Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
File: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft (raw, json)
Hash identifier: wIJGMkGYinnks9JDn2jHSAEJ8n9L0OxwnLmhOE2Nn8c=
Subject key identifier: B8:66:84:64:21:D2:56:9D:D5:74:DC:1B:C3:6E:BF:01:53:7F:30:6A
Authority key identifier: 41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
Certificate issuer: /CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Certificate serial: 0197B8FDA9F839F1B1CBE23B61C178587BE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
Manifest number: 15BA
Signing time: Sun 29 Jun 2025 00:02:01 +0000
Manifest this update: Sun 29 Jun 2025 00:02:01 +0000
Manifest next update: Mon 30 Jun 2025 00:02:01 +0000
Files and hashes: 1: NrBghBDxVUP3b8K-s4QfPajtoEw.roa (hash: PXmrD91Lu77kd9R7RmMEPIR9q62nZX3KSQVZITYjO7o=)
2: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl (hash: 3IOMPXPLiSxRtXbMzQ6+1mkoFyDokWkWzg+B4BalNPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:a9:f8:39:f1:b1:cb:e2:3b:61:c1:78:58:7b:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Validity
Not Before: Jun 29 00:02:01 2025 GMT
Not After : Jun 30 00:02:01 2025 GMT
Subject: CN=b866846421d2569dd574dc1bc36ebf01537f306a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c8:ba:4a:b2:68:ae:36:41:5a:d3:5d:92:09:
4b:39:47:92:6d:67:c8:bb:fc:8e:cd:69:b8:d4:05:
41:96:3f:db:70:bf:36:97:7a:01:af:b7:b8:b1:95:
95:a1:f1:ec:12:43:19:4b:2f:66:97:6b:d6:e4:c0:
f7:c9:3d:f0:f7:cd:44:16:26:b7:3e:d5:d5:8f:58:
9d:87:aa:22:5d:c4:24:4e:ad:5d:03:3f:56:d8:f0:
61:a0:68:36:e8:f8:d4:f4:32:b8:f6:e6:fc:08:8f:
39:46:ca:76:26:b5:b5:12:51:d6:87:fe:97:82:fa:
cc:d1:4c:08:69:a7:c0:43:25:2a:4e:fe:4c:b6:9d:
12:34:09:eb:69:8f:67:63:b8:0b:0d:27:be:14:07:
81:c9:77:b4:2d:06:31:3e:7f:94:c2:bb:e7:1c:f7:
1e:27:8a:bd:45:1a:f2:3e:e3:9b:70:31:48:c3:33:
c9:c2:6d:34:49:ba:9f:52:c7:e1:79:e5:74:de:ab:
34:86:62:04:9b:aa:53:06:bf:4f:84:47:6d:24:d2:
92:8d:42:72:86:52:6d:17:8b:6d:b7:2a:f7:ac:8b:
a5:11:ad:45:f5:73:1b:ff:a5:87:f9:f5:94:b2:63:
da:18:a3:8c:52:8c:f3:1a:9b:ee:2d:52:05:ce:c8:
d3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:66:84:64:21:D2:56:9D:D5:74:DC:1B:C3:6E:BF:01:53:7F:30:6A
X509v3 Authority Key Identifier:
keyid:41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:1d:59:9e:62:1e:73:c7:89:0b:51:dc:0b:dc:8a:5b:2f:cf:
43:06:c3:04:f6:7d:3f:c4:37:ce:0e:2f:85:ef:0b:f9:a4:5c:
cc:ec:47:0d:9f:7b:e3:b2:d9:73:be:45:1d:36:20:51:57:06:
b2:4a:80:cb:5e:f2:d4:d3:29:c4:dd:eb:a4:38:32:37:6e:8b:
0d:08:8a:60:f1:1b:c0:ba:9c:1b:52:39:1d:e3:c8:41:a8:fc:
cd:7b:8d:a6:71:71:9d:4f:42:67:d9:e2:fb:80:66:a3:4a:fe:
61:e5:a6:10:89:e7:5d:cf:98:ab:2d:ce:fc:39:9a:4c:59:fe:
1b:96:2c:cc:bb:3e:59:0b:36:46:6b:a0:06:53:92:ec:9e:2f:
03:59:7c:f0:6e:6f:ba:54:89:aa:11:1c:5f:37:b1:82:62:65:
cc:53:ea:4b:51:75:d8:66:f2:73:5e:09:1c:13:57:7b:41:42:
68:91:70:60:0f:aa:20:85:1c:79:eb:47:25:be:cc:3d:a8:af:
e7:a7:a1:5a:c8:51:cb:ba:cc:f8:af:89:c5:18:7f:57:76:44:
42:88:5a:be:08:00:87:ca:48:0e:a3:6f:c6:9b:9d:7d:fe:89:
b2:e4:0a:a4:9a:27:18:6a:20:cf:40:88:a1:4b:00:1f:d9:7b:
5b:7c:ae:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4/an4OfGxy+I7YcF4WHvhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxOGRmODY4ZjdkOWU5OGQ0ZmQ0MWU2ZGE1OTdhMjgzYzkx
NDFiNDQwHhcNMjUwNjI5MDAwMjAxWhcNMjUwNjMwMDAwMjAxWjAzMTEwLwYDVQQD
EyhiODY2ODQ2NDIxZDI1NjlkZDU3NGRjMWJjMzZlYmYwMTUzN2YzMDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8i6SrJorjZBWtNdkglLOUeSbWfI
u/yOzWm41AVBlj/bcL82l3oBr7e4sZWVofHsEkMZSy9ml2vW5MD3yT3w981EFia3
PtXVj1idh6oiXcQkTq1dAz9W2PBhoGg26PjU9DK49ub8CI85Rsp2JrW1ElHWh/6X
gvrM0UwIaafAQyUqTv5Mtp0SNAnraY9nY7gLDSe+FAeByXe0LQYxPn+UwrvnHPce
J4q9RRryPuObcDFIwzPJwm00SbqfUsfheeV03qs0hmIEm6pTBr9PhEdtJNKSjUJy
hlJtF4tttyr3rIulEa1F9XMb/6WH+fWUsmPaGKOMUozzGpvuLVIFzsjT+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLhmhGQh0lad1XTcG8NuvwFTfzBqMB8GA1UdIwQY
MBaAFEGN+Gj32emNT9QebaWXooPJFBtEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9jNmY4NmQtZjc5NS00MTlmLWFkMzEt
ZWU5YzM0NTJjYmFmLzEvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9jNmY4NmQtZjc5NS00MTlmLWFkMzEtZWU5YzM0NTJjYmFm
LzEvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjh1ZnmIe
c8eJC1HcC9yKWy/PQwbDBPZ9P8Q3zg4vhe8L+aRczOxHDZ9747LZc75FHTYgUVcG
skqAy17y1NMpxN3rpDgyN26LDQiKYPEbwLqcG1I5HePIQaj8zXuNpnFxnU9CZ9ni
+4Bmo0r+YeWmEInnXc+Yqy3O/DmaTFn+G5YszLs+WQs2RmugBlOS7J4vA1l88G5v
ulSJqhEcXzexgmJlzFPqS1F12Gbyc14JHBNXe0FCaJFwYA+qIIUceetHJb7MPaiv
56ehWshRy7rM+K+JxRh/V3ZEQohavggAh8pIDqNvxpudff6JsuQKpJonGGogz0CI
oUsAH9l7W3yuKw==
-----END CERTIFICATE-----
Generated at Sun Jun 29 06:55:50 2025 by rpki-client