Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: DnnQS3lhApNgCKRYfp73sX4D1N3MY8l8tB5kEyN2iaY=
Subject key identifier: 64:7E:53:0B:88:A9:85:87:CB:56:04:DF:25:A9:78:77:19:3D:7F:1B
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 0197B6A18097FCDA837AC6D4B6644C41EB26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0CD6
Signing time: Sat 28 Jun 2025 13:02:06 +0000
Manifest this update: Sat 28 Jun 2025 13:02:06 +0000
Manifest next update: Sun 29 Jun 2025 13:02:06 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: s9o6KHyfXbSgw0yt3tKDcA3a3L11ybxE1+CXNb0q+9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:80:97:fc:da:83:7a:c6:d4:b6:64:4c:41:eb:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Jun 28 13:02:06 2025 GMT
Not After : Jun 29 13:02:06 2025 GMT
Subject: CN=647e530b88a98587cb5604df25a97877193d7f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:42:3f:39:93:de:96:42:38:ee:f4:26:49:93:
dc:f5:7e:14:0e:0a:e8:6c:91:c1:ed:2f:7c:33:3e:
29:76:55:c3:d5:53:e9:e2:bd:ea:3c:c0:05:d4:d1:
99:ce:20:31:8b:07:b7:dd:18:61:ea:8b:a5:e8:1d:
c4:1c:73:81:2b:89:21:b7:06:ff:4f:f9:9a:ab:81:
fc:79:fa:ba:89:33:e8:8f:34:aa:34:e9:c9:22:f0:
d0:73:a7:79:38:de:f3:f1:2d:3b:7a:cb:9b:5d:d7:
9c:40:9b:8c:6e:e8:d1:98:83:d5:57:23:62:c7:3e:
fd:fe:4e:f9:73:87:f7:99:43:60:6d:6d:1a:9f:c6:
6d:c0:85:0d:79:1d:bc:c5:03:b3:5c:be:78:21:3b:
34:ce:36:e8:a5:fe:a5:a7:8d:cf:b1:1e:9e:bf:16:
28:a5:6e:08:14:0c:c8:88:8c:a2:af:6f:cd:08:d8:
de:18:4d:8e:48:d7:6d:25:44:2f:56:65:8e:2f:64:
65:77:53:97:45:d1:0e:c6:99:9e:bc:ef:8b:10:ba:
63:65:9e:e4:72:29:27:b8:3c:d4:5a:45:9f:9f:ff:
c9:12:a1:28:88:dd:a7:95:73:e6:0e:dc:82:7b:bc:
97:d4:62:c0:8d:39:05:53:a1:ed:8c:ea:41:44:97:
a3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:7E:53:0B:88:A9:85:87:CB:56:04:DF:25:A9:78:77:19:3D:7F:1B
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:97:5e:64:da:f7:56:0d:8c:a0:ac:81:0d:98:32:2b:97:40:
e2:3c:cc:3d:44:6e:e6:7b:c1:7c:8a:bc:16:ad:95:95:38:66:
8d:63:3f:0e:36:be:dc:31:fd:15:01:d6:72:b6:d6:e7:60:65:
eb:e2:73:bb:c8:6a:13:8d:ae:b1:40:ef:92:7e:db:d0:34:0b:
24:cc:bd:18:31:43:04:1e:6c:12:d4:be:4d:c4:3e:d8:5d:dc:
13:22:a5:75:94:39:6c:3f:64:8f:46:22:9a:ff:62:66:42:96:
d3:e4:98:5f:07:25:72:e4:f2:80:25:42:e3:e1:e4:1a:5a:0c:
ad:86:14:04:4b:48:68:e8:14:b7:db:b2:95:42:4a:4c:c5:b2:
6b:71:d9:3b:35:07:69:22:69:2d:30:71:8a:a6:e4:92:c0:11:
23:70:42:c3:85:97:4f:62:20:84:9d:d0:dd:6c:13:47:dd:07:
55:58:b8:de:f3:2c:50:2b:02:63:6f:4e:19:a1:12:2d:f4:76:
bf:32:03:cb:08:63:d4:d7:ee:a8:b7:5b:b8:41:60:27:75:f3:
84:c5:df:0d:1a:00:6f:56:3c:16:90:c1:ca:6b:cc:2a:27:a3:
cd:ea:09:18:b8:d9:f4:a3:22:76:2c:93:6d:6c:2f:f0:89:5d:
e9:dc:44:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oYCX/NqDesbUtmRMQesmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYWE5NDlkMzFjNjY4ODhjYjQ3NThmMjNkZDVmMzEyMTQx
ZGVjNGEwHhcNMjUwNjI4MTMwMjA2WhcNMjUwNjI5MTMwMjA2WjAzMTEwLwYDVQQD
Eyg2NDdlNTMwYjg4YTk4NTg3Y2I1NjA0ZGYyNWE5Nzg3NzE5M2Q3ZjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EI/OZPelkI47vQmSZPc9X4UDgro
bJHB7S98Mz4pdlXD1VPp4r3qPMAF1NGZziAxiwe33Rhh6oul6B3EHHOBK4khtwb/
T/maq4H8efq6iTPojzSqNOnJIvDQc6d5ON7z8S07esubXdecQJuMbujRmIPVVyNi
xz79/k75c4f3mUNgbW0an8ZtwIUNeR28xQOzXL54ITs0zjbopf6lp43PsR6evxYo
pW4IFAzIiIyir2/NCNjeGE2OSNdtJUQvVmWOL2Rld1OXRdEOxpmevO+LELpjZZ7k
ciknuDzUWkWfn//JEqEoiN2nlXPmDtyCe7yX1GLAjTkFU6HtjOpBRJejywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGR+UwuIqYWHy1YE3yWpeHcZPX8bMB8GA1UdIwQY
MBaAFECqlJ0xxmiIy0dY8j3V8xIUHexKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgt
ZmQxMWJiMWNjODJkLzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgtZmQxMWJiMWNjODJk
LzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfJdeZNr3
Vg2MoKyBDZgyK5dA4jzMPURu5nvBfIq8Fq2VlThmjWM/Dja+3DH9FQHWcrbW52Bl
6+Jzu8hqE42usUDvkn7b0DQLJMy9GDFDBB5sEtS+TcQ+2F3cEyKldZQ5bD9kj0Yi
mv9iZkKW0+SYXwclcuTygCVC4+HkGloMrYYUBEtIaOgUt9uylUJKTMWya3HZOzUH
aSJpLTBxiqbkksARI3BCw4WXT2IghJ3Q3WwTR90HVVi43vMsUCsCY29OGaESLfR2
vzIDywhj1NfuqLdbuEFgJ3XzhMXfDRoAb1Y8FpDBymvMKiejzeoJGLjZ9KMidiyT
bWwv8Ild6dxEhA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:46:23 2025 by rpki-client