Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
File: QTe22qILXgYYYrb7meI2rCwuNPg.mft (raw, json)
Hash identifier: jErGe7JpS75SoMmiefpQzMQvH9XkU7MGdAHVvLwhjN4=
Subject key identifier: E9:9F:41:75:81:52:7C:C4:D3:C6:AC:AD:B6:7D:FB:32:36:BF:CD:CB
Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
Certificate issuer: /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Certificate serial: 0197B74599E7FDD6AE31B9B60E031A2C7845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
Manifest number: 0582
Signing time: Sat 28 Jun 2025 16:01:21 +0000
Manifest this update: Sat 28 Jun 2025 16:01:21 +0000
Manifest next update: Sun 29 Jun 2025 16:01:21 +0000
Files and hashes: 1: 4aDro6K4uBzQDwqf0WWWDv-WEKk.roa (hash: KqqgAJBLDDctP248xFMqsm3yeCd/FvEIq/xYuv9Vp94=)
2: QTe22qILXgYYYrb7meI2rCwuNPg.crl (hash: Hmx/CDfKRQTRoA/XkFvDIuoA1YGuweh9zLYoW7dJyZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:99:e7:fd:d6:ae:31:b9:b6:0e:03:1a:2c:78:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Validity
Not Before: Jun 28 16:01:21 2025 GMT
Not After : Jun 29 16:01:21 2025 GMT
Subject: CN=e99f417581527cc4d3c6acadb67dfb3236bfcdcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:88:1a:3d:e4:91:03:c0:77:84:d8:a4:48:60:
bb:6b:bc:e0:dc:1d:fc:82:59:bf:9e:25:38:db:f5:
f2:15:fb:db:de:3d:79:6e:e5:81:16:13:d2:4d:82:
cf:cd:47:19:ff:27:5c:c7:d8:75:68:3d:7d:07:45:
ef:34:e2:ae:66:63:b2:ea:d9:1c:38:0b:33:e8:5f:
e2:70:b0:c9:76:bd:94:8d:86:fd:fc:90:fe:7b:47:
cd:33:56:1a:6f:76:aa:e9:67:42:14:01:f2:a8:a5:
4e:de:87:f1:b3:53:53:0d:25:e1:90:68:24:85:86:
83:8a:89:91:8e:c3:b3:23:7c:37:e8:71:3d:6e:2c:
e7:19:f7:83:13:ee:83:d0:b0:4e:93:8e:2b:0d:8d:
a6:fd:6b:80:16:2a:55:78:84:12:16:25:06:08:e8:
70:ca:81:4b:4f:8a:4c:7f:30:de:e5:2c:bd:e1:85:
d2:83:d9:61:ee:82:4e:88:c3:ef:fb:68:74:c9:8a:
9d:a0:2a:36:de:a5:8a:48:a7:64:da:83:ea:c9:8c:
3e:9b:0a:b4:af:8d:e3:4e:62:1c:aa:07:20:b6:ea:
25:6b:ac:34:b9:45:63:64:09:93:5e:11:5e:a7:09:
7d:50:e1:a4:dc:0d:5e:c9:e6:1e:dc:45:93:84:9d:
59:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9F:41:75:81:52:7C:C4:D3:C6:AC:AD:B6:7D:FB:32:36:BF:CD:CB
X509v3 Authority Key Identifier:
keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:aa:67:6c:27:86:5d:1e:82:9b:a2:50:ea:a0:0c:fc:2a:74:
33:1d:f6:58:94:49:2c:a4:f9:aa:ff:c1:70:e7:18:4a:42:f9:
ef:b7:99:dd:26:26:1c:1e:e7:e8:a2:a1:45:14:e5:88:32:b0:
ba:ca:24:9e:a6:13:6f:cd:21:6e:79:07:e9:8b:51:1b:a7:a1:
01:03:ae:80:85:50:49:bb:88:62:32:43:98:16:95:73:2c:13:
be:bd:9b:1e:ce:5b:3d:be:9e:f6:b6:f8:c0:d6:3c:20:3f:4e:
d1:99:5b:1b:30:a0:8a:4a:dd:dc:84:c7:76:47:ba:d4:bd:d4:
f4:f4:1c:ff:aa:c3:12:01:7a:a4:57:ba:22:b9:7a:67:76:d9:
78:cf:08:63:d2:3e:5e:3b:fb:35:ca:ce:4c:bd:f2:fa:b3:93:
79:77:ea:29:95:5d:fc:ea:d2:bd:1c:18:03:35:92:ad:a3:a4:
0b:67:0a:94:8c:4f:51:6c:5c:9e:d7:a2:09:0d:1d:60:eb:7b:
2d:08:fa:b4:53:4f:7d:3d:00:f8:80:99:0c:57:5c:3e:cd:a6:
0f:ed:dd:61:e0:ec:50:64:95:b6:d5:10:24:13:9b:2d:9e:90:
0a:8c:a9:a0:a8:18:6a:7f:fc:81:9b:18:7c:8e:84:a6:09:c8:
7e:ec:f6:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RZnn/dauMbm2DgMaLHhFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMzdiNmRhYTIwYjVlMDYxODYyYjZmYjk5ZTIzNmFjMmMy
ZTM0ZjgwHhcNMjUwNjI4MTYwMTIxWhcNMjUwNjI5MTYwMTIxWjAzMTEwLwYDVQQD
EyhlOTlmNDE3NTgxNTI3Y2M0ZDNjNmFjYWRiNjdkZmIzMjM2YmZjZGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYgaPeSRA8B3hNikSGC7a7zg3B38
glm/niU42/XyFfvb3j15buWBFhPSTYLPzUcZ/ydcx9h1aD19B0XvNOKuZmOy6tkc
OAsz6F/icLDJdr2UjYb9/JD+e0fNM1Yab3aq6WdCFAHyqKVO3ofxs1NTDSXhkGgk
hYaDiomRjsOzI3w36HE9biznGfeDE+6D0LBOk44rDY2m/WuAFipVeIQSFiUGCOhw
yoFLT4pMfzDe5Sy94YXSg9lh7oJOiMPv+2h0yYqdoCo23qWKSKdk2oPqyYw+mwq0
r43jTmIcqgcgtuola6w0uUVjZAmTXhFepwl9UOGk3A1eyeYe3EWThJ1ZpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOmfQXWBUnzE08asrbZ9+zI2v83LMB8GA1UdIwQY
MBaAFEE3ttqiC14GGGK2+5niNqwsLjT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMt
MGIwMmE0NzMyNDc5LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS8wM2ZkNDItNjU4OS00NmJhLWE2NzMtMGIwMmE0NzMyNDc5
LzEvUVRlMjJxSUxYZ1lZWXJiN21lSTJyQ3d1TlBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIapnbCeG
XR6Cm6JQ6qAM/Cp0Mx32WJRJLKT5qv/BcOcYSkL577eZ3SYmHB7n6KKhRRTliDKw
usoknqYTb80hbnkH6YtRG6ehAQOugIVQSbuIYjJDmBaVcywTvr2bHs5bPb6e9rb4
wNY8ID9O0ZlbGzCgikrd3ITHdke61L3U9PQc/6rDEgF6pFe6Irl6Z3bZeM8IY9I+
Xjv7NcrOTL3y+rOTeXfqKZVd/OrSvRwYAzWSraOkC2cKlIxPUWxcnteiCQ0dYOt7
LQj6tFNPfT0A+ICZDFdcPs2mD+3dYeDsUGSVttUQJBObLZ6QCoypoKgYan/8gZsY
fI6EpgnIfuz2Ag==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:59:09 2025 by rpki-client