Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
File: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft (raw, json)
Hash identifier: c2xrzPJBVdx1ETV23B0f54s0BCgNlgjKBD+g8C7ctzs=
Subject key identifier: 80:62:53:19:3F:2A:B4:A2:9F:0C:1B:6A:F6:CA:AB:F1:47:18:55:05
Authority key identifier: B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
Certificate issuer: /CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Certificate serial: 019748C329FD2FE2375513E89235657CCDEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
Manifest number: 021A
Signing time: Sat 07 Jun 2025 05:00:39 +0000
Manifest this update: Sat 07 Jun 2025 05:00:39 +0000
Manifest next update: Sun 08 Jun 2025 05:00:39 +0000
Files and hashes: 1: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl (hash: BX6VUlsr+ZCT62KodbO8K9LEu0McxjEyaXUiLr3p7T8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:29:fd:2f:e2:37:55:13:e8:92:35:65:7c:cd:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Validity
Not Before: Jun 7 05:00:39 2025 GMT
Not After : Jun 8 05:00:39 2025 GMT
Subject: CN=806253193f2ab4a29f0c1b6af6caabf147185505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:91:29:7a:ce:02:63:a7:96:d8:4a:f0:bd:e1:
75:b2:90:c7:9f:30:0d:63:31:1a:7d:59:25:06:b2:
ba:e0:48:82:03:fc:d4:0c:95:3c:41:f9:b0:6d:23:
7c:7c:32:f9:45:f5:d3:d5:e8:fb:73:22:30:21:62:
c1:c9:37:1b:7e:2c:fc:b0:77:f9:89:ed:cd:92:11:
1e:7b:0a:db:96:55:89:a4:07:ad:c8:f4:d2:ec:df:
fa:5d:51:9c:f5:e7:63:4c:ee:63:d6:56:e4:3a:07:
8b:04:dd:ba:64:45:49:2d:30:65:44:20:9c:57:dc:
a4:1f:0e:d4:41:89:7e:75:07:ca:00:ca:9b:5c:5f:
ce:ed:f2:33:45:57:34:b5:ec:6f:47:fd:62:c4:75:
72:1b:5b:fa:3e:bc:aa:d3:98:79:39:8a:4d:3a:70:
74:ee:7d:93:f2:71:24:63:22:6f:2c:f4:ac:54:49:
07:b2:d9:cb:e0:16:87:52:b5:4d:be:5b:25:ab:0b:
17:05:0c:bd:5d:a5:2d:d4:ad:20:fb:8e:8a:38:f7:
ac:c6:23:58:4b:60:56:70:86:9b:2a:63:6a:a8:ff:
76:77:92:a8:92:cc:35:60:0c:b8:74:46:c1:b5:1f:
d9:37:19:7a:54:36:57:c1:7f:6d:36:f4:69:91:6e:
7b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:62:53:19:3F:2A:B4:A2:9F:0C:1B:6A:F6:CA:AB:F1:47:18:55:05
X509v3 Authority Key Identifier:
keyid:B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:42:6f:c9:eb:88:90:7d:40:91:38:d7:e5:1b:85:71:97:05:
fb:66:c7:5f:f8:78:f7:44:1f:69:a2:68:06:bf:89:f7:41:fe:
3f:6f:82:5c:46:ca:d6:af:88:ac:54:b4:7b:b2:3b:f3:ab:50:
22:ac:a8:8b:be:91:50:74:5a:86:0d:ed:c8:b4:2a:ac:d1:82:
cd:e3:d3:b7:de:35:0a:75:5b:1b:fd:97:12:33:d8:c9:cc:58:
9c:96:11:eb:9a:00:95:af:f5:58:1c:5c:ea:da:3e:c7:ef:ea:
74:ae:7a:2a:32:90:6e:c1:75:83:98:cd:4a:3b:c2:01:10:01:
ac:5b:68:09:24:35:c8:8f:bb:06:68:0a:81:7f:b9:39:f6:21:
d0:f3:31:04:ae:36:07:25:09:4c:de:51:70:7c:25:25:da:42:
8a:e2:9d:7a:0d:45:5b:37:da:ab:a6:94:87:3d:bf:4f:58:41:
b5:30:55:f7:7d:63:77:95:df:64:67:82:8e:7b:0d:8f:4a:88:
cd:ce:27:b1:f8:b3:ae:05:cc:ef:9e:63:8f:e1:d2:82:c4:bc:
06:78:b5:6c:ad:fe:96:4c:88:a5:7d:64:0e:1e:d1:51:ac:42:
40:e6:b1:13:80:82:3e:14:86:7b:57:7a:5f:68:16:71:0b:ea:
ea:c9:10:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIwyn9L+I3VRPokjVlfM3sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYTg1MzcxZTkyZjM5YTJiZTQyNDc2MGIwNGU0N2FkOWRh
M2VkM2IwHhcNMjUwNjA3MDUwMDM5WhcNMjUwNjA4MDUwMDM5WjAzMTEwLwYDVQQD
Eyg4MDYyNTMxOTNmMmFiNGEyOWYwYzFiNmFmNmNhYWJmMTQ3MTg1NTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZEpes4CY6eW2ErwveF1spDHnzAN
YzEafVklBrK64EiCA/zUDJU8QfmwbSN8fDL5RfXT1ej7cyIwIWLByTcbfiz8sHf5
ie3NkhEeewrbllWJpAetyPTS7N/6XVGc9edjTO5j1lbkOgeLBN26ZEVJLTBlRCCc
V9ykHw7UQYl+dQfKAMqbXF/O7fIzRVc0texvR/1ixHVyG1v6Pryq05h5OYpNOnB0
7n2T8nEkYyJvLPSsVEkHstnL4BaHUrVNvlslqwsXBQy9XaUt1K0g+46KOPesxiNY
S2BWcIabKmNqqP92d5Koksw1YAy4dEbBtR/ZNxl6VDZXwX9tNvRpkW57jQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIBiUxk/KrSinwwbavbKq/FHGFUFMB8GA1UdIwQY
MBaAFLKoU3HpLzmivkJHYLBOR62do+07MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9mNWQ3MzAtZjhlYi00ZjgwLTlhOWMt
OWFiZTRlNmMyYmUxLzEvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi9mNWQ3MzAtZjhlYi00ZjgwLTlhOWMtOWFiZTRlNmMyYmUx
LzEvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe0JvyeuI
kH1AkTjX5RuFcZcF+2bHX/h490QfaaJoBr+J90H+P2+CXEbK1q+IrFS0e7I786tQ
Iqyoi76RUHRahg3tyLQqrNGCzePTt941CnVbG/2XEjPYycxYnJYR65oAla/1WBxc
6to+x+/qdK56KjKQbsF1g5jNSjvCARABrFtoCSQ1yI+7BmgKgX+5OfYh0PMxBK42
ByUJTN5RcHwlJdpCiuKdeg1FWzfaq6aUhz2/T1hBtTBV931jd5XfZGeCjnsNj0qI
zc4nsfizrgXM755jj+HSgsS8Bni1bK3+lkyIpX1kDh7RUaxCQOaxE4CCPhSGe1d6
X2gWcQvq6skQqg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:41:49 2025 by rpki-client