Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
File: QIyWuStsaY_TT6x9WB1MCQjczpk.mft (raw, json)
Hash identifier: yEAG8qo/n1c6kwY/tdEJ4kf8QaUMYg2j5bSWQcefaT4=
Subject key identifier: C3:35:F1:C6:65:C5:E0:70:41:02:59:4D:F5:D4:ED:2F:E1:32:3F:93
Authority key identifier: 40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
Certificate issuer: /CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Certificate serial: 0197B70EF4F075B10AF24D2097BD9115E12A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
Manifest number: 1185
Signing time: Sat 28 Jun 2025 15:01:39 +0000
Manifest this update: Sat 28 Jun 2025 15:01:39 +0000
Manifest next update: Sun 29 Jun 2025 15:01:39 +0000
Files and hashes: 1: QIyWuStsaY_TT6x9WB1MCQjczpk.crl (hash: n2yX/zfE9Amm9ujvGSUJh1rbyzGmi0cL8oiYGeXyH20=)
2: o7v3w6s-TtM4FqHNx2KIzrdDfyg.roa (hash: E/bv9FlRfrfb8DUNG3s4m8ELhpH6SWFAZyVqbfxptQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:f4:f0:75:b1:0a:f2:4d:20:97:bd:91:15:e1:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Validity
Not Before: Jun 28 15:01:39 2025 GMT
Not After : Jun 29 15:01:39 2025 GMT
Subject: CN=c335f1c665c5e0704102594df5d4ed2fe1323f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:23:ae:93:f1:56:f0:a9:4d:d6:70:4b:89:bf:
f1:f3:90:43:80:f1:06:49:b7:ed:b8:2d:70:9f:3d:
59:cf:70:ee:3a:79:f6:b8:43:68:e1:36:92:dd:ce:
76:31:98:a5:30:9d:98:87:79:99:c9:81:e1:1c:bb:
b9:45:ab:e0:69:36:75:06:94:df:80:72:76:1e:62:
6c:5e:41:bd:0e:0a:e5:c9:4e:22:b5:f5:4a:03:26:
27:4b:d3:5a:b0:45:40:bf:46:6d:c0:f8:b3:6b:90:
7e:1c:ce:58:f8:ce:0d:d1:2a:bd:85:cc:b7:40:29:
be:28:a8:0d:42:7d:c3:26:87:50:2e:0b:03:d0:d1:
75:c3:dd:2c:d9:76:3c:4a:fa:cf:82:3d:87:c9:09:
9f:de:a3:04:5f:98:93:ee:c5:37:7d:37:c6:f8:1c:
6b:ce:1c:5c:c0:db:4f:cf:20:cd:92:53:d5:66:88:
ff:44:d2:e0:77:08:c4:a1:96:9f:11:33:26:41:2e:
29:5d:f0:f7:e8:1e:4a:fb:f8:84:63:d1:c3:52:b9:
28:6b:3d:fa:db:3b:f1:76:cf:02:13:1b:da:98:c3:
85:b0:26:e3:6c:e8:8b:5d:71:91:87:67:bc:ba:ff:
de:12:dd:e3:96:20:66:86:1b:fe:3f:16:9d:38:cd:
72:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:35:F1:C6:65:C5:E0:70:41:02:59:4D:F5:D4:ED:2F:E1:32:3F:93
X509v3 Authority Key Identifier:
keyid:40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:57:e7:2c:7d:b8:65:9a:55:3c:56:8b:30:f0:22:65:56:81:
d3:c5:00:42:a8:4e:62:1b:dc:0f:6b:0e:e0:a5:98:51:47:de:
