Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
File: q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft (raw, json)
Hash identifier: sVDGcGFeAIKQC+tQc/0QVJdrPWxlSr0IuHE3wsNdwP4=
Subject key identifier: 5E:D3:07:6F:22:A8:52:B9:A1:E1:EC:00:B0:A1:FB:8B:4D:C3:46:7B
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 0197B70EE3285AB0CCCF0E5961BF8C60D79F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
Manifest number: 0BA8
Signing time: Sat 28 Jun 2025 15:01:35 +0000
Manifest this update: Sat 28 Jun 2025 15:01:35 +0000
Manifest next update: Sun 29 Jun 2025 15:01:35 +0000
Files and hashes: 1: 0SSsSk3JYtZfVKoUdIXep-skUls.roa (hash: lo1rRlcKmSiP/o5fsPXMsNzyze1q/0lfZDjTXaH15HI=)
2: q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl (hash: hQMg6mc3huN+Ts+sGWu3O4saBUtHAzBBpj6q+rvfcws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:e3:28:5a:b0:cc:cf:0e:59:61:bf:8c:60:d7:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Jun 28 15:01:35 2025 GMT
Not After : Jun 29 15:01:35 2025 GMT
Subject: CN=5ed3076f22a852b9a1e1ec00b0a1fb8b4dc3467b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:89:3e:68:dc:2b:8c:3c:b0:3f:18:4c:39:80:
d8:c5:b3:90:ac:fb:82:16:f1:b3:f2:a7:1b:65:df:
00:f3:c9:30:c7:34:9e:8f:26:95:4b:be:b5:cd:1e:
43:2c:dd:4f:57:8b:62:8e:d0:d6:78:d0:4c:83:36:
50:d4:1f:2c:d4:04:cd:39:dd:0f:d3:fe:62:eb:14:
ce:c6:62:2e:1c:d7:d7:18:5e:f2:b2:90:95:9d:c1:
94:00:e0:36:d4:fe:f7:07:7b:0a:9e:ee:4b:86:35:
96:70:e7:d0:19:5f:d6:1f:3b:02:82:4e:c4:14:78:
62:de:98:bb:4e:e3:b8:f6:b7:8a:30:d2:fc:da:e0:
23:de:b0:cc:e7:df:c3:d3:6a:da:41:0b:78:9c:17:
35:0d:6f:f1:ea:cb:8e:b0:3f:32:b1:bc:ec:50:da:
c4:4c:4a:2e:64:29:5e:6d:ad:7f:5d:81:51:5b:a9:
a6:52:63:09:a7:13:b3:00:0c:be:c5:fa:7a:db:ac:
cc:fb:79:bf:38:46:4a:60:17:1d:ba:4b:e7:c3:b4:
58:3e:cd:72:dc:02:de:88:a5:09:5a:88:c9:b3:14:
d1:31:d3:54:76:80:12:3b:ca:39:ba:c3:10:18:99:
37:d4:f5:17:cf:00:27:73:ef:47:9d:46:db:8c:27:
56:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D3:07:6F:22:A8:52:B9:A1:E1:EC:00:B0:A1:FB:8B:4D:C3:46:7B
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:c2:5f:01:9e:f9:bd:84:31:87:f2:19:04:c1:0c:01:64:19:
d0:00:ff:a8:df:6f:07:e1:70:63:3a:84:ff:17:2b:41:66:02:
8b:bf:a9:bc:79:a0:1d:ea:09:80:6b:24:e4:39:73:bd:b9:a6:
63:6b:1c:2f:91:62:eb:43:00:2a:5f:fc:16:d1:be:6f:7a:a9:
63:2c:44:41:fd:1d:cf:e9:47:83:ae:7f:79:06:66:b8:2d:15:
86:c1:f5:88:b5:cd:25:47:b0:28:f3:7c:7a:60:8b:5a:d1:65:
6b:62:5f:52:57:cb:4e:e6:1b:98:74:1d:56:f8:c9:7f:7c:97:
5a:46:ec:43:52:32:93:24:b3:f5:fd:79:0b:ef:83:6d:fa:03:
33:73:6f:73:27:9a:2f:20:03:fc:cd:79:c4:4e:4f:a8:af:33:
96:b8:fa:77:4a:dd:39:ae:90:bd:2c:31:1c:78:3d:b5:0c:e0:
34:0e:2e:f7:c8:be:07:2b:a4:61:88:42:fa:2d:e0:b8:cd:39:
6c:04:96:3d:8e:28:a7:9e:46:5a:21:ff:45:ce:61:62:3e:8e:
87:11:8e:82:f2:ae:91:00:1f:d8:00:5a:29:11:de:50:54:b4:
17:9c:99:cb:3d:46:24:55:7b:61:16:c4:83:be:ee:12:5f:df:
a9:04:cc:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DuMoWrDMzw5ZYb+MYNefMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiODUyMGVjODNlMzBlYjc5MzhiODAwMmY0NzBmMGQxYzUw
NWM0NTEwHhcNMjUwNjI4MTUwMTM1WhcNMjUwNjI5MTUwMTM1WjAzMTEwLwYDVQQD
Eyg1ZWQzMDc2ZjIyYTg1MmI5YTFlMWVjMDBiMGExZmI4YjRkYzM0NjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ok+aNwrjDywPxhMOYDYxbOQrPuC
FvGz8qcbZd8A88kwxzSejyaVS761zR5DLN1PV4tijtDWeNBMgzZQ1B8s1ATNOd0P
0/5i6xTOxmIuHNfXGF7yspCVncGUAOA21P73B3sKnu5LhjWWcOfQGV/WHzsCgk7E
FHhi3pi7TuO49reKMNL82uAj3rDM59/D02raQQt4nBc1DW/x6suOsD8ysbzsUNrE
TEouZCleba1/XYFRW6mmUmMJpxOzAAy+xfp626zM+3m/OEZKYBcdukvnw7RYPs1y
3ALeiKUJWojJsxTRMdNUdoASO8o5usMQGJk31PUXzwAnc+9HnUbbjCdW+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF7TB28iqFK5oeHsALCh+4tNw0Z7MB8GA1UdIwQY
MBaAFKuFIOyD4w63k4uAAvRw8NHFBcRRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTRVZzdJUGpEcmVUaTRBQzlIRHcwY1VGeEZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9mYWVhNjUtOTBiNC00NmRiLWJlZWYt
ODRiNDczYjllYmNkLzEvcTRVZzdJUGpEcmVUaTRBQzlIRHcwY1VGeEZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9mYWVhNjUtOTBiNC00NmRiLWJlZWYtODRiNDczYjllYmNk
LzEvcTRVZzdJUGpEcmVUaTRBQzlIRHcwY1VGeEZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATsJfAZ75
vYQxh/IZBMEMAWQZ0AD/qN9vB+FwYzqE/xcrQWYCi7+pvHmgHeoJgGsk5Dlzvbmm
Y2scL5Fi60MAKl/8FtG+b3qpYyxEQf0dz+lHg65/eQZmuC0VhsH1iLXNJUewKPN8
emCLWtFla2JfUlfLTuYbmHQdVvjJf3yXWkbsQ1IykySz9f15C++DbfoDM3Nvcyea
LyAD/M15xE5PqK8zlrj6d0rdOa6QvSwxHHg9tQzgNA4u98i+ByukYYhC+i3guM05
bASWPY4op55GWiH/Rc5hYj6OhxGOgvKukQAf2ABaKRHeUFS0F5yZyz1GJFV7YRbE
g77uEl/fqQTMfA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:04:26 2025 by rpki-client