Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
File: bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft (raw, json)
Hash identifier: G2BFCynI8KdjDMC32O/8KBE3//5tDUMh9hkBs1hkqZk=
Subject key identifier: 9E:2F:C3:25:95:AD:78:88:13:83:3D:A5:67:F6:23:19:7D:11:A9:4F
Authority key identifier: 6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
Certificate issuer: /CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Certificate serial: 0197B70F398571C7F0680D214863B9B4FD51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
Manifest number: 097A
Signing time: Sat 28 Jun 2025 15:01:57 +0000
Manifest this update: Sat 28 Jun 2025 15:01:57 +0000
Manifest next update: Sun 29 Jun 2025 15:01:57 +0000
Files and hashes: 1: bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl (hash: BvNWf6N+ZiQ7G4BbGTuQXypnwb9HwAGPEczywt5MZQw=)
2: zFZRDLYL0fz0Tr9KOTbvt5Gi2T8.roa (hash: RoOpJgCK2e2T8+E3U8CF6Ztsr6QUn+lDcl3mIBxfJ0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:39:85:71:c7:f0:68:0d:21:48:63:b9:b4:fd:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Validity
Not Before: Jun 28 15:01:57 2025 GMT
Not After : Jun 29 15:01:57 2025 GMT
Subject: CN=9e2fc32595ad788813833da567f623197d11a94f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ac:f1:fa:2c:35:c3:2e:3c:e8:84:29:5b:3a:
e0:e3:b3:00:cc:4c:99:fd:40:eb:b9:a2:dc:6d:56:
50:93:b1:7e:7a:45:c6:03:fe:50:04:97:63:3a:dc:
21:c7:65:cf:87:6d:4e:68:20:7e:72:17:67:96:64:
98:b9:af:51:8d:6f:2c:6e:09:60:20:a0:d2:c1:cb:
0c:26:0d:d9:26:34:13:12:b6:64:f4:78:c2:69:cf:
97:e7:a1:7d:3e:26:d6:f7:45:4e:3d:05:55:4d:5c:
f5:30:4c:b1:de:2a:05:86:8e:b8:5c:d2:2c:ee:9b:
c8:2c:a9:42:58:f2:56:da:20:57:c3:2a:9e:bb:4c:
ff:b9:b2:b8:59:e4:dd:a0:e0:96:ad:42:46:1b:1a:
7a:d1:0d:c6:0d:7c:d8:b6:9d:75:b7:3e:9e:23:0e:
67:73:15:85:5f:5b:fa:1d:42:bc:38:bd:55:00:5f:
69:5d:a3:8d:2c:b0:6e:ef:e3:7b:46:23:6d:96:85:
1c:25:33:fa:14:5e:78:fc:f2:bf:a4:13:98:32:70:
a3:bd:4a:e4:2c:14:71:fd:c5:14:f8:65:ab:30:20:
6f:86:c4:81:42:33:8f:41:e5:c9:77:6a:a4:e9:e8:
08:38:a8:6a:de:ea:28:f9:56:1b:50:9f:76:95:68:
ab:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:2F:C3:25:95:AD:78:88:13:83:3D:A5:67:F6:23:19:7D:11:A9:4F
X509v3 Authority Key Identifier:
keyid:6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:00:58:f2:13:b1:b6:78:0a:f0:6d:b8:c8:5d:19:b3:18:08:
45:b2:0a:e3:27:da:7f:41:44:3d:36:63:a9:39:3e:e4:aa:44:
