Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
File: Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft (raw, json)
Hash identifier: VlZjXoTvHJls1QQM7tJ9ABi0tdWZ5GMqldiLSKzMVWg=
Subject key identifier: 64:C1:B1:B7:56:02:DA:42:25:AE:35:BD:14:C7:BA:2B:69:81:E2:1A
Authority key identifier: 43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
Certificate issuer: /CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Certificate serial: 0197B7EA5CAF12D45965F488907101A53800
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
Manifest number: 0A42
Signing time: Sat 28 Jun 2025 19:01:18 +0000
Manifest this update: Sat 28 Jun 2025 19:01:18 +0000
Manifest next update: Sun 29 Jun 2025 19:01:18 +0000
Files and hashes: 1: Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl (hash: gBUZwRINnNixRa3E891BkkDP/BvYNl8w7yqKvfQ6ktE=)
2: rqFwpW6hygA3WlEvpR2r2eLIqwU.roa (hash: hJKMm6stZaqD+/5F5Zq5RhHhs3I7m3K3YzZ93XXb5tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:5c:af:12:d4:59:65:f4:88:90:71:01:a5:38:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Validity
Not Before: Jun 28 19:01:18 2025 GMT
Not After : Jun 29 19:01:18 2025 GMT
Subject: CN=64c1b1b75602da4225ae35bd14c7ba2b6981e21a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9f:c8:1d:60:90:c9:25:c1:ed:f5:c3:ef:5f:
b0:e6:6e:68:2f:90:50:31:e2:14:35:c6:41:9f:97:
31:11:54:14:2e:da:96:5d:af:4e:83:ee:67:dc:56:
4f:0e:29:34:66:dd:12:3a:ae:3f:0c:6a:8a:d8:12:
e1:1b:d2:a5:85:fb:3a:13:ac:1d:f0:73:dc:99:0f:
76:9b:ba:b0:83:80:97:f6:a8:66:8a:04:4e:e3:46:
fe:28:ad:a2:f9:24:f0:a6:58:04:4a:04:13:11:db:
f9:27:3c:89:dc:65:c9:52:db:00:58:e9:94:58:f6:
b6:1a:19:e1:15:49:b3:11:10:bc:49:12:68:8d:9f:
c1:16:f1:e9:9e:03:ed:d5:ff:c2:89:a1:eb:c7:fd:
26:81:b3:c0:fa:6a:70:3f:2f:dc:48:a3:9a:9f:e4:
bc:f9:c0:af:62:3a:77:f1:12:27:7c:ef:2e:a7:19:
06:47:af:e3:22:28:dd:54:fd:92:0b:75:7f:96:b5:
48:00:03:a9:ae:0c:d0:b7:c4:04:65:04:08:45:05:
ba:65:4d:98:94:c7:fe:3e:a0:8e:93:d9:ac:bd:0d:
70:c4:5c:66:35:b5:90:2f:ef:f9:ad:07:24:79:d4:
09:8b:11:b2:15:c3:79:dd:96:ea:e4:26:91:44:1b:
e3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C1:B1:B7:56:02:DA:42:25:AE:35:BD:14:C7:BA:2B:69:81:E2:1A
X509v3 Authority Key Identifier:
keyid:43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:ef:29:97:c3:c8:bb:53:18:9e:f8:d1:00:5c:51:22:9f:8e:
0e:16:89:ae:24:11:d1:16:9a:dc:d4:52:c5:a6:b6:71:bd:aa:
