Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
File: QCzcwN4_54S70vviah2BZWpGfSI.mft (raw, json)
Hash identifier: wFhlihZ1vunvC5XSNkVIazZUXszCLEakAy/GEEKJtG0=
Subject key identifier: 69:9E:1D:9B:3A:36:40:6F:D6:2B:33:23:C9:96:F9:AF:2C:76:2F:04
Authority key identifier: 40:2C:DC:C0:DE:3F:E7:84:BB:D2:FB:E2:6A:1D:81:65:6A:46:7D:22
Certificate issuer: /CN=402cdcc0de3fe784bbd2fbe26a1d81656a467d22
Certificate serial: 0197B88F09429361C58BCAA8F1F66520933A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCzcwN4_54S70vviah2BZWpGfSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
Manifest number: 0828
Signing time: Sat 28 Jun 2025 22:01:11 +0000
Manifest this update: Sat 28 Jun 2025 22:01:11 +0000
Manifest next update: Sun 29 Jun 2025 22:01:11 +0000
Files and hashes: 1: QCzcwN4_54S70vviah2BZWpGfSI.crl (hash: WfguGciYO+qz2OQUbGRQvC6C4uBhdteHTPskhzZ7zbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QCzcwN4_54S70vviah2BZWpGfSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:09:42:93:61:c5:8b:ca:a8:f1:f6:65:20:93:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=402cdcc0de3fe784bbd2fbe26a1d81656a467d22
Validity
Not Before: Jun 28 22:01:11 2025 GMT
Not After : Jun 29 22:01:11 2025 GMT
Subject: CN=699e1d9b3a36406fd62b3323c996f9af2c762f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2b:14:c0:08:02:0c:07:ea:c8:f2:ed:58:78:
98:30:92:01:ef:92:5f:24:a0:db:64:e3:c9:c8:42:
67:7b:23:16:bb:be:e3:ad:df:a1:13:a1:9f:20:02:
4a:77:74:e7:13:aa:2f:83:aa:f7:b0:65:58:24:75:
37:c0:86:77:85:8b:e7:c8:e5:55:f9:3b:66:d0:82:
45:a0:aa:6f:fb:a0:b8:f4:bd:fc:55:7a:9c:c1:7b:
bd:f6:59:e3:d1:69:8a:bc:d9:09:e9:cb:24:34:d7:
a1:d5:48:4e:85:d7:91:00:18:15:94:f1:04:5e:3e:
a2:9e:6f:f7:c5:f9:20:cc:d4:24:6f:e5:6e:2a:ba:
20:3e:fe:ec:7d:43:03:d7:3f:3a:f1:65:3d:f8:bb:
f5:fd:7c:5d:76:75:d5:66:33:df:22:2a:03:f9:01:
33:41:f5:75:c8:c9:8c:f4:8f:cf:59:74:64:f5:93:
de:2a:49:72:7e:69:3c:e2:39:5a:ec:7a:ea:c8:0c:
98:6f:36:cb:7d:75:2a:47:00:46:c3:62:73:82:33:
d7:85:9b:77:f0:4a:7a:2e:9d:53:d6:55:ce:e5:0d:
ef:d3:48:5f:a0:8a:0c:98:76:6e:75:3d:39:06:a4:
27:c2:6c:23:9b:a2:ab:54:25:44:66:2e:79:b8:45:
ac:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:9E:1D:9B:3A:36:40:6F:D6:2B:33:23:C9:96:F9:AF:2C:76:2F:04
X509v3 Authority Key Identifier:
keyid:40:2C:DC:C0:DE:3F:E7:84:BB:D2:FB:E2:6A:1D:81:65:6A:46:7D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCzcwN4_54S70vviah2BZWpGfSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:c6:9e:3b:6d:71:38:2c:58:02:46:be:2c:46:0c:e3:49:0c:
