Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: e6VW8tXzz1yKiwvw+gR+2aqwvhmqef9/6FB9pBZL1CI=
Subject key identifier: A7:20:B3:DC:D8:A9:94:B9:6F:69:84:06:56:EB:B5:28:3C:02:C8:13
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 0197B6A17BAFD8C56F23C5E77FF7A6FF1322
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 0F9B
Signing time: Sat 28 Jun 2025 13:02:05 +0000
Manifest this update: Sat 28 Jun 2025 13:02:05 +0000
Manifest next update: Sun 29 Jun 2025 13:02:05 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: 1+EepenIYM2QQJ73RrgpJIgSLFN/hmE7ilCgN1Me8MI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:7b:af:d8:c5:6f:23:c5:e7:7f:f7:a6:ff:13:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Jun 28 13:02:05 2025 GMT
Not After : Jun 29 13:02:05 2025 GMT
Subject: CN=a720b3dcd8a994b96f69840656ebb5283c02c813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c3:02:23:80:fe:89:37:d1:15:72:11:e8:14:
c2:b5:96:f8:78:ec:3d:19:19:f7:8a:d0:76:63:e0:
ad:52:fa:f8:7e:c4:7b:a2:73:ac:60:35:8e:2e:e2:
47:c5:29:0e:3d:16:2a:0c:84:f9:4a:ba:b0:d7:e3:
8c:45:3f:95:13:fc:c9:92:fc:d5:bf:24:75:b3:d9:
9b:02:45:67:2b:fc:20:ed:13:e0:07:5e:48:52:29:
d4:36:6c:be:62:98:73:2c:57:5f:c5:a6:23:6a:70:
82:84:30:8a:16:84:85:60:1c:32:0b:40:6f:77:23:
31:6c:44:1b:38:c5:34:bb:0a:b6:3c:a6:92:d7:5e:
14:35:72:87:46:18:5e:90:c8:2e:8c:45:b0:d0:1e:
5c:00:0b:c3:68:0e:63:47:ee:22:a1:63:80:78:6e:
f9:5f:34:dd:15:fd:91:03:8d:b1:96:08:2f:cd:ed:
7e:52:96:48:32:c4:ea:85:81:d0:8b:eb:0a:56:14:
e9:e2:06:79:43:7e:72:02:72:aa:49:2f:bf:a7:a8:
45:2c:96:3a:e8:1a:c2:e3:20:00:16:92:55:cd:0f:
1a:d5:0f:f4:05:83:eb:5f:1b:14:aa:db:dc:93:b4:
c4:46:b3:26:0d:5a:64:5e:70:12:ed:bf:59:12:ae:
ce:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:20:B3:DC:D8:A9:94:B9:6F:69:84:06:56:EB:B5:28:3C:02:C8:13
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:cf:cc:24:9b:d9:26:d6:9d:fe:e8:2d:fa:74:c6:08:16:d9:
8e:9d:99:85:24:6c:7c:a3:47:5a:5d:c9:64:d1:4e:23:51:ab:
14:8b:bc:75:9b:58:6d:4a:61:c5:a0:76:c0:7b:b4:04:ac:86:
61:48:10:05:95:a5:69:0d:01:e5:d5:89:9e:09:05:f7:0c:e0:
85:a2:a2:a6:71:60:5b:10:da:42:b5:ce:c2:cf:80:bd:d2:4d:
b1:29:e8:45:cd:6b:2a:c6:59:08:75:1f:b8:33:76:e6:1e:7d:
86:f0:f9:60:02:83:a3:db:8d:c5:a6:45:5a:9e:89:4f:2b:83:
68:3b:39:fa:1c:52:71:61:d5:5d:e4:8f:8c:1f:cf:ec:0d:d6:
bd:c4:6e:c5:f9:2a:00:35:f2:9f:f7:bd:c2:fa:bd:c3:bc:e6:
20:70:c3:33:f5:43:0d:bf:f4:ff:c7:71:ff:fd:bf:1a:8d:3f:
25:9c:32:d1:97:2c:bd:e7:3a:80:16:be:79:19:eb:2d:a0:14:
83:90:44:5c:86:3f:0a:70:72:99:35:75:1e:29:0d:8f:83:69:
25:40:37:a5:d9:ba:0c:70:58:62:60:71:31:40:3e:63:f5:af:
72:18:84:5e:b6:19:f6:dc:5f:e4:d3:9e:3a:58:e8:f3:7a:50:
ba:99:1d:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oXuv2MVvI8Xnf/em/xMiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMzJhODZiMjk3Nzg3ZTQ4YzU1NzA1OTMxZWQzOTM1MWY4
NDE3MWEwHhcNMjUwNjI4MTMwMjA1WhcNMjUwNjI5MTMwMjA1WjAzMTEwLwYDVQQD
EyhhNzIwYjNkY2Q4YTk5NGI5NmY2OTg0MDY1NmViYjUyODNjMDJjODEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosMCI4D+iTfRFXIR6BTCtZb4eOw9
GRn3itB2Y+CtUvr4fsR7onOsYDWOLuJHxSkOPRYqDIT5Srqw1+OMRT+VE/zJkvzV
vyR1s9mbAkVnK/wg7RPgB15IUinUNmy+YphzLFdfxaYjanCChDCKFoSFYBwyC0Bv
dyMxbEQbOMU0uwq2PKaS114UNXKHRhhekMgujEWw0B5cAAvDaA5jR+4ioWOAeG75
XzTdFf2RA42xlggvze1+UpZIMsTqhYHQi+sKVhTp4gZ5Q35yAnKqSS+/p6hFLJY6
6BrC4yAAFpJVzQ8a1Q/0BYPrXxsUqtvck7TERrMmDVpkXnAS7b9ZEq7OxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKcgs9zYqZS5b2mEBlbrtSg8AsgTMB8GA1UdIwQY
MBaAFEEyqGspd4fkjFVwWTHtOTUfhBcaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVRLb2F5bDNoLVNNVlhCWk1lMDVOUi1FRnhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi84NzhlN2MtMzRmNS00N2NiLWE3ZTEt
ODA0MmQ2ZjRiZWYxLzEvUVRLb2F5bDNoLVNNVlhCWk1lMDVOUi1FRnhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi84NzhlN2MtMzRmNS00N2NiLWE3ZTEtODA0MmQ2ZjRiZWYx
LzEvUVRLb2F5bDNoLVNNVlhCWk1lMDVOUi1FRnhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAs/MJJvZ
Jtad/ugt+nTGCBbZjp2ZhSRsfKNHWl3JZNFOI1GrFIu8dZtYbUphxaB2wHu0BKyG
YUgQBZWlaQ0B5dWJngkF9wzghaKipnFgWxDaQrXOws+AvdJNsSnoRc1rKsZZCHUf
uDN25h59hvD5YAKDo9uNxaZFWp6JTyuDaDs5+hxScWHVXeSPjB/P7A3WvcRuxfkq
ADXyn/e9wvq9w7zmIHDDM/VDDb/0/8dx//2/Go0/JZwy0Zcsvec6gBa+eRnrLaAU
g5BEXIY/CnBymTV1HikNj4NpJUA3pdm6DHBYYmBxMUA+Y/WvchiEXrYZ9txf5NOe
Oljo83pQupkdlA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:46:46 2025 by rpki-client