ff:d1:83:f0:80:60:b5:2a:55:d4:d5:d5:29:2d:0a:c2:2e:61:
b9:a7:6e:47:e1:17:7d:4e:a1:e0:f9:2a:0e:31:84:74:4b:53:
70:4a:fd:19:ce:af:1e:53:c4:41:39:dd:b6:fd:bd:1d:7a:72:
ed:8d:88:98:a4:c5:e2:41:56:16:0e:4a:94:c9:e2:a9:15:9b:
29:26:be:46:ab:ef:1e:bd:ed:d1:48:d0:b6:21:1f:7e:55:2f:
c4:1d:07:61:a1:c0:cf:49:76:24:e1:72:09:96:d0:04:b5:8f:
a4:2a:e4:3e:66:01:0f:35:92:91:6a:f1:5c:08:c4:a2:43:0a:
84:b5:98:ca:33:4c:4d:60:7e:3b:98:8b:d2:e9:0d:08:a0:91:
1f:7f:2c:53:a6:1e:19:20:a9:b3:4d:64:37:f1:9f:f1:dc:5e:
04:f7:4b:d4:3d:c1:51:e2:e4:54:a6:ec:f1:c8:c1:cd:0f:f0:
7b:2b:71:f4:c4:19:a1:d6:80:06:a0:76:9f:4e:52:ef:48:78:
38:76:af:98:b1:a1:03:96:b6:9a:5b:34:ad:2a:04:de:68:63:
9b:77:a3:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36lyvEtRZZfSIkHEBpTgAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzOWFjMzg4NzgxMjdjZWNkYzRjODNlYTY5ZWVlMWY0ZTEx
OGJjZmYwHhcNMjUwNjI4MTkwMTE4WhcNMjUwNjI5MTkwMTE4WjAzMTEwLwYDVQQD
Eyg2NGMxYjFiNzU2MDJkYTQyMjVhZTM1YmQxNGM3YmEyYjY5ODFlMjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5/IHWCQySXB7fXD71+w5m5oL5BQ
MeIUNcZBn5cxEVQULtqWXa9Og+5n3FZPDik0Zt0SOq4/DGqK2BLhG9Klhfs6E6wd
8HPcmQ92m7qwg4CX9qhmigRO40b+KK2i+STwplgESgQTEdv5JzyJ3GXJUtsAWOmU
WPa2GhnhFUmzERC8SRJojZ/BFvHpngPt1f/CiaHrx/0mgbPA+mpwPy/cSKOan+S8
+cCvYjp38RInfO8upxkGR6/jIijdVP2SC3V/lrVIAAOprgzQt8QEZQQIRQW6ZU2Y
lMf+PqCOk9msvQ1wxFxmNbWQL+/5rQckedQJixGyFcN53Zbq5CaRRBvjfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGTBsbdWAtpCJa41vRTHuitpgeIaMB8GA1UdIwQY
MBaAFEOaw4h4Enzs3EyD6mnu4fThGLz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTVyRGlIZ1NmT3pjVElQcWFlN2g5T0VZdlA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yNjYwOWYtMjcwMC00OTQ5LThkYmUt
YmFlMWY3N2JhNzU4LzEvUTVyRGlIZ1NmT3pjVElQcWFlN2g5T0VZdlA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yNjYwOWYtMjcwMC00OTQ5LThkYmUtYmFlMWY3N2JhNzU4
LzEvUTVyRGlIZ1NmT3pjVElQcWFlN2g5T0VZdlA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGe8pl8PI
u1MYnvjRAFxRIp+ODhaJriQR0Raa3NRSxaa2cb2q/9GD8IBgtSpV1NXVKS0Kwi5h
uaduR+EXfU6h4PkqDjGEdEtTcEr9Gc6vHlPEQTndtv29HXpy7Y2ImKTF4kFWFg5K
lMniqRWbKSa+RqvvHr3t0UjQtiEfflUvxB0HYaHAz0l2JOFyCZbQBLWPpCrkPmYB
DzWSkWrxXAjEokMKhLWYyjNMTWB+O5iL0ukNCKCRH38sU6YeGSCps01kN/Gf8dxe
BPdL1D3BUeLkVKbs8cjBzQ/weytx9MQZodaABqB2n05S70h4OHavmLGhA5a2mls0
rSoE3mhjm3ejpQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:33:45 2025 by rpki-client