Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json)
Hash identifier: ELN8SUJXsBSMnlJz8ner23/nhr60stzkJrX1CgIKSHw=
Subject key identifier: B0:E1:33:99:2B:B8:3A:F8:61:40:4A:B0:B0:14:49:9A:C5:AA:15:2E
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 0197B6D7A009753A7D9CDBDE7C3727D34FAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
Manifest number: 0DA4
Signing time: Sat 28 Jun 2025 14:01:13 +0000
Manifest this update: Sat 28 Jun 2025 14:01:13 +0000
Manifest next update: Sun 29 Jun 2025 14:01:13 +0000
Files and hashes: 1: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: ARycOGLMeqCC2TNHescKiKlncjSsNP8snutP6wZvD8M=)
2: Tt9cDnLqp2SOeeoElhH21A1JSmo.roa (hash: g7FEq0smlg0TkkjLfygzTEzTD8KkWT+7GvQHUxPqdJo=)
3: pSYXiKXGXABhmANIG0Y2vhGLRUA.roa (hash: kjXcWabBcy+Nz9B+eKiIbdHIvrnXu/XwD/9ZftdegXw=)
4: uJ1wgWjtfF_PUvxzUj8noSaLQx0.roa (hash: 5K3mYspcTrH8J1dlAJJG2SBHWuIALi8AQG16SYzuq8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:a0:09:75:3a:7d:9c:db:de:7c:37:27:d3:4f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Jun 28 14:01:13 2025 GMT
Not After : Jun 29 14:01:13 2025 GMT
Subject: CN=b0e133992bb83af861404ab0b014499ac5aa152e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9c:4f:30:64:92:49:ad:9e:58:d1:fb:5c:a8:
4a:a5:39:0a:01:92:a2:3b:25:2b:b7:df:1e:31:7f:
94:dd:9e:05:13:aa:46:59:32:63:df:3c:4d:69:3c:
d9:f7:73:ad:67:f2:95:8d:d5:53:94:1d:28:92:d6:
60:c4:24:0d:0f:65:be:c1:3e:56:92:49:08:b9:68:
c0:78:63:fa:93:d5:39:3e:d6:41:76:46:6a:5c:78:
75:b2:a2:ef:cd:50:76:fd:4e:8a:d0:6e:2e:58:e0:
06:0e:ba:98:a3:0c:65:74:e4:c0:36:68:13:06:5c:
e9:37:42:cb:fc:e3:08:f5:59:02:c7:c7:8c:12:db:
f3:a7:f5:ce:96:5c:83:51:de:00:81:47:ee:a1:c4:
0d:e7:92:c1:1c:7d:d9:14:76:65:c2:a2:33:52:c9:
b2:b1:c0:87:8c:28:b7:11:79:00:72:56:17:c4:7c:
9d:b4:7a:ef:82:60:d1:bc:c8:88:34:a7:bc:e6:8c:
d9:71:d2:1e:e2:2c:c5:7c:22:6a:f9:73:f6:21:16:
83:36:0f:8a:d9:fb:f7:3d:bb:dd:89:f2:10:c2:e1:
56:31:be:e9:9e:c1:c0:58:a2:d2:70:f0:3b:e7:53:
2d:6b:f6:12:32:a8:1a:5e:23:ad:13:2b:f7:ae:ee:
04:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E1:33:99:2B:B8:3A:F8:61:40:4A:B0:B0:14:49:9A:C5:AA:15:2E
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:d8:88:f6:1c:f6:6e:72:18:6f:b0:a2:a0:ee:86:60:e5:ae:
c9:3a:15:ab:d0:a3:bf:9f:7e:c3:66:47:9d:36:8a:e7:fe:36:
2f:af:14:f1:ed:8f:af:3b:82:22:69:1b:ca:ad:93:b5:09:1e:
