Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
File: 7jcJhfg_QTMBEcNQzWseHurVJqo.mft (raw, json)
Hash identifier: Qiy7yX9Qxa7jwwFGuNCgZtKaCQ8qJcfKweW6BOIapvs=
Subject key identifier: 1E:11:2F:0B:F3:6E:C0:AD:27:B5:0B:BE:01:A8:CF:C3:D2:80:61:32
Authority key identifier: EE:37:09:85:F8:3F:41:33:01:11:C3:50:CD:6B:1E:1E:EA:D5:26:AA
Certificate issuer: /CN=ee370985f83f41330111c350cd6b1e1eead526aa
Certificate serial: 0197B7B36047EE82763EEE4FA224E5C32A6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
Manifest number: 15BB
Signing time: Sat 28 Jun 2025 18:01:15 +0000
Manifest this update: Sat 28 Jun 2025 18:01:15 +0000
Manifest next update: Sun 29 Jun 2025 18:01:15 +0000
Files and hashes: 1: 7jcJhfg_QTMBEcNQzWseHurVJqo.crl (hash: pSTPXYAa/IMjM8wuccSqPHKh8uCKV37vssM9vQKhP+o=)
2: YMiovkkM1pTRsj2s2pWWavdNH3M.roa (hash: d26rfkrfXfTKQZRjWJD5TAVJi3E84OTuQPo2eEaVnMI=)
3: cXrx1ROqbRYTJpBaY9JfsPVk3Ow.roa (hash: e0I94SNdLBs+vaXUAirpLtLE8FeKHQEH/NhmFQRxO+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:60:47:ee:82:76:3e:ee:4f:a2:24:e5:c3:2a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee370985f83f41330111c350cd6b1e1eead526aa
Validity
Not Before: Jun 28 18:01:15 2025 GMT
Not After : Jun 29 18:01:15 2025 GMT
Subject: CN=1e112f0bf36ec0ad27b50bbe01a8cfc3d2806132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:63:70:fb:9d:9b:26:f8:91:df:79:2a:28:e6:
b5:cd:d5:b3:20:a4:d7:22:06:35:97:b7:14:b6:de:
22:86:5a:ef:6b:d9:af:6c:de:96:85:74:6b:6e:9c:
5b:45:8b:6b:d4:4b:cc:28:a4:95:e4:21:3f:84:bb:
bd:b5:4e:00:50:69:13:06:27:7c:24:e7:6a:37:35:
b0:8f:cd:a1:cc:b6:17:72:84:a0:2e:89:45:1f:ca:
de:7e:b5:ec:d3:59:ac:14:44:42:54:21:eb:05:42:
b8:8e:5c:ec:a5:f6:ad:3a:fb:2e:f9:d6:f7:be:72:
20:3a:ff:1b:9d:e6:67:61:1f:13:ac:f7:1b:f3:50:
42:55:35:95:0f:92:fe:07:96:84:a2:b9:d0:09:59:
f6:fc:3f:2c:c7:23:d8:3d:d2:a5:41:7d:d4:70:82:
3f:7f:7a:4c:b7:bd:15:ca:e5:6e:30:d8:c3:53:fa:
d1:e3:80:a0:2c:3c:42:18:c7:48:1a:c6:f8:c7:16:
8f:48:68:c0:20:f7:5b:04:45:b6:79:99:67:9b:7a:
f4:87:00:1c:0b:56:fb:26:32:8c:6e:de:d8:08:4e:
cb:d6:55:36:66:8e:0b:b7:f4:84:b7:00:45:95:a0:
1b:11:af:77:d6:e2:bb:8d:00:0e:75:da:a6:28:c6:
a5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:11:2F:0B:F3:6E:C0:AD:27:B5:0B:BE:01:A8:CF:C3:D2:80:61:32
X509v3 Authority Key Identifier:
keyid:EE:37:09:85:F8:3F:41:33:01:11:C3:50:CD:6B:1E:1E:EA:D5:26:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:a1:3c:37:bb:59:21:b8:10:f2:45:b3:d3:04:b1:7a:89:f3:
