Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
File: _Q7wQPukW857BxY0lc316FB3kZ0.mft (raw, json)
Hash identifier: 2pkIPKGz1RBs5mXHfgD4iWPTymGHB92va1sEC8ZqtP8=
Subject key identifier: 74:A6:C4:E3:BB:45:88:2B:37:4B:D8:60:F9:65:7A:A6:47:D1:FC:4C
Authority key identifier: FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
Certificate issuer: /CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Certificate serial: 0197B820D3D473EB7CF3726B56E2F908DF60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
Manifest number: 0C4C
Signing time: Sat 28 Jun 2025 20:00:48 +0000
Manifest this update: Sat 28 Jun 2025 20:00:48 +0000
Manifest next update: Sun 29 Jun 2025 20:00:48 +0000
Files and hashes: 1: BrNhX11GN3gzWV-434wlzWriATQ.roa (hash: e/gkiYTr4M+ZdV4GBEAw4FBFr5Cgb0NfH0gUAD5dMJY=)
2: _Q7wQPukW857BxY0lc316FB3kZ0.crl (hash: QVY6S3IyeGuqw69B9LG5ikEAtWg2OVuLmNi1F7ukGq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:d3:d4:73:eb:7c:f3:72:6b:56:e2:f9:08:df:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Validity
Not Before: Jun 28 20:00:48 2025 GMT
Not After : Jun 29 20:00:48 2025 GMT
Subject: CN=74a6c4e3bb45882b374bd860f9657aa647d1fc4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5c:42:13:33:4f:7d:6d:96:24:c3:65:e3:81:
e6:f9:5d:65:12:88:c8:f1:51:24:94:ac:db:e8:e0:
cd:40:38:a1:9d:5b:f4:53:24:a9:dd:af:cd:f4:6b:
c5:28:f1:b3:0d:e5:2a:5d:b0:64:84:56:99:0a:ff:
10:e3:38:e2:e2:d3:c1:00:06:56:5f:c9:39:81:60:
35:47:49:82:a1:b1:9d:83:e6:8f:81:bc:ae:22:89:
a8:e7:52:48:6c:b0:a5:dc:08:35:69:70:42:b1:63:
b6:6c:c7:b3:a6:f1:40:1c:72:07:60:92:91:bf:3b:
34:34:41:a9:5b:3b:52:1f:e1:d2:49:8a:4f:62:0c:
a1:d5:9d:51:46:8a:6d:fd:4b:bf:88:40:81:9a:3b:
38:c1:16:02:cd:db:22:3c:62:a6:ad:25:ef:3c:bd:
9d:8e:39:b4:b9:ad:d9:b5:17:af:6f:67:02:84:5e:
17:da:a7:4a:8d:96:3f:89:4c:12:48:9f:e6:25:5a:
33:71:6f:ea:37:09:b9:e9:65:fb:93:2c:6e:27:a7:
f3:6f:49:bf:db:82:16:60:d4:db:49:b5:d7:c3:a9:
43:5f:73:e6:1c:ce:73:67:1f:8e:fe:3f:4e:98:7c:
2c:1b:a2:fb:f6:54:50:da:d5:c5:ea:8e:bb:d0:d0:
f8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:A6:C4:E3:BB:45:88:2B:37:4B:D8:60:F9:65:7A:A6:47:D1:FC:4C
X509v3 Authority Key Identifier:
keyid:FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:93:ac:89:ab:4c:77:25:6c:ce:cc:b9:2b:65:57:16:e8:fd:
98:b7:fc:19:ea:6c:41:48:a2:38:54:ed:4d:9b:1e:35:34:9f:
