Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: 5xGfDlbn3/+29vO3fDAf1vWrXMArRoK9FEXFqgIONOs=
Subject key identifier: BD:55:C0:24:A1:F7:2A:1B:EB:24:5F:0E:5B:D6:B8:E9:97:C0:C6:2F
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 0197CC15DF26597F1D4583987AD09FC72B9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 15C2
Signing time: Wed 02 Jul 2025 17:01:14 +0000
Manifest this update: Wed 02 Jul 2025 17:01:14 +0000
Manifest next update: Thu 03 Jul 2025 17:01:14 +0000
Files and hashes: 1: Diq6O5ga68_B8MEC7x3IDqn6lbc.roa (hash: r+Ep1MU6KZ691K575NCgrIa7fSiICzMjhV/0OlU71vU=)
2: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: WivBlo7ConLXvQDR1lRlq/I+NEXCatlGLr2XbUrjlsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 17:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:15:df:26:59:7f:1d:45:83:98:7a:d0:9f:c7:2b:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Jul 2 17:01:14 2025 GMT
Not After : Jul 3 17:01:14 2025 GMT
Subject: CN=bd55c024a1f72a1beb245f0e5bd6b8e997c0c62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ef:4a:5e:4b:d7:60:09:42:e4:fd:96:2e:6f:
30:29:02:8b:bb:14:58:d4:b6:04:8a:06:70:79:34:
67:cb:38:e6:c5:e6:dc:6d:ec:bd:3e:a5:4a:65:fb:
12:2e:c0:4c:da:39:d2:35:f6:6d:61:3c:ed:33:a5:
0a:ff:1b:57:f0:3e:68:3e:b3:4d:3c:0e:81:ce:5f:
8d:12:36:84:f8:a9:16:c9:99:00:50:ed:f9:4d:12:
bd:72:d2:67:b3:74:cc:b7:58:14:55:e4:66:3b:39:
6e:43:58:7f:46:dd:db:55:01:f0:e8:0b:39:58:45:
7d:78:0b:60:b3:10:31:3d:30:b3:18:0a:45:dd:04:
c3:f2:1c:75:99:d1:21:08:b9:f0:21:7c:01:4d:f4:
04:21:7c:6a:40:1b:39:ab:c7:34:f9:3b:80:64:cf:
f1:61:50:b2:e8:38:db:06:e8:6d:e7:78:d6:4f:4a:
a7:db:98:eb:84:18:ba:fb:91:26:5e:0a:e4:d5:fa:
51:d5:47:de:b6:0e:d0:02:e8:df:bd:9b:30:46:31:
41:5a:59:a7:f0:61:d6:de:ce:40:1c:09:2e:28:11:
e7:54:5d:2c:02:aa:de:54:eb:85:19:88:de:56:8f:
8e:47:38:47:25:65:69:57:2a:b1:80:ac:53:24:e3:
a6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:55:C0:24:A1:F7:2A:1B:EB:24:5F:0E:5B:D6:B8:E9:97:C0:C6:2F
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:5e:7a:fb:57:a1:70:ed:69:ac:3a:03:61:84:12:34:3e:bc:
6f:d6:56:46:80:56:4e:72:f4:9a:9f:8f:c4:db:ae:3e:a0:10:
c2:98:20:5a:b4:71:07:28:49:33:b0:00:f5:54:6e:c2:88:d4:
47:7c:59:3f:d0:77:3a:ab:c1:2f:4d:95:f6:46:10:a0:47:ad:
41:0b:c7:76:9f:95:70:5b:8f:28:87:c1:85:f6:11:9a:b9:59:
4e:2e:4c:1d:22:7f:2f:92:c3:31:2c:cc:c4:18:d3:7f:91:b0:
bb:fb:7d:de:ff:d5:53:d6:2f:c2:b6:0e:52:0c:6c:f7:6b:66:
02:8b:44:4e:ad:1a:9e:ff:1d:39:ac:b2:52:0c:1d:25:14:08:
80:d4:d6:7c:4e:ff:dc:43:bd:8f:b0:e6:32:7f:ee:0a:22:e6:
1d:e7:a4:dc:e5:56:3c:18:11:6e:97:6b:1c:a3:b3:74:11:dd:
2e:16:44:cd:c4:19:10:46:27:81:30:0e:60:5b:7c:ab:4b:06:
fb:54:fe:8b:ee:15:bd:60:4c:aa:f0:d2:10:c6:a3:aa:79:95:
4a:72:4b:b5:15:d0:55:10:b7:32:29:72:f9:fe:5b:6f:ec:89:
e4:39:15:08:d7:51:5c:b4:76:28:e5:46:63:01:a2:bc:55:6a:
34:67:31:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfMFd8mWX8dRYOYetCfxyubMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNDUzNjRlNDlkYzNhMTViZWZmMjY5YzNhMzJiM2MwNTQx
YzhiNjYwHhcNMjUwNzAyMTcwMTE0WhcNMjUwNzAzMTcwMTE0WjAzMTEwLwYDVQQD
EyhiZDU1YzAyNGExZjcyYTFiZWIyNDVmMGU1YmQ2YjhlOTk3YzBjNjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxO9KXkvXYAlC5P2WLm8wKQKLuxRY
1LYEigZweTRnyzjmxebcbey9PqVKZfsSLsBM2jnSNfZtYTztM6UK/xtX8D5oPrNN
PA6Bzl+NEjaE+KkWyZkAUO35TRK9ctJns3TMt1gUVeRmOzluQ1h/Rt3bVQHw6As5
WEV9eAtgsxAxPTCzGApF3QTD8hx1mdEhCLnwIXwBTfQEIXxqQBs5q8c0+TuAZM/x
YVCy6DjbBuht53jWT0qn25jrhBi6+5EmXgrk1fpR1Ufetg7QAujfvZswRjFBWlmn
8GHW3s5AHAkuKBHnVF0sAqreVOuFGYjeVo+ORzhHJWVpVyqxgKxTJOOmOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL1VwCSh9yob6yRfDlvWuOmXwMYvMB8GA1UdIwQY
MBaAFKtFNk5J3DoVvv8mnDoys8BUHItmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTct
ZjhiZDI1MDQ1NGViLzEvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTctZjhiZDI1MDQ1NGVi
LzEvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMV56+1eh
cO1prDoDYYQSND68b9ZWRoBWTnL0mp+PxNuuPqAQwpggWrRxByhJM7AA9VRuwojU
R3xZP9B3OqvBL02V9kYQoEetQQvHdp+VcFuPKIfBhfYRmrlZTi5MHSJ/L5LDMSzM
xBjTf5Gwu/t93v/VU9YvwrYOUgxs92tmAotETq0anv8dOayyUgwdJRQIgNTWfE7/
3EO9j7DmMn/uCiLmHeek3OVWPBgRbpdrHKOzdBHdLhZEzcQZEEYngTAOYFt8q0sG
+1T+i+4VvWBMqvDSEMajqnmVSnJLtRXQVRC3Mily+f5bb+yJ5DkVCNdRXLR2KOVG
YwGivFVqNGcxhw==
-----END CERTIFICATE-----
Generated at Thu Jul 3 00:32:00 2025 by rpki-client