Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: SeaIZ33dwroyfkqSzRq5jMyC1Ba/0Vw9bDBdZBdlCEY=
Subject key identifier: 32:43:42:BD:3D:7C:DC:3C:B0:F0:99:6A:7A:83:FD:4C:A4:E5:8F:95
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 01976CCFBD21577193FE869383C8AF616065
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 158E
Signing time: Sat 14 Jun 2025 05:00:43 +0000
Manifest this update: Sat 14 Jun 2025 05:00:43 +0000
Manifest next update: Sun 15 Jun 2025 05:00:43 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: blHufuT2FbJqj5wCWq4kHw9q1/21vFAjS9/k29ANxHU=)
2: rjvci4lVGCr57ADE7C3M4Mib4mk.roa (hash: yRKI8JSBUthmJegOInkpPYFyfDjZ1t7SRsTNJhUbFjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:bd:21:57:71:93:fe:86:93:83:c8:af:61:60:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Jun 14 05:00:43 2025 GMT
Not After : Jun 15 05:00:43 2025 GMT
Subject: CN=324342bd3d7cdc3cb0f0996a7a83fd4ca4e58f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:97:fe:d3:08:db:a9:c6:d7:22:a9:32:3b:2d:
5e:ab:07:8d:d8:2d:68:5e:a6:06:7b:1a:d3:75:08:
2d:45:0a:39:e7:22:c6:79:c9:4a:a7:d2:f8:aa:e4:
41:6f:f4:62:6f:3b:c0:e9:94:b2:26:bf:4a:52:e0:
51:02:2d:a9:07:66:f0:55:d5:b1:09:9b:f3:1c:f2:
18:56:ab:04:ff:ff:82:79:aa:61:de:14:6e:5a:90:
63:11:48:e5:b7:a5:1d:50:29:75:6c:5f:71:b3:9b:
b1:eb:e7:3f:f6:a6:f6:99:92:a8:91:a5:0a:1a:b5:
04:af:d8:02:55:7d:8c:4a:2f:aa:61:d4:d2:bb:5f:
f5:76:c5:19:be:65:78:49:6e:84:15:14:f2:7f:a4:
e4:49:b8:64:18:a0:4e:8d:2a:74:4f:40:6c:47:af:
e0:b8:4e:76:ee:bd:24:3d:3c:ed:2c:09:54:be:67:
f8:c4:82:70:af:bf:2a:d4:e6:60:ea:04:a9:7d:b9:
0e:71:93:41:2f:74:1f:d5:da:12:e4:ee:b5:6e:04:
a8:d7:6e:69:00:c8:bc:ba:4c:2e:3d:e6:15:5e:75:
06:4b:5a:93:26:88:c7:d6:c2:fb:0a:01:76:f3:84:
24:7a:02:8a:a9:29:6a:cd:74:2a:76:76:f2:49:14:
a3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:43:42:BD:3D:7C:DC:3C:B0:F0:99:6A:7A:83:FD:4C:A4:E5:8F:95
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:cf:08:fe:6b:3e:ea:5e:d4:0b:04:2d:25:f9:91:17:ad:1e:
f9:e7:2e:06:27:d7:28:f6:f9:27:58:b3:4d:33:91:4e:7c:ac:
a5:6e:f3:1a:81:76:34:1d:99:3a:6f:4b:bf:e0:c1:71:76:2b:
79:94:26:92:1e:c2:c3:d5:ac:cb:7c:0a:8e:12:cf:5d:66:94:
46:07:ba:e7:20:33:03:68:a7:18:db:b6:80:de:fe:f9:32:5d:
76:8a:36:36:43:32:a2:de:1e:45:dc:cc:a8:19:09:9f:3e:4e:
8f:9b:0b:21:00:46:87:99:ea:ff:9c:0b:47:55:96:6a:1b:04:
2f:fb:da:92:59:35:4f:5b:67:c3:0b:4a:a2:41:0c:e8:b2:9b:
fa:65:fc:81:a8:28:31:02:ac:ce:52:71:58:3b:4e:72:3e:7e:
83:50:07:70:34:7f:bf:3a:7b:61:41:48:9a:e1:5e:04:5b:b0:
7c:9e:1c:26:68:20:86:67:57:a4:88:14:54:b2:28:1d:14:6e:
ae:58:27:94:e6:b9:a3:93:d8:f9:29:58:52:9c:4a:1b:ee:61:
b2:a0:e6:94:17:79:e6:13:88:b7:cf:b9:15:4e:6b:70:31:4c:
5b:18:da:62:52:98:bd:00:6e:db:ae:92:f0:75:31:d9:9b:9d:
f1:31:4a:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsz70hV3GT/oaTg8ivYWBlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMWI0Y2Q0MGJhZTQ3ZDQ4ZjUxYzljY2NjNjA3Y2NlNTdj
ZTAwZjcwHhcNMjUwNjE0MDUwMDQzWhcNMjUwNjE1MDUwMDQzWjAzMTEwLwYDVQQD
EygzMjQzNDJiZDNkN2NkYzNjYjBmMDk5NmE3YTgzZmQ0Y2E0ZTU4Zjk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5f+0wjbqcbXIqkyOy1eqweN2C1o
XqYGexrTdQgtRQo55yLGeclKp9L4quRBb/RibzvA6ZSyJr9KUuBRAi2pB2bwVdWx
CZvzHPIYVqsE//+Ceaph3hRuWpBjEUjlt6UdUCl1bF9xs5ux6+c/9qb2mZKokaUK
GrUEr9gCVX2MSi+qYdTSu1/1dsUZvmV4SW6EFRTyf6TkSbhkGKBOjSp0T0BsR6/g
uE527r0kPTztLAlUvmf4xIJwr78q1OZg6gSpfbkOcZNBL3Qf1doS5O61bgSo125p
AMi8ukwuPeYVXnUGS1qTJojH1sL7CgF284QkegKKqSlqzXQqdnbySRSjEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDJDQr09fNw8sPCZanqD/Uyk5Y+VMB8GA1UdIwQY
MBaAFEIbTNQLrkfUj1HJzMxgfM5XzgD3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEt
ODRjY2YzNDIwMjg2LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEtODRjY2YzNDIwMjg2
LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn88I/ms+
6l7UCwQtJfmRF60e+ecuBifXKPb5J1izTTORTnyspW7zGoF2NB2ZOm9Lv+DBcXYr
eZQmkh7Cw9Wsy3wKjhLPXWaURge65yAzA2inGNu2gN7++TJddoo2NkMyot4eRdzM
qBkJnz5Oj5sLIQBGh5nq/5wLR1WWahsEL/vaklk1T1tnwwtKokEM6LKb+mX8gago
MQKszlJxWDtOcj5+g1AHcDR/vzp7YUFImuFeBFuwfJ4cJmgghmdXpIgUVLIoHRRu
rlgnlOa5o5PY+SlYUpxKG+5hsqDmlBd55hOIt8+5FU5rcDFMWxjaYlKYvQBu266S
8HUx2Zud8TFK+w==
-----END CERTIFICATE-----
Generated at Sat Jun 14 10:00:40 2025 by rpki-client