Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
File: MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft (raw, json)
Hash identifier: qCu1jBiPomKPJfIh76IWHyK5GEItsYEjvrwaw3dmqCY=
Subject key identifier: B2:58:75:D7:77:2D:2C:0A:EC:AD:62:F1:E2:A2:94:B7:BD:E6:AA:1F
Authority key identifier: 31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
Certificate issuer: /CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Certificate serial: 0197B632E52897D81B98743DD44F92EFA3B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
Manifest number: 0DB4
Signing time: Sat 28 Jun 2025 11:01:17 +0000
Manifest this update: Sat 28 Jun 2025 11:01:17 +0000
Manifest next update: Sun 29 Jun 2025 11:01:17 +0000
Files and hashes: 1: MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl (hash: sYZ4k6mjwff7CrPhwQ2j7IVF3CU5CNXg539KDIFRePk=)
2: QXjAwQSpvYGLG9EKG43DcrvrWjg.roa (hash: /g3NGPvML9niLWrxGUEsCrw0JcuhbxCMPrgB31IKq7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:e5:28:97:d8:1b:98:74:3d:d4:4f:92:ef:a3:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Validity
Not Before: Jun 28 11:01:17 2025 GMT
Not After : Jun 29 11:01:17 2025 GMT
Subject: CN=b25875d7772d2c0aecad62f1e2a294b7bde6aa1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1a:18:c7:7b:80:b6:af:a3:9a:62:f1:dc:d2:
23:79:13:9e:a3:7d:9b:6c:c3:77:e2:cc:87:0e:20:
72:cb:f1:da:1f:f4:24:68:73:24:b8:d2:b8:0d:be:
4f:6c:60:3d:cd:85:f7:01:e9:b1:22:89:6e:b6:44:
f0:5a:91:70:97:03:ee:b5:bd:a8:f8:8b:a5:15:bc:
f4:e6:8d:3f:5c:d0:5d:e0:5d:b1:b8:a0:e2:92:74:
54:87:02:0d:20:62:40:e8:2f:fe:19:8b:0e:5e:68:
4a:02:b1:ff:ea:f0:f7:06:ee:23:4b:0f:4d:21:3b:
00:74:de:60:f1:9b:c1:61:fd:89:36:9e:04:60:10:
e2:7b:9f:9e:7e:45:9d:5c:9c:d2:ed:ce:82:23:8d:
8d:5b:8a:cf:e2:0d:88:59:4d:0c:6d:a0:c2:7a:77:
2d:21:0d:49:a4:00:aa:86:51:3a:be:49:6f:f8:2a:
40:44:e0:c6:f7:46:18:c8:11:f7:e3:56:ae:ec:ce:
75:a6:f4:f9:96:d5:f0:66:a2:38:b4:30:2a:1a:63:
8e:e2:62:ed:ed:4b:92:c3:a1:0d:22:ef:7b:11:85:
a5:09:d4:34:f2:3d:38:37:b4:5a:09:70:32:f9:13:
25:b8:37:e2:b2:18:4e:5c:3a:60:0c:45:bb:9b:21:
12:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:58:75:D7:77:2D:2C:0A:EC:AD:62:F1:E2:A2:94:B7:BD:E6:AA:1F
X509v3 Authority Key Identifier:
keyid:31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:d0:1f:43:37:8f:b3:8f:38:bc:3d:1d:2b:8b:2f:97:9f:aa:
3e:fb:a6:94:c7:9c:71:30:70:39:6d:64:9e:7a:a4:4d:38:d6:
