Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: lVJGsZ6OuHfc9Bg53zBXbBWkYqRWhBy5BeMHXo5JFQs=
Subject key identifier: 4C:0D:07:2D:6A:91:7E:E7:8E:58:C9:F2:F8:D1:98:3C:3B:11:37:7B
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 0197B93417C19B2C67F6AC47984915F10A57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 12B5
Signing time: Sun 29 Jun 2025 01:01:28 +0000
Manifest this update: Sun 29 Jun 2025 01:01:28 +0000
Manifest next update: Mon 30 Jun 2025 01:01:28 +0000
Files and hashes: 1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: EENjACLWnDNR8Gkj0pZzF0xlUxZBCvFmy0MXU/AZgFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 01:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:34:17:c1:9b:2c:67:f6:ac:47:98:49:15:f1:0a:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: Jun 29 01:01:28 2025 GMT
Not After : Jun 30 01:01:28 2025 GMT
Subject: CN=4c0d072d6a917ee78e58c9f2f8d1983c3b11377b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6a:11:f0:0d:60:e3:22:14:5b:ff:0e:32:02:
b4:1d:54:f3:58:92:3f:77:77:1c:8e:7c:ea:0b:71:
37:71:6d:8f:c1:ed:e5:dc:53:25:1f:4f:c2:88:50:
97:62:91:10:b1:8b:fa:64:11:19:6f:b2:1e:f7:ad:
0d:1e:3a:55:61:0e:20:4f:1c:76:ca:26:cc:96:6c:
5b:0a:23:8d:94:f5:b6:36:6e:7d:27:3b:2b:be:fd:
db:35:6c:0c:12:13:6d:eb:33:fa:f0:9d:26:61:79:
eb:78:91:ee:c7:c9:e1:d7:0f:01:9f:a2:c2:29:11:
5e:2d:f7:ad:ff:48:26:94:b5:47:9e:fc:5d:e0:2b:
34:86:e9:25:3a:63:be:57:b3:a5:7b:08:1d:c1:fa:
88:20:bf:aa:d4:49:21:50:57:9c:0d:10:f6:ac:0b:
c7:45:71:ae:d2:08:f9:33:4d:5e:f5:87:26:99:3f:
0e:0a:41:69:02:6a:32:16:f8:33:0b:ed:7a:a5:a0:
21:ca:e6:00:73:79:70:2d:1e:00:ce:07:12:bc:ac:
ce:e9:81:b8:d1:85:ef:dd:5b:32:5a:9a:42:3c:2d:
5c:50:6e:10:8d:b2:b7:46:ad:e9:aa:69:6c:42:82:
4d:f9:ce:ff:18:89:9f:94:0c:7d:c8:75:74:79:05:
3d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:0D:07:2D:6A:91:7E:E7:8E:58:C9:F2:F8:D1:98:3C:3B:11:37:7B
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:ae:34:f7:8f:9d:08:a9:f6:1a:63:a8:27:93:c6:e5:cc:f9:
15:29:db:20:77:eb:36:60:5c:69:b0:74:0f:e3:9c:54:f6:4e:
97:fa:21:73:b6:72:7e:46:bb:e6:40:95:43:a8:aa:14:c2:91:
f5:04:ef:30:41:9e:51:e2:0a:74:40:7b:f0:45:3a:26:12:2a:
8c:3e:09:5f:53:32:cd:72:12:83:fe:c8:a0:c2:0d:af:ba:4a:
3e:a1:b6:92:48:01:ea:5c:0c:21:67:f3:af:8d:08:f8:47:02:
7c:48:7e:3d:59:bb:17:20:41:2b:82:41:72:74:40:8f:67:32:
d6:05:a6:92:8b:55:69:f4:74:21:da:83:1a:63:db:1d:07:6a:
9a:35:be:1f:a4:3f:7b:c2:96:b3:d4:a4:48:cb:fa:f4:f5:77:
f8:8d:e8:cc:07:c3:85:50:55:96:0a:37:c2:03:e2:cd:98:7f:
7d:42:b6:30:90:b2:a1:3d:3d:e4:29:4b:ab:9e:22:df:65:4b:
a1:14:2b:1e:53:cc:96:9c:7e:25:97:f8:d9:19:fb:af:c9:81:
a8:4f:d7:c4:cd:e2:7a:57:ec:d4:71:89:b9:d9:bf:2c:a2:e7:
b1:08:65:ec:f1:0b:ed:59:d7:20:4e:d6:f5:e0:84:79:f0:63:
cf:78:ed:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe5NBfBmyxn9qxHmEkV8QpXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwN2QyZGMxMGMwMmY1ZWMyNGY2OTBmOWY2NjA1NTU0ODY1
NjJlNTkwHhcNMjUwNjI5MDEwMTI4WhcNMjUwNjMwMDEwMTI4WjAzMTEwLwYDVQQD
Eyg0YzBkMDcyZDZhOTE3ZWU3OGU1OGM5ZjJmOGQxOTgzYzNiMTEzNzdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimoR8A1g4yIUW/8OMgK0HVTzWJI/
d3ccjnzqC3E3cW2Pwe3l3FMlH0/CiFCXYpEQsYv6ZBEZb7Ie960NHjpVYQ4gTxx2
yibMlmxbCiONlPW2Nm59Jzsrvv3bNWwMEhNt6zP68J0mYXnreJHux8nh1w8Bn6LC
KRFeLfet/0gmlLVHnvxd4Cs0huklOmO+V7OlewgdwfqIIL+q1EkhUFecDRD2rAvH
RXGu0gj5M01e9YcmmT8OCkFpAmoyFvgzC+16paAhyuYAc3lwLR4AzgcSvKzO6YG4
0YXv3VsyWppCPC1cUG4QjbK3Rq3pqmlsQoJN+c7/GImflAx9yHV0eQU9rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEwNBy1qkX7njljJ8vjRmDw7ETd7MB8GA1UdIwQY
MBaAFEB9LcEMAvXsJPaQ+fZgVVSGVi5ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUgwdHdRd0M5ZXdrOXBENTltQlZWSVpXTGxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9hNmZjYzktZDI1MS00MmRjLWFkMDIt
OTY3YzIyODVlYTYyLzEvUUgwdHdRd0M5ZXdrOXBENTltQlZWSVpXTGxrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC9hNmZjYzktZDI1MS00MmRjLWFkMDItOTY3YzIyODVlYTYy
LzEvUUgwdHdRd0M5ZXdrOXBENTltQlZWSVpXTGxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASq4094+d
CKn2GmOoJ5PG5cz5FSnbIHfrNmBcabB0D+OcVPZOl/ohc7Zyfka75kCVQ6iqFMKR
9QTvMEGeUeIKdEB78EU6JhIqjD4JX1MyzXISg/7IoMINr7pKPqG2kkgB6lwMIWfz
r40I+EcCfEh+PVm7FyBBK4JBcnRAj2cy1gWmkotVafR0IdqDGmPbHQdqmjW+H6Q/
e8KWs9SkSMv69PV3+I3ozAfDhVBVlgo3wgPizZh/fUK2MJCyoT095ClLq54i32VL
oRQrHlPMlpx+JZf42Rn7r8mBqE/XxM3ielfs1HGJudm/LKLnsQhl7PEL7VnXIE7W
9eCEefBjz3jtew==
-----END CERTIFICATE-----
Generated at Sun Jun 29 11:09:03 2025 by rpki-client