7b:90:b7:9e:98:0f:2f:d7:fe:6e:ff:2a:19:10:8f:b0:82:33:
f3:f8:74:44:96:92:2f:95:ec:93:1e:62:62:0d:09:94:ed:ce:
3e:64:14:22:99:7f:6e:c9:35:88:96:d0:fa:cd:e3:25:23:9b:
b5:37:ac:eb:b8:0b:3f:eb:0c:38:3f:3e:d8:b8:85:fd:cf:2f:
54:55:8d:bb:39:cf:5d:53:0c:2e:8b:c8:74:de:5d:6b:fe:b1:
d0:29:3e:c9:05:f4:ee:df:3b:0d:23:3b:65:fc:42:b4:6a:00:
c5:a7:58:e0:cd:21:96:75:e9:97:d7:60:2b:ad:75:b9:84:2c:
07:22:9d:e0:02:76:af:26:6d:07:ca:b8:b1:30:e7:e7:4d:0a:
dc:a2:fe:52:42:d8:23:f6:15:8d:5e:88:6d:30:3c:6e:5d:f5:
2f:1e:e7:a4:06:d0:7a:9e:4f:dc:9b:7e:97:12:a0:c9:95:1e:
13:40:57:02:fd:96:04:c4:00:d2:7d:04:01:fb:fa:8e:14:5b:
39:6f:41:d1:9b:c6:a0:5b:28:fc:bc:88:e8:36:6a:18:fc:8d:
cf:25:f1:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DvTwdbEK8k0gl72RFeEqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwOGM5NmI5MmI2YzY5OGZkMzRmYWM3ZDU4MWQ0YzA5MDhk
Y2NlOTkwHhcNMjUwNjI4MTUwMTM5WhcNMjUwNjI5MTUwMTM5WjAzMTEwLwYDVQQD
EyhjMzM1ZjFjNjY1YzVlMDcwNDEwMjU5NGRmNWQ0ZWQyZmUxMzIzZjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiOuk/FW8KlN1nBLib/x85BDgPEG
SbftuC1wnz1Zz3DuOnn2uENo4TaS3c52MZilMJ2Yh3mZyYHhHLu5RavgaTZ1BpTf
gHJ2HmJsXkG9DgrlyU4itfVKAyYnS9NasEVAv0ZtwPiza5B+HM5Y+M4N0Sq9hcy3
QCm+KKgNQn3DJodQLgsD0NF1w90s2XY8SvrPgj2HyQmf3qMEX5iT7sU3fTfG+Bxr
zhxcwNtPzyDNklPVZoj/RNLgdwjEoZafETMmQS4pXfD36B5K+/iEY9HDUrkoaz36
2zvxds8CExvamMOFsCbjbOiLXXGRh2e8uv/eEt3jliBmhhv+PxadOM1yoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMM18cZlxeBwQQJZTfXU7S/hMj+TMB8GA1UdIwQY
MBaAFECMlrkrbGmP00+sfVgdTAkI3M6ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUl5V3VTdHNhWV9UVDZ4OVdCMU1DUWpjenBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8yMjlmYTItMzJjYy00YjU5LTkzNzct
NTZiYmYwYmVhZjQ3LzEvUUl5V3VTdHNhWV9UVDZ4OVdCMU1DUWpjenBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy8yMjlmYTItMzJjYy00YjU5LTkzNzctNTZiYmYwYmVhZjQ3
LzEvUUl5V3VTdHNhWV9UVDZ4OVdCMU1DUWpjenBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhFfnLH24
ZZpVPFaLMPAiZVaB08UAQqhOYhvcD2sO4KWYUUfee5C3npgPL9f+bv8qGRCPsIIz
8/h0RJaSL5Xskx5iYg0JlO3OPmQUIpl/bsk1iJbQ+s3jJSObtTes67gLP+sMOD8+
2LiF/c8vVFWNuznPXVMMLovIdN5da/6x0Ck+yQX07t87DSM7ZfxCtGoAxadY4M0h
lnXpl9dgK611uYQsByKd4AJ2ryZtB8q4sTDn500K3KL+UkLYI/YVjV6IbTA8bl31
Lx7npAbQep5P3Jt+lxKgyZUeE0BXAv2WBMQA0n0EAfv6jhRbOW9B0ZvGoFso/LyI
6DZqGPyNzyXxJQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:00:36 2025 by rpki-client