7e:06:01:00:3e:6c:d4:3c:b7:e4:a8:dc:de:49:89:58:5c:34:
85:fe:8a:0b:56:c2:3c:92:95:e8:ca:d5:b0:07:6e:b2:a7:dd:
dd:4f:7e:65:63:d6:06:a3:32:0b:9e:79:ac:c6:4f:c0:51:c6:
a5:9e:5c:e7:69:03:37:5a:da:24:41:c9:cd:c8:f5:08:fb:75:
e6:55:b5:f0:d5:20:9e:6f:bf:47:d5:f8:9c:8e:bd:1c:7c:30:
29:0b:01:af:3a:c6:0a:3f:5e:71:69:f6:bf:f8:38:49:c0:a6:
a7:b7:8b:4d:76:b9:29:1d:38:24:95:73:6c:b2:29:95:cb:fc:
ba:ef:67:59:9b:bb:53:be:d6:80:42:d7:93:05:06:0d:23:4e:
35:18:37:b0:64:13:ca:19:d3:f4:1e:06:64:f5:b7:00:bf:61:
7c:c9:ce:09:63:0c:cf:d7:d5:d0:12:a4:d3:69:9c:f1:67:94:
fc:68:c2:28:50:d9:de:19:5b:11:59:32:34:c4:20:ac:13:68:
f6:96:f3:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe216AJdTp9nNvefDcn00+rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzNTQxNmIyMjgyYjQ1MzNjMzUwOWMxOGU5NTdjZTBjODM2
YmM4MzcwHhcNMjUwNjI4MTQwMTEzWhcNMjUwNjI5MTQwMTEzWjAzMTEwLwYDVQQD
EyhiMGUxMzM5OTJiYjgzYWY4NjE0MDRhYjBiMDE0NDk5YWM1YWExNTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpxPMGSSSa2eWNH7XKhKpTkKAZKi
OyUrt98eMX+U3Z4FE6pGWTJj3zxNaTzZ93OtZ/KVjdVTlB0oktZgxCQND2W+wT5W
kkkIuWjAeGP6k9U5PtZBdkZqXHh1sqLvzVB2/U6K0G4uWOAGDrqYowxldOTANmgT
BlzpN0LL/OMI9VkCx8eMEtvzp/XOllyDUd4AgUfuocQN55LBHH3ZFHZlwqIzUsmy
scCHjCi3EXkAclYXxHydtHrvgmDRvMiINKe85ozZcdIe4izFfCJq+XP2IRaDNg+K
2fv3PbvdifIQwuFWMb7pnsHAWKLScPA751Mta/YSMqgaXiOtEyv3ru4EkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLDhM5kruDr4YUBKsLAUSZrFqhUuMB8GA1UdIwQY
MBaAFENUFrIoK0Uzw1CcGOlXzgyDa8g3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTFRV3NpZ3JSVFBEVUp3WTZWZk9ESU5yeURjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy82M2ZmODEtNjQ2MC00YzA1LTg1MmQt
MjYyZWIzOWJiZTc2LzEvUTFRV3NpZ3JSVFBEVUp3WTZWZk9ESU5yeURjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy82M2ZmODEtNjQ2MC00YzA1LTg1MmQtMjYyZWIzOWJiZTc2
LzEvUTFRV3NpZ3JSVFBEVUp3WTZWZk9ESU5yeURjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZtiI9hz2
bnIYb7CioO6GYOWuyToVq9Cjv59+w2ZHnTaK5/42L68U8e2PrzuCImkbyq2TtQke
fgYBAD5s1Dy35Kjc3kmJWFw0hf6KC1bCPJKV6MrVsAdusqfd3U9+ZWPWBqMyC555
rMZPwFHGpZ5c52kDN1raJEHJzcj1CPt15lW18NUgnm+/R9X4nI69HHwwKQsBrzrG
Cj9ecWn2v/g4ScCmp7eLTXa5KR04JJVzbLIplcv8uu9nWZu7U77WgELXkwUGDSNO
NRg3sGQTyhnT9B4GZPW3AL9hfMnOCWMMz9fV0BKk02mc8WeU/GjCKFDZ3hlbEVky
NMQgrBNo9pbzzA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:27:50 2025 by rpki-client