/qpf7xvBrUSQgZsDaizmJeMJETf2x16nPT5XfUVqf990EPsxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJnv3Rm6peeZaSM7IIbWYwTF/Eq0MB8GA1UdIwQY
MBaAFKmo5E5XPFPHGSMS/MchUNLeN31tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWFqa1RsYzhVOGNaSXhMOHh5RlEwdDQzZlcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy80NTJkZDUtZDBlNC00ZDRiLThhZTYt
MTk1MTM0NWNlYTMzLzEvcWFqa1RsYzhVOGNaSXhMOHh5RlEwdDQzZlcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy80NTJkZDUtZDBlNC00ZDRiLThhZTYtMTk1MTM0NWNlYTMz
LzEvcWFqa1RsYzhVOGNaSXhMOHh5RlEwdDQzZlcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkts6A4WK
uEWNsDTC0O9434IK8slEFebQfOTjyHlp4+UKaEdLjfTmlrXBrqE7rCMz44l6EdCu
ZKZrqHpG5z0Meb+xaue920K6nA8cbde1468fDmvNg4gRWiFSbin4OPkIxXJCP+NO
zCTe+vaw1IJ51DV5k6ZcyHDj7XnwOBKjOircEWu4LAIUyx/W4wC3urZw5S2PzyQ/
22DjQjGpoLDs/y/7vOzuvqqhEcFdUUFG8jbeDRvqTQt0j+rGwcp9Z1CO6SWdwB/r
WKLAAsvWo9TlrGc8RJyJs1Sodq3+UjSeQYs7szCDdVy5FxUrSaVbCZYA4suVvCsK
lfAH6pciPSZHgQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 04:13:28 2025 by rpki-client