cf:ca:5c:ca:c8:5a:58:fe:31:5c:4a:11:13:b5:59:28:c4:42:
38:02:96:4e:ce:62:14:b1:1a:a6:f5:0a:a2:5b:9c:77:82:53:
ce:ae:6d:76:ba:af:a1:62:a7:c9:73:2e:dd:f1:f0:a3:f3:b5:
cd:31:58:91:8e:2c:00:6f:39:cb:1c:e1:8e:78:b0:65:09:09:
dc:b5:79:a3:bc:75:e8:aa:c2:b7:47:0b:46:4f:78:ce:89:8c:
35:26:86:2f:95:73:96:4b:97:ad:00:57:8d:f9:db:3c:63:89:
1a:3c:1c:71:df:28:2e:d0:4a:34:da:bd:bf:5c:d6:63:70:e4:
df:a3:43:83:38:3f:73:a3:05:23:ee:8c:8b:45:92:57:6e:2c:
3a:d3:f4:cf:f2:5c:db:e1:bf:88:67:a3:91:34:1a:f8:6f:90:
bb:13:8e:82:36:c3:c3:8a:d8:33:c1:5a:33:8e:a6:5e:26:88:
84:14:65:c3:74:90:33:fe:0e:62:65:79:07:ca:80:94:9b:1f:
2d:c3:29:53:69:ba:1c:9f:e5:af:9e:2c:19:39:8f:cc:b7:67:
bf:81:bc:0a:4d:8a:84:21:63:54:dc:fe:07:e7:9d:5f:19:6a:
7a:a9:94:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4jwlCk2HFi8qo8fZlIJM6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMmNkY2MwZGUzZmU3ODRiYmQyZmJlMjZhMWQ4MTY1NmE0
NjdkMjIwHhcNMjUwNjI4MjIwMTExWhcNMjUwNjI5MjIwMTExWjAzMTEwLwYDVQQD
Eyg2OTllMWQ5YjNhMzY0MDZmZDYyYjMzMjNjOTk2ZjlhZjJjNzYyZjA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsisUwAgCDAfqyPLtWHiYMJIB75Jf
JKDbZOPJyEJneyMWu77jrd+hE6GfIAJKd3TnE6ovg6r3sGVYJHU3wIZ3hYvnyOVV
+Ttm0IJFoKpv+6C49L38VXqcwXu99lnj0WmKvNkJ6cskNNeh1UhOhdeRABgVlPEE
Xj6inm/3xfkgzNQkb+VuKrogPv7sfUMD1z868WU9+Lv1/XxddnXVZjPfIioD+QEz
QfV1yMmM9I/PWXRk9ZPeKklyfmk84jla7HrqyAyYbzbLfXUqRwBGw2JzgjPXhZt3
8Ep6Lp1T1lXO5Q3v00hfoIoMmHZudT05BqQnwmwjm6KrVCVEZi55uEWsKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGmeHZs6NkBv1iszI8mW+a8sdi8EMB8GA1UdIwQY
MBaAFEAs3MDeP+eEu9L74modgWVqRn0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUN6Y3dONF81NFM3MHZ2aWFoMkJaV3BHZlNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9mMDVkMGQtYzFkOC00N2E2LTlkMWUt
ODY0ZGFjYTZjZmRmLzEvUUN6Y3dONF81NFM3MHZ2aWFoMkJaV3BHZlNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9mMDVkMGQtYzFkOC00N2E2LTlkMWUtODY0ZGFjYTZjZmRm
LzEvUUN6Y3dONF81NFM3MHZ2aWFoMkJaV3BHZlNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdMaeO21x
OCxYAka+LEYM40kMz8pcyshaWP4xXEoRE7VZKMRCOAKWTs5iFLEapvUKolucd4JT
zq5tdrqvoWKnyXMu3fHwo/O1zTFYkY4sAG85yxzhjniwZQkJ3LV5o7x16KrCt0cL
Rk94zomMNSaGL5VzlkuXrQBXjfnbPGOJGjwccd8oLtBKNNq9v1zWY3Dk36NDgzg/
c6MFI+6Mi0WSV24sOtP0z/Jc2+G/iGejkTQa+G+QuxOOgjbDw4rYM8FaM46mXiaI
hBRlw3SQM/4OYmV5B8qAlJsfLcMpU2m6HJ/lr54sGTmPzLdnv4G8Ck2KhCFjVNz+
B+edXxlqeqmUbg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 02:10:28 2025 by rpki-client