c7:99:c0:6f:7f:e1:99:5e:88:44:67:5d:06:c4:e2:ef:27:a2:
0b:b3:b8:a0:bf:f7:b8:b3:44:a3:4c:be:ee:f2:44:61:00:c8:
1f:31:d9:ef:5f:8a:4e:10:c2:9a:a0:8d:ec:fe:fc:45:c2:da:
3c:f5:06:9b:94:e7:ed:07:bf:04:81:30:1b:e8:b8:8f:dd:8d:
69:09:a4:92:aa:48:dc:02:7d:af:50:e5:94:8d:0b:13:2f:9d:
c1:86:fb:39:80:b5:30:7b:51:e7:f3:81:38:da:22:64:b3:64:
82:1b:81:a2:41:32:56:99:c2:29:31:e6:6f:ca:5b:68:a3:a1:
46:da:29:2a:26:e6:98:78:04:e3:c5:a4:95:f4:3c:60:86:c7:
4f:c9:a2:91:56:b8:a6:5b:6e:f7:70:38:e2:99:e8:8e:76:57:
52:ea:76:89:3a:bd:cb:02:b1:95:9f:13:14:45:db:5e:f0:c1:
c7:e8:92:a3:3a:01:ad:c8:71:e8:2c:e7:2b:75:f5:86:74:5a:
2d:e3:8d:ab:ce:1b:66:51:50:2c:f2:3e:b6:12:98:5f:5d:b0:
04:c3:1d:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DzmFccfwaA0hSGO5tP1RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYWYxNmRjYzU1MGNmODFlY2YwZjgxOTUyMTc5YTA0ODEz
MDg3N2EwHhcNMjUwNjI4MTUwMTU3WhcNMjUwNjI5MTUwMTU3WjAzMTEwLwYDVQQD
Eyg5ZTJmYzMyNTk1YWQ3ODg4MTM4MzNkYTU2N2Y2MjMxOTdkMTFhOTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKzx+iw1wy486IQpWzrg47MAzEyZ
/UDruaLcbVZQk7F+ekXGA/5QBJdjOtwhx2XPh21OaCB+chdnlmSYua9RjW8sbglg
IKDSwcsMJg3ZJjQTErZk9HjCac+X56F9PibW90VOPQVVTVz1MEyx3ioFho64XNIs
7pvILKlCWPJW2iBXwyqeu0z/ubK4WeTdoOCWrUJGGxp60Q3GDXzYtp11tz6eIw5n
cxWFX1v6HUK8OL1VAF9pXaONLLBu7+N7RiNtloUcJTP6FF54/PK/pBOYMnCjvUrk
LBRx/cUU+GWrMCBvhsSBQjOPQeXJd2qk6egIOKhq3uoo+VYbUJ92lWir0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ4vwyWVrXiIE4M9pWf2Ixl9EalPMB8GA1UdIwQY
MBaAFG6vFtzFUM+B7PD4GVIXmgSBMId6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnE4VzNNVlF6NEhzOFBnWlVoZWFCSUV3aDNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8wNjBlMWUtMzI4YS00ODE4LWJmZDEt
NGZhMzQ4MWE0N2UxLzEvYnE4VzNNVlF6NEhzOFBnWlVoZWFCSUV3aDNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8wNjBlMWUtMzI4YS00ODE4LWJmZDEtNGZhMzQ4MWE0N2Ux
LzEvYnE4VzNNVlF6NEhzOFBnWlVoZWFCSUV3aDNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGwBY8hOx
tngK8G24yF0ZsxgIRbIK4yfaf0FEPTZjqTk+5KpEx5nAb3/hmV6IRGddBsTi7yei
C7O4oL/3uLNEo0y+7vJEYQDIHzHZ71+KThDCmqCN7P78RcLaPPUGm5Tn7Qe/BIEw
G+i4j92NaQmkkqpI3AJ9r1DllI0LEy+dwYb7OYC1MHtR5/OBONoiZLNkghuBokEy
VpnCKTHmb8pbaKOhRtopKibmmHgE48WklfQ8YIbHT8mikVa4pltu93A44pnojnZX
Uup2iTq9ywKxlZ8TFEXbXvDBx+iSozoBrchx6CznK3X1hnRaLeONq84bZlFQLPI+
thKYX12wBMMdKg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:48 2025 by rpki-client