Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
File: 4QnieMeGIlTIh1XkcXOYpVKkkEA.mft (raw, json)
Hash identifier: nPRP1mpS2ea5zgAmoBI2xFGEsRmFokxu5hiX6wC0j3s=
Subject key identifier: 3B:19:71:EC:EB:72:07:D4:1F:28:E5:05:01:93:25:AA:2C:E0:75:8B
Authority key identifier: E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
Certificate issuer: /CN=e109e278c7862254c88755e4717398a552a49040
Certificate serial: 0197C6B84C500C9D5847D65578FDD65214D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
Manifest number: 035D
Signing time: Tue 01 Jul 2025 16:00:56 +0000
Manifest this update: Tue 01 Jul 2025 16:00:56 +0000
Manifest next update: Wed 02 Jul 2025 16:00:56 +0000
Files and hashes: 1: 4QnieMeGIlTIh1XkcXOYpVKkkEA.crl (hash: cZBBdQBl52kloMpsEjW+EvZid00n1SDEZqnkP53xYbk=)
2: 8a9J3an90z8mWS8TkwqA1Af6V60.roa (hash: Sfg4OixpuznuGw9qd09AY2Lx61QBeTwn9kYrisQDEss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:b8:4c:50:0c:9d:58:47:d6:55:78:fd:d6:52:14:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e109e278c7862254c88755e4717398a552a49040
Validity
Not Before: Jul 1 16:00:56 2025 GMT
Not After : Jul 2 16:00:56 2025 GMT
Subject: CN=3b1971eceb7207d41f28e505019325aa2ce0758b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5e:3d:6e:15:f7:83:20:4f:9f:b3:bc:81:dd:
e9:c3:6c:ac:fb:b5:f4:4f:46:0e:05:e8:66:f1:ad:
29:bc:2e:0b:c1:40:f0:33:cf:d9:c0:e5:06:37:79:
31:f1:22:b1:bf:5a:62:2d:25:17:5f:5f:29:84:43:
8e:d0:a5:28:53:b2:9e:ed:8d:4e:a4:fb:31:32:51:
b3:a8:27:85:1d:be:e9:14:b7:df:2b:1d:8b:fd:d0:
48:3e:b1:51:61:9d:31:53:9e:8e:15:e9:15:63:e7:
98:51:64:c0:d2:35:c9:04:11:a7:45:c7:f4:75:35:
6c:d2:5f:e6:92:6d:85:ba:9f:f2:8f:89:53:3b:2f:
73:f1:a4:8c:43:c3:e4:09:93:66:7f:57:66:ac:68:
3b:6d:c4:d5:15:62:59:14:5b:c2:16:e8:1c:21:3f:
77:a7:77:59:8a:5c:88:7e:3a:84:15:57:06:9e:c1:
ea:9c:f5:dc:d3:45:16:d5:69:ab:c1:5f:56:c0:47:
cb:96:11:55:99:47:75:de:f6:c8:94:ca:66:fa:a3:
9b:33:0f:6b:7d:90:66:6f:2a:b1:8b:c3:b7:a8:83:
29:7c:83:c1:14:d0:8e:b2:28:4b:13:3e:26:23:bc:
cd:0c:be:d4:b8:d4:1e:21:6b:20:e3:89:2a:58:54:
5c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:19:71:EC:EB:72:07:D4:1F:28:E5:05:01:93:25:AA:2C:E0:75:8B
X509v3 Authority Key Identifier:
keyid:E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:20:5c:32:33:ae:af:96:90:95:e1:8d:a8:25:7d:78:cd:b5:
a0:dd:74:7d:40:1f:40:9f:b1:c6:d8:10:e4:60:13:da:a5:f1:
