Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
File: pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft (raw, json)
Hash identifier: EoWvcEAu5h+1m8PMwnTmrfeE8iu+sl0vbfi/5/WDnlw=
Subject key identifier: 49:20:53:F1:4E:F1:22:39:21:E1:C2:FB:9A:3C:0E:AD:AD:34:35:BB
Authority key identifier: A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
Certificate issuer: /CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Certificate serial: 0197B93420A05ADBE38A4A17E42198DEDA26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
Manifest number: 0A49
Signing time: Sun 29 Jun 2025 01:01:30 +0000
Manifest this update: Sun 29 Jun 2025 01:01:30 +0000
Manifest next update: Mon 30 Jun 2025 01:01:30 +0000
Files and hashes: 1: LPRtA19ISdoMAcOg5dTdVh6L9Jk.roa (hash: yfplS3KyTgY8se7AVlwzcVLsAsein115ckLeaHyCF6w=)
2: pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl (hash: ZP/bu28vkNHVRV9ZlkBZM61K1er77eqNaG2mJeGQhpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:34:20:a0:5a:db:e3:8a:4a:17:e4:21:98:de:da:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Validity
Not Before: Jun 29 01:01:30 2025 GMT
Not After : Jun 30 01:01:30 2025 GMT
Subject: CN=492053f14ef1223921e1c2fb9a3c0eadad3435bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e8:a7:a5:f9:32:30:b7:f4:11:f4:ad:5f:1d:
90:b9:eb:be:5b:39:e7:55:9c:b0:1a:59:87:2e:e1:
39:ce:da:ba:4a:da:4a:81:25:41:41:e2:01:5b:51:
43:bd:a1:98:03:3f:3b:80:ce:03:c8:7e:ed:ff:08:
82:de:86:b7:c7:96:50:5d:1b:74:8c:32:a0:51:9e:
5b:6d:69:b3:e9:89:aa:14:3e:04:44:35:a1:9c:65:
f1:ff:82:d1:d7:1b:b2:62:cb:df:df:9e:49:5d:fd:
15:11:8f:11:e7:38:90:f1:d4:ac:f6:a1:ce:0b:96:
a1:bc:b6:9a:0d:9c:de:c4:ae:70:55:38:44:a3:dd:
b8:1f:9e:06:16:d1:09:50:0e:eb:7f:e6:0e:b7:85:
b9:76:f3:8f:bb:0a:82:0f:b7:6c:c2:6e:55:b0:e1:
86:a6:bf:52:d8:79:13:71:ed:8d:e6:4b:75:f8:8e:
4e:15:7c:94:29:dc:aa:d4:b7:07:ee:e3:95:b1:0f:
f9:48:69:44:ba:58:68:c1:f0:93:23:da:8c:17:0c:
32:55:13:01:07:a6:0f:2b:45:6a:bc:86:31:09:98:
ed:a4:c4:42:28:fa:63:b7:25:36:f6:e3:87:ef:bb:
4e:f3:ff:f4:3a:32:5c:56:51:bf:18:6c:45:68:7f:
60:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:20:53:F1:4E:F1:22:39:21:E1:C2:FB:9A:3C:0E:AD:AD:34:35:BB
X509v3 Authority Key Identifier:
keyid:A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:7a:3c:ed:9e:d2:7b:46:8a:47:2e:aa:21:3f:56:a5:8e:df:
f0:c7:8a:0a:4e:ec:f9:1c:f0:3d:99:8f:85:d4:83:7b:7b:fe:
68:cf:26:e2:9f:ed:81:b6:f6:7d:16:2b:21:bd:5d:c1:15:93:
50:c5:0d:0e:4b:51:fb:89:61:0f:9d:60:07:18:a7:08:9e:8a:
84:05:45:a0:8c:f3:3c:43:8b:fa:23:a9:ee:f3:a7:15:20:88:
77:4c:68:76:7c:95:74:9e:18:91:ac:86:8b:42:e0:c0:35:8d:
98:0c:49:bf:5a:b4:d6:01:3b:e0:24:29:3c:89:25:ee:1b:ef:
b5:47:07:cc:5a:62:d8:87:1e:31:c7:fe:77:55:96:35:93:33:
23:d4:77:bb:ed:00:e0:bc:55:03:1f:13:96:0e:0d:9b:85:09:
38:3a:01:9c:59:29:a9:eb:f3:bd:7a:a8:9f:a3:aa:bf:3f:fa:
1a:03:d9:49:ee:fe:23:ed:70:9d:3f:f1:81:e4:3e:c2:06:b0:
a6:34:98:e6:f0:8e:81:29:a9:69:1c:0f:f3:66:f9:87:2b:9a:
4c:8a:24:88:51:fc:34:7a:90:c2:c3:7b:69:10:d4:6b:2a:6a:
b5:60:95:41:a5:b3:61:ff:3d:7d:1e:7b:b7:0a:34:6d:66:37:
15:ba:6b:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe5NCCgWtvjikoX5CGY3tomMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MGNkM2I5ZmI2NDY0OTE1YWQwZDM3NjA5MzRjMDE4Mjg4
OWYxZmIwHhcNMjUwNjI5MDEwMTMwWhcNMjUwNjMwMDEwMTMwWjAzMTEwLwYDVQQD
Eyg0OTIwNTNmMTRlZjEyMjM5MjFlMWMyZmI5YTNjMGVhZGFkMzQzNWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnOinpfkyMLf0EfStXx2Queu+Wznn
VZywGlmHLuE5ztq6StpKgSVBQeIBW1FDvaGYAz87gM4DyH7t/wiC3oa3x5ZQXRt0
jDKgUZ5bbWmz6YmqFD4ERDWhnGXx/4LR1xuyYsvf355JXf0VEY8R5ziQ8dSs9qHO
C5ahvLaaDZzexK5wVThEo924H54GFtEJUA7rf+YOt4W5dvOPuwqCD7dswm5VsOGG
pr9S2HkTce2N5kt1+I5OFXyUKdyq1LcH7uOVsQ/5SGlEulhowfCTI9qMFwwyVRMB
B6YPK0VqvIYxCZjtpMRCKPpjtyU29uOH77tO8//0OjJcVlG/GGxFaH9gjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEkgU/FO8SI5IeHC+5o8Dq2tNDW7MB8GA1UdIwQY
MBaAFKUM07n7ZGSRWtDTdgk0wBgoifH7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8zYzkyZmEtYzNkNS00YTM2LTllMTct
MzdlOWU4NmE5Mjc5LzEvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8zYzkyZmEtYzNkNS00YTM2LTllMTctMzdlOWU4NmE5Mjc5
LzEvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD3o87Z7S
e0aKRy6qIT9WpY7f8MeKCk7s+RzwPZmPhdSDe3v+aM8m4p/tgbb2fRYrIb1dwRWT
UMUNDktR+4lhD51gBxinCJ6KhAVFoIzzPEOL+iOp7vOnFSCId0xodnyVdJ4YkayG
i0LgwDWNmAxJv1q01gE74CQpPIkl7hvvtUcHzFpi2IceMcf+d1WWNZMzI9R3u+0A
4LxVAx8Tlg4Nm4UJODoBnFkpqevzvXqon6Oqvz/6GgPZSe7+I+1wnT/xgeQ+wgaw
pjSY5vCOgSmpaRwP82b5hyuaTIokiFH8NHqQwsN7aRDUaypqtWCVQaWzYf89fR57
two0bWY3Fbprjg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:06:04 2025 by rpki-client