Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: HA7A29lvbtuHuoR5YDY6JN5Yqc0saKHRuUBb1l7HT+c=
Subject key identifier: D7:8F:74:F0:4B:3D:68:66:09:09:E4:3C:97:0A:23:6E:30:DB:84:14
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 0197B6A094AF0A6B096D5EEB73FD996DB7A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 15BA
Signing time: Sat 28 Jun 2025 13:01:06 +0000
Manifest this update: Sat 28 Jun 2025 13:01:06 +0000
Manifest next update: Sun 29 Jun 2025 13:01:06 +0000
Files and hashes: 1: 1-QaESH-Y2QhPqcpSoi8t5RQnRzA.roa (hash: tm4k5KqgYtwGTZCVOd0pYNB6yIwBE4zoDNRsM5SfEu8=)
2: Ivy3m4Flvw_zoq8Hw6rIxjNbc60.roa (hash: r8eSfS6R14mAIVwo2SfhQBG0x09EdYm/K0sgoOKrdGE=)
3: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: mb4IRApV7na+BUgg8aAMw9Lg7ynlOQgm1emI42vIi1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:94:af:0a:6b:09:6d:5e:eb:73:fd:99:6d:b7:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Jun 28 13:01:06 2025 GMT
Not After : Jun 29 13:01:06 2025 GMT
Subject: CN=d78f74f04b3d68660909e43c970a236e30db8414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b9:a1:e9:a7:7b:dc:da:92:c8:4c:5c:74:67:
2b:ac:7a:31:82:45:67:37:cf:fe:ad:0a:5e:23:00:
bd:fd:78:01:2a:41:a5:9b:98:34:07:af:bc:8e:9c:
bc:f7:cf:dc:b3:b4:33:2a:ea:d7:35:cb:fa:44:e5:
42:94:ef:6c:82:db:03:d0:52:9f:c5:69:15:98:a2:
30:fc:88:27:35:9c:b2:f6:b0:c9:f9:da:09:89:2e:
e8:fb:df:75:9d:34:d1:f6:d3:77:38:94:b3:b2:fc:
fb:77:3b:c4:14:5b:2c:87:7d:14:67:ec:70:77:1a:
98:55:28:f8:ff:0e:d5:69:5a:4b:8b:52:5a:3b:51:
9b:3a:a5:c3:7c:a8:af:11:3e:b9:84:64:04:50:18:
1c:e7:5a:56:bf:62:20:03:a0:13:11:2c:18:b3:be:
56:7c:6b:d0:b3:b2:cf:b9:44:b5:6f:12:f7:c7:1a:
bb:a0:b1:ce:82:9c:89:90:02:73:c0:db:8e:56:25:
62:0b:cb:89:a9:b7:50:a0:69:4e:ae:1e:79:43:bf:
6b:38:6f:d2:19:b7:79:10:d4:d2:03:06:c0:d2:31:
69:5f:82:fd:2f:f0:e7:3c:8e:d3:2a:bd:8f:ef:18:
96:d4:48:da:93:ac:3a:a7:b1:5e:17:2c:23:8f:de:
49:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8F:74:F0:4B:3D:68:66:09:09:E4:3C:97:0A:23:6E:30:DB:84:14
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:51:a7:67:d0:45:6e:3b:d3:d7:46:df:44:90:f3:6f:72:17:
3a:ff:c8:3d:2e:b0:22:35:72:da:e6:e0:d6:a3:f0:e0:df:1f:
b0:f7:9c:e2:6c:d3:82:c8:02:d8:f5:05:3e:a0:1d:ac:47:d5:
f0:a4:db:fa:d8:2a:69:4a:20:f1:e0:24:9f:29:80:7d:55:08:
b3:6a:75:89:fb:58:e9:8d:09:74:33:c0:e2:2d:aa:6d:87:00:
ee:7f:42:ff:67:ce:e4:fe:9e:76:9a:e2:1d:f8:14:45:09:89:
da:ec:e3:78:95:82:52:60:b7:0c:72:ee:49:51:b7:73:19:c3:
b3:cb:ff:4e:35:b9:cf:60:0c:58:29:ac:05:6d:5a:00:f7:43:
a0:73:58:2b:32:f8:21:f5:1a:d1:b9:45:a2:c0:b9:c3:c4:71:
bd:95:4e:47:3c:8c:36:ab:68:cf:30:6a:a1:b6:58:1c:1d:f7:
f6:91:ef:e5:12:ec:d7:58:1c:03:ac:41:67:b2:bd:f4:64:ce:
ab:4a:78:81:d3:82:da:53:38:94:06:b8:e3:a9:90:68:74:eb:
f9:5b:c7:ee:87:39:53:52:00:80:d3:68:8f:3c:04:34:a8:b5:
c6:4f:db:55:c7:43:cb:90:a2:17:f5:a0:27:8b:ab:1a:94:ee:
c1:33:44:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oJSvCmsJbV7rc/2ZbbejMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMWJhZTk4OTg5OGQ5NDAyNDI0YWFkYWZiYjQ3YzNhNmQ0
YzI1YjMwHhcNMjUwNjI4MTMwMTA2WhcNMjUwNjI5MTMwMTA2WjAzMTEwLwYDVQQD
EyhkNzhmNzRmMDRiM2Q2ODY2MDkwOWU0M2M5NzBhMjM2ZTMwZGI4NDE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbmh6ad73NqSyExcdGcrrHoxgkVn
N8/+rQpeIwC9/XgBKkGlm5g0B6+8jpy898/cs7QzKurXNcv6ROVClO9sgtsD0FKf
xWkVmKIw/IgnNZyy9rDJ+doJiS7o+991nTTR9tN3OJSzsvz7dzvEFFssh30UZ+xw
dxqYVSj4/w7VaVpLi1JaO1GbOqXDfKivET65hGQEUBgc51pWv2IgA6ATESwYs75W
fGvQs7LPuUS1bxL3xxq7oLHOgpyJkAJzwNuOViViC8uJqbdQoGlOrh55Q79rOG/S
Gbd5ENTSAwbA0jFpX4L9L/DnPI7TKr2P7xiW1Ejak6w6p7FeFywjj95J/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNePdPBLPWhmCQnkPJcKI24w24QUMB8GA1UdIwQY
MBaAFEIbrpiYmNlAJCSq2vu0fDptTCWzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUt
NjdlZmNiM2Q4NmZlLzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUtNjdlZmNiM2Q4NmZl
LzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV1GnZ9BF
bjvT10bfRJDzb3IXOv/IPS6wIjVy2ubg1qPw4N8fsPec4mzTgsgC2PUFPqAdrEfV
8KTb+tgqaUog8eAknymAfVUIs2p1iftY6Y0JdDPA4i2qbYcA7n9C/2fO5P6edpri
HfgURQmJ2uzjeJWCUmC3DHLuSVG3cxnDs8v/TjW5z2AMWCmsBW1aAPdDoHNYKzL4
IfUa0blFosC5w8RxvZVORzyMNqtozzBqobZYHB339pHv5RLs11gcA6xBZ7K99GTO
q0p4gdOC2lM4lAa446mQaHTr+VvH7oc5U1IAgNNojzwENKi1xk/bVcdDy5CiF/Wg
J4urGpTuwTNESQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:35:55 2025 by rpki-client