cf:19:5e:48:9a:f3:a4:02:99:51:9a:83:3d:93:52:07:45:52:
3e:24:3d:42:7c:c9:5c:8d:f5:f5:b3:71:93:8e:ff:ce:d3:50:
9c:9e:fb:50:ac:8c:0a:8e:71:06:cb:4a:8f:37:a0:78:db:81:
f7:60:d5:7e:8c:e3:a9:96:17:a2:2c:e5:ef:c8:33:45:e8:19:
ae:07:a1:c9:c9:e6:56:46:ad:18:bc:3f:df:51:99:9c:4f:b5:
df:52:93:6a:6c:cd:78:3f:ab:03:26:6c:4f:7f:11:12:8a:43:
db:d8:fe:60:81:c8:18:de:5d:d2:85:8b:51:63:dc:19:c8:57:
f9:0b:4e:e4:d5:bb:63:66:9c:f2:96:c6:37:fd:10:83:23:13:
f4:aa:b1:fe:57:67:51:e7:78:30:e1:b5:55:4e:37:47:8b:35:
6d:cd:08:6b:42:e9:ee:b6:22:4e:69:e7:98:db:4f:05:9b:ff:
bc:d5:13:1b:96:fd:12:6d:8e:55:bd:6c:41:f2:e3:80:e4:f1:
cf:16:80:c5:e6:65:6b:51:21:4a:b9:b7:d0:18:e8:bc:6e:8f:
b2:b6:b7:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfGuExQDJ1YR9ZVeP3WUhTSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxMDllMjc4Yzc4NjIyNTRjODg3NTVlNDcxNzM5OGE1NTJh
NDkwNDAwHhcNMjUwNzAxMTYwMDU2WhcNMjUwNzAyMTYwMDU2WjAzMTEwLwYDVQQD
EygzYjE5NzFlY2ViNzIwN2Q0MWYyOGU1MDUwMTkzMjVhYTJjZTA3NThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo149bhX3gyBPn7O8gd3pw2ys+7X0
T0YOBehm8a0pvC4LwUDwM8/ZwOUGN3kx8SKxv1piLSUXX18phEOO0KUoU7Ke7Y1O
pPsxMlGzqCeFHb7pFLffKx2L/dBIPrFRYZ0xU56OFekVY+eYUWTA0jXJBBGnRcf0
dTVs0l/mkm2Fup/yj4lTOy9z8aSMQ8PkCZNmf1dmrGg7bcTVFWJZFFvCFugcIT93
p3dZilyIfjqEFVcGnsHqnPXc00UW1WmrwV9WwEfLlhFVmUd13vbIlMpm+qObMw9r
fZBmbyqxi8O3qIMpfIPBFNCOsihLEz4mI7zNDL7UuNQeIWsg44kqWFRc+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDsZcezrcgfUHyjlBQGTJaos4HWLMB8GA1UdIwQY
MBaAFOEJ4njHhiJUyIdV5HFzmKVSpJBAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFFuaWVNZUdJbFRJaDFYa2NYT1lwVktra0VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lMDcyZDctODdjMC00YjczLTlhNGQt
MmYwM2UzMmJkMjFhLzEvNFFuaWVNZUdJbFRJaDFYa2NYT1lwVktra0VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9lMDcyZDctODdjMC00YjczLTlhNGQtMmYwM2UzMmJkMjFh
LzEvNFFuaWVNZUdJbFRJaDFYa2NYT1lwVktra0VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHSBcMjOu
r5aQleGNqCV9eM21oN10fUAfQJ+xxtgQ5GAT2qXxzxleSJrzpAKZUZqDPZNSB0VS
PiQ9QnzJXI319bNxk47/ztNQnJ77UKyMCo5xBstKjzegeNuB92DVfozjqZYXoizl
78gzRegZrgehycnmVkatGLw/31GZnE+131KTamzNeD+rAyZsT38REopD29j+YIHI
GN5d0oWLUWPcGchX+QtO5NW7Y2ac8pbGN/0QgyMT9Kqx/ldnUed4MOG1VU43R4s1
bc0Ia0Lp7rYiTmnnmNtPBZv/vNUTG5b9Em2OVb1sQfLjgOTxzxaAxeZla1EhSrm3
0BjovG6Psra3oA==
-----END CERTIFICATE-----
Generated at Tue Jul 1 22:22:37 2025 by rpki-client