7f:bf:32:8e:97:27:a0:6c:60:0e:56:66:9a:0e:b8:da:0e:ae:
7a:a5:f5:fc:6f:c3:a3:f6:9d:dd:56:07:ee:c0:ea:d7:5a:f4:
59:a8:0f:04:6b:86:3a:1e:1c:08:2d:b7:f4:6e:ad:d9:67:96:
9b:8f:48:f6:3c:0d:6f:6b:20:35:1e:d8:37:fe:b4:3d:2d:3e:
a5:f4:b3:be:53:a6:61:bc:2f:73:4b:01:15:ca:75:40:e3:cb:
97:6e:80:80:83:23:74:72:6d:80:9d:d3:32:54:a9:2b:b3:67:
a9:df:cb:2a:b2:af:20:7a:3b:43:9a:b4:cb:2b:03:ec:d7:6b:
73:78:d4:6e:83:75:1e:12:37:5e:59:e5:01:11:f9:be:fb:46:
3f:be:ea:92:f1:68:b2:72:f0:6f:ad:bd:29:6e:96:41:23:e8:
bd:df:04:fa:f8:d3:5e:68:b5:ba:17:46:64:15:23:ab:76:ff:
94:3d:2f:d6:09:ee:b7:58:f1:cd:29:0f:5d:7a:f5:50:e2:76:
49:8e:6a:43:fd:18:48:29:61:a6:ff:00:58:20:58:ec:04:f5:
59:9f:19:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2MuUol9gbmHQ91E+S76OzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxMGUyZTlmYjcwNjY4Yzc5NmFkY2U4NzdiMjFlMDlhOGEx
YWQwMjkwHhcNMjUwNjI4MTEwMTE3WhcNMjUwNjI5MTEwMTE3WjAzMTEwLwYDVQQD
EyhiMjU4NzVkNzc3MmQyYzBhZWNhZDYyZjFlMmEyOTRiN2JkZTZhYTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohoYx3uAtq+jmmLx3NIjeROeo32b
bMN34syHDiByy/HaH/QkaHMkuNK4Db5PbGA9zYX3AemxIolutkTwWpFwlwPutb2o
+IulFbz05o0/XNBd4F2xuKDiknRUhwINIGJA6C/+GYsOXmhKArH/6vD3Bu4jSw9N
ITsAdN5g8ZvBYf2JNp4EYBDie5+efkWdXJzS7c6CI42NW4rP4g2IWU0MbaDCenct
IQ1JpACqhlE6vklv+CpARODG90YYyBH341au7M51pvT5ltXwZqI4tDAqGmOO4mLt
7UuSw6ENIu97EYWlCdQ08j04N7RaCXAy+RMluDfishhOXDpgDEW7myESgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLJYddd3LSwK7K1i8eKilLe95qofMB8GA1UdIwQY
MBaAFDEOLp+3BmjHlq3Oh3sh4JqKGtApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVE0dW43Y0dhTWVXcmM2SGV5SGdtb29hMENrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9kOWQ4MmQtMWNhNC00ODI0LWE5MmMt
Y2E1NWVmYzc3NTJkLzEvTVE0dW43Y0dhTWVXcmM2SGV5SGdtb29hMENrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9kOWQ4MmQtMWNhNC00ODI0LWE5MmMtY2E1NWVmYzc3NTJk
LzEvTVE0dW43Y0dhTWVXcmM2SGV5SGdtb29hMENrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAdAfQzeP
s484vD0dK4svl5+qPvumlMeccTBwOW1knnqkTTjWf78yjpcnoGxgDlZmmg642g6u
eqX1/G/Do/ad3VYH7sDq11r0WagPBGuGOh4cCC239G6t2WeWm49I9jwNb2sgNR7Y
N/60PS0+pfSzvlOmYbwvc0sBFcp1QOPLl26AgIMjdHJtgJ3TMlSpK7Nnqd/LKrKv
IHo7Q5q0yysD7Ndrc3jUboN1HhI3XlnlARH5vvtGP77qkvFosnLwb629KW6WQSPo
vd8E+vjTXmi1uhdGZBUjq3b/lD0v1gnut1jxzSkPXXr1UOJ2SY5qQ/0YSClhpv8A
WCBY7AT1WZ8ZXg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 18:57:18 2025 by rpki-client