e1:d4:37:be:c5:44:e0:10:6c:43:c5:92:92:29:dd:ce:f4:b6:
55:c4:e2:c9:e2:6b:ee:48:95:25:7f:e6:66:59:f2:f2:0a:d3:
88:0e:5e:12:95:8b:d6:20:d3:3e:65:ed:2c:bd:66:9b:a4:ac:
02:97:5a:67:4e:54:ed:f5:2b:4b:69:20:fb:65:87:03:e0:8e:
c7:af:f2:a4:df:7e:7c:56:8c:ec:50:b4:58:8d:d5:62:1d:bc:
a9:d3:8e:f3:96:d7:d7:73:31:b3:ec:93:6f:b8:aa:a1:5c:b9:
d2:fe:13:6c:59:5f:3e:9c:8c:a7:f0:43:a2:33:33:85:6f:e4:
33:fb:bc:79:e6:86:3d:c5:d9:6a:69:be:2b:4a:b3:b9:8b:71:
cf:c8:85:bc:80:11:3d:c3:f2:fa:e8:97:86:15:1d:bd:3e:8c:
3e:2e:f1:ba:4b:70:7f:b2:73:3b:45:ef:55:85:73:43:c1:05:
ba:5c:a8:94:80:5c:df:7e:75:a3:c3:49:3a:c7:84:c0:54:78:
e7:17:1c:4e:6c:a2:58:9b:cd:54:ac:ef:34:ee:94:82:74:3e:
7d:0f:07:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4INPUc+t883JrVuL5CN9gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkMGVmMDQwZmJhNDViY2U3YjA3MTYzNDk1Y2RmNWU4NTA3
NzkxOWQwHhcNMjUwNjI4MjAwMDQ4WhcNMjUwNjI5MjAwMDQ4WjAzMTEwLwYDVQQD
Eyg3NGE2YzRlM2JiNDU4ODJiMzc0YmQ4NjBmOTY1N2FhNjQ3ZDFmYzRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFxCEzNPfW2WJMNl44Hm+V1lEojI
8VEklKzb6ODNQDihnVv0UySp3a/N9GvFKPGzDeUqXbBkhFaZCv8Q4zji4tPBAAZW
X8k5gWA1R0mCobGdg+aPgbyuIomo51JIbLCl3Ag1aXBCsWO2bMezpvFAHHIHYJKR
vzs0NEGpWztSH+HSSYpPYgyh1Z1RRopt/Uu/iECBmjs4wRYCzdsiPGKmrSXvPL2d
jjm0ua3ZtRevb2cChF4X2qdKjZY/iUwSSJ/mJVozcW/qNwm56WX7kyxuJ6fzb0m/
24IWYNTbSbXXw6lDX3PmHM5zZx+O/j9OmHwsG6L79lRQ2tXF6o670ND4vQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHSmxOO7RYgrN0vYYPlleqZH0fxMMB8GA1UdIwQY
MBaAFP0O8ED7pFvOewcWNJXN9ehQd5GdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1E3d1FQdWtXODU3QnhZMGxjMzE2RkIza1owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS9kNzcxNjgtMTMzZi00NTUzLWIxOWQt
NTZjOTRmMzI2ZGMyLzEvX1E3d1FQdWtXODU3QnhZMGxjMzE2RkIza1owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS9kNzcxNjgtMTMzZi00NTUzLWIxOWQtNTZjOTRmMzI2ZGMy
LzEvX1E3d1FQdWtXODU3QnhZMGxjMzE2RkIza1owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArZOsiatM
dyVszsy5K2VXFuj9mLf8GepsQUiiOFTtTZseNTSf4dQ3vsVE4BBsQ8WSkindzvS2
VcTiyeJr7kiVJX/mZlny8grTiA5eEpWL1iDTPmXtLL1mm6SsApdaZ05U7fUrS2kg
+2WHA+COx6/ypN9+fFaM7FC0WI3VYh28qdOO85bX13Mxs+yTb7iqoVy50v4TbFlf
PpyMp/BDojMzhW/kM/u8eeaGPcXZamm+K0qzuYtxz8iFvIARPcPy+uiXhhUdvT6M
Pi7xuktwf7JzO0XvVYVzQ8EFulyolIBc3351o8NJOseEwFR45xccTmyiWJvNVKzv
NO6UgnQ+fQ8H8Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:41 2025 by rpki-client