Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
File: QB0ZYVrOK7vPoJFpCAgIdipksX4.mft (raw, json)
Hash identifier: 9rf6S1pN28GEfESTPhkUfgoptd2EVS5QbYtoOvMbQ8E=
Subject key identifier: 8F:29:9F:06:E7:74:93:44:58:54:A2:28:E5:AD:AE:E1:A4:8F:54:DD
Authority key identifier: 40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
Certificate issuer: /CN=401d19615ace2bbbcfa09169080808762a64b17e
Certificate serial: 0197B7B33955EE6D7741DE88069893C598A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
Manifest number: 0484
Signing time: Sat 28 Jun 2025 18:01:05 +0000
Manifest this update: Sat 28 Jun 2025 18:01:05 +0000
Manifest next update: Sun 29 Jun 2025 18:01:05 +0000
Files and hashes: 1: KrtTh6gsfptfdAcGq3CmJjqfV2o.roa (hash: eRRAdGSdFwP7Zvo2rxHWeAe37W0cOjnKNlia+tVBb+M=)
2: QB0ZYVrOK7vPoJFpCAgIdipksX4.crl (hash: Ntu945EylyZNK8FBJTEpui0YchWpdHN9PFoGd3FiRYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:39:55:ee:6d:77:41:de:88:06:98:93:c5:98:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401d19615ace2bbbcfa09169080808762a64b17e
Validity
Not Before: Jun 28 18:01:05 2025 GMT
Not After : Jun 29 18:01:05 2025 GMT
Subject: CN=8f299f06e77493445854a228e5adaee1a48f54dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c8:c1:37:48:de:3d:be:a1:e5:1e:b5:5a:90:
2f:64:cc:5d:66:40:15:68:58:77:db:cc:27:04:6e:
d7:7d:31:70:46:26:41:a5:69:b1:93:43:11:f3:20:
65:ae:ff:32:67:bb:5e:1c:e7:96:ba:85:45:fc:01:
12:13:5c:4d:19:1d:41:74:d6:d9:c0:0f:9f:b6:9c:
c2:d5:04:52:fe:8d:57:47:d3:85:2b:0d:34:a2:1b:
5b:10:fd:9c:28:7c:5f:32:86:1b:08:d2:7e:2c:d8:
68:3d:c6:2b:ec:27:9d:ae:32:c6:f8:8f:44:47:e6:
3e:4b:13:c9:1b:62:44:24:8a:69:78:c1:7b:a4:3a:
13:49:67:fe:28:d8:35:d6:2a:77:cb:bf:b5:29:14:
43:3f:a3:f2:5d:d9:c7:26:19:9a:50:80:f4:01:5c:
b8:e8:1f:3b:4e:2c:49:be:57:0b:4b:80:25:84:f6:
ef:48:93:32:10:a1:19:ad:34:ce:b1:04:8a:64:63:
68:49:d8:60:2a:8c:b4:fa:63:8a:14:1d:8d:e5:1b:
8f:86:de:25:35:b4:38:df:9e:df:c5:e8:19:ba:3a:
67:0d:b4:f9:ea:46:05:0e:99:27:21:8b:d4:43:24:
e7:d7:bc:09:85:01:4b:a6:a5:71:df:6a:08:ab:94:
f9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:29:9F:06:E7:74:93:44:58:54:A2:28:E5:AD:AE:E1:A4:8F:54:DD
X509v3 Authority Key Identifier:
keyid:40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:14:2c:3c:68:70:f7:b4:a9:49:23:bf:7b:08:52:e5:a1:11:
14:99:d7:04:a3:be:a3:a6:4d:e6:39:7c:f3:3f:c2:6e:38:09:
55:09:85:b0:a1:3e:3c:1b:06:84:e7:eb:27:e8:3d:95:2c:70:
8f:70:f2:32:30:36:70:05:4c:62:04:61:2b:15:e7:21:06:d2:
28:02:75:f9:9d:59:c5:d5:37:c4:e1:9f:1b:c9:af:7f:4d:55:
93:ed:08:88:8d:8c:c2:76:eb:cb:d8:bd:16:67:a1:4b:c2:c8:
39:c2:f7:a2:70:18:56:74:63:fd:31:f9:9d:13:b4:1b:1b:9e:
63:ae:cc:57:55:d9:38:77:9f:35:b6:52:6a:dc:d4:15:00:bc:
31:8b:ff:91:ef:1f:2a:24:a0:df:97:75:4e:4a:bc:34:31:57:
52:ff:c2:42:1c:cb:30:31:f9:84:38:34:f0:c1:6d:34:98:d2:
15:00:23:fa:dc:ae:42:d7:6e:a6:7e:90:89:de:86:90:74:ed:
56:64:23:b7:a6:5b:4b:2b:b1:34:95:81:37:9f:ed:c7:35:eb:
1b:9b:99:73:5b:9f:79:c9:b2:25:f6:82:58:44:9a:a7:8d:94:
52:47:e0:f5:a3:31:08:e3:96:06:13:96:0d:f7:ec:bc:fc:a4:
dd:68:56:b8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3szlV7m13Qd6IBpiTxZigMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMWQxOTYxNWFjZTJiYmJjZmEwOTE2OTA4MDgwODc2MmE2
NGIxN2UwHhcNMjUwNjI4MTgwMTA1WhcNMjUwNjI5MTgwMTA1WjAzMTEwLwYDVQQD
Eyg4ZjI5OWYwNmU3NzQ5MzQ0NTg1NGEyMjhlNWFkYWVlMWE0OGY1NGRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMjBN0jePb6h5R61WpAvZMxdZkAV
aFh328wnBG7XfTFwRiZBpWmxk0MR8yBlrv8yZ7teHOeWuoVF/AESE1xNGR1BdNbZ
wA+ftpzC1QRS/o1XR9OFKw00ohtbEP2cKHxfMoYbCNJ+LNhoPcYr7CedrjLG+I9E
R+Y+SxPJG2JEJIppeMF7pDoTSWf+KNg11ip3y7+1KRRDP6PyXdnHJhmaUID0AVy4
6B87TixJvlcLS4AlhPbvSJMyEKEZrTTOsQSKZGNoSdhgKoy0+mOKFB2N5RuPht4l
NbQ4357fxegZujpnDbT56kYFDpknIYvUQyTn17wJhQFLpqVx32oIq5T5lwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI8pnwbndJNEWFSiKOWtruGkj1TdMB8GA1UdIwQY
MBaAFEAdGWFaziu7z6CRaQgICHYqZLF+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9iNWRhNzAtNDIxMC00NjNlLTlkYzYt
OTc5OTcyYTAwMTRkLzEvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9iNWRhNzAtNDIxMC00NjNlLTlkYzYtOTc5OTcyYTAwMTRk
LzEvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHhQsPGhw
97SpSSO/ewhS5aERFJnXBKO+o6ZN5jl88z/CbjgJVQmFsKE+PBsGhOfrJ+g9lSxw
j3DyMjA2cAVMYgRhKxXnIQbSKAJ1+Z1ZxdU3xOGfG8mvf01Vk+0IiI2Mwnbry9i9
FmehS8LIOcL3onAYVnRj/TH5nRO0GxueY67MV1XZOHefNbZSatzUFQC8MYv/ke8f
KiSg35d1Tkq8NDFXUv/CQhzLMDH5hDg08MFtNJjSFQAj+tyuQtdupn6Qid6GkHTt
VmQjt6ZbSyuxNJWBN5/txzXrG5uZc1ufecmyJfaCWESap42UUkfg9aMxCOOWBhOW
DffsvPyk3WhWuA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:17:41 2025 by rpki-client