da:4d:70:2a:be:8b:1e:ac:5b:72:0c:62:24:b7:6b:94:74:1f:
ad:5a:7d:f5:81:e1:0b:1a:f7:a5:e7:d5:8e:cc:b5:82:d3:a2:
e6:a6:1c:c2:2d:b8:a0:65:95:5f:7e:41:97:82:8c:5d:ad:87:
98:bc:c3:5b:67:10:8a:69:1d:58:cc:58:76:cf:86:01:f8:fe:
93:6d:53:3c:e4:51:e2:49:18:05:65:b1:dd:7d:41:0a:72:22:
03:e8:1b:da:df:ce:74:0e:a9:65:54:15:6c:97:62:8a:c6:25:
67:61:2e:3a:81:fe:2b:82:74:c7:ae:cb:f3:84:8a:3c:b4:24:
08:d2:d3:46:5d:a6:8e:14:41:d3:32:e1:9e:90:0b:ec:57:f9:
87:fe:64:61:fe:4e:a1:e3:13:5c:80:ff:16:9c:06:ac:44:3f:
b7:41:76:21:f9:51:53:f2:5c:9a:43:d9:21:c1:ae:a5:89:f7:
e9:38:0e:3c:7c:d6:06:ba:30:3d:a3:59:9b:30:1e:b9:bf:d9:
07:4c:1f:2b:2b:f3:c3:04:25:e8:72:14:54:3b:46:0d:5e:1f:
f6:ab:f2:b6:cb:6e:72:79:a0:c5:de:f4:9a:e1:86:2e:8f:ab:
a5:62:cd:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3s2BH7oJ2Pu5PoiTlwypuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMzcwOTg1ZjgzZjQxMzMwMTExYzM1MGNkNmIxZTFlZWFk
NTI2YWEwHhcNMjUwNjI4MTgwMTE1WhcNMjUwNjI5MTgwMTE1WjAzMTEwLwYDVQQD
EygxZTExMmYwYmYzNmVjMGFkMjdiNTBiYmUwMWE4Y2ZjM2QyODA2MTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2Nw+52bJviR33kqKOa1zdWzIKTX
IgY1l7cUtt4ihlrva9mvbN6WhXRrbpxbRYtr1EvMKKSV5CE/hLu9tU4AUGkTBid8
JOdqNzWwj82hzLYXcoSgLolFH8refrXs01msFERCVCHrBUK4jlzspfatOvsu+db3
vnIgOv8bneZnYR8TrPcb81BCVTWVD5L+B5aEornQCVn2/D8sxyPYPdKlQX3UcII/
f3pMt70VyuVuMNjDU/rR44CgLDxCGMdIGsb4xxaPSGjAIPdbBEW2eZlnm3r0hwAc
C1b7JjKMbt7YCE7L1lU2Zo4Lt/SEtwBFlaAbEa931uK7jQAOddqmKMalWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB4RLwvzbsCtJ7ULvgGoz8PSgGEyMB8GA1UdIwQY
MBaAFO43CYX4P0EzARHDUM1rHh7q1SaqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2pjSmhmZ19RVE1CRWNOUXpXc2VIdXJWSnFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8yNzQ0ZDAtNDFhMC00NDM0LWI2OTAt
MzI0NDU0NmY4Y2JmLzEvN2pjSmhmZ19RVE1CRWNOUXpXc2VIdXJWSnFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC8yNzQ0ZDAtNDFhMC00NDM0LWI2OTAtMzI0NDU0NmY4Y2Jm
LzEvN2pjSmhmZ19RVE1CRWNOUXpXc2VIdXJWSnFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbqE8N7tZ
IbgQ8kWz0wSxeonz2k1wKr6LHqxbcgxiJLdrlHQfrVp99YHhCxr3pefVjsy1gtOi
5qYcwi24oGWVX35Bl4KMXa2HmLzDW2cQimkdWMxYds+GAfj+k21TPORR4kkYBWWx
3X1BCnIiA+gb2t/OdA6pZVQVbJdiisYlZ2EuOoH+K4J0x67L84SKPLQkCNLTRl2m
jhRB0zLhnpAL7Ff5h/5kYf5OoeMTXID/FpwGrEQ/t0F2IflRU/JcmkPZIcGupYn3
6TgOPHzWBrowPaNZmzAeub/ZB0wfKyvzwwQl6HIUVDtGDV4f9qvytstucnmgxd70
muGGLo+rpWLN9Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:50:54 2025 by rpki-client