Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
File: Qkq4x890A7ViChuBPmrR2g2stE0.mft (raw, json)
Hash identifier: KB8Nhry69w8dQTwRNUvZ6quh4L6Y7RK/6D8y7IRfFPk=
Subject key identifier: F4:E0:38:C3:2B:E8:10:54:03:76:A6:AD:DB:8B:9E:F3:C9:A4:F8:52
Authority key identifier: 42:4A:B8:C7:CF:74:03:B5:62:0A:1B:81:3E:6A:D1:DA:0D:AC:B4:4D
Certificate issuer: /CN=424ab8c7cf7403b5620a1b813e6ad1da0dacb44d
Certificate serial: 01976929A3F6A33043756A9F7006C286ADC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
Manifest number: 158F
Signing time: Fri 13 Jun 2025 12:00:25 +0000
Manifest this update: Fri 13 Jun 2025 12:00:25 +0000
Manifest next update: Sat 14 Jun 2025 12:00:25 +0000
Files and hashes: 1: MCPNj8vuGzZknoWdqGIIivLkJGU.roa (hash: 4hhwQet2SGHC4RmJ2ByvcZIanR2/yV/AqfOhLRjbUPM=)
2: Qkq4x890A7ViChuBPmrR2g2stE0.crl (hash: 7tWkRwpLPMvjz2T218GC+TIzQxS3hyYtEzuGKTIrzAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:a3:f6:a3:30:43:75:6a:9f:70:06:c2:86:ad:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424ab8c7cf7403b5620a1b813e6ad1da0dacb44d
Validity
Not Before: Jun 13 12:00:25 2025 GMT
Not After : Jun 14 12:00:25 2025 GMT
Subject: CN=f4e038c32be810540376a6addb8b9ef3c9a4f852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f8:aa:a2:b2:8f:e6:55:da:66:4e:fe:5c:58:
c2:0d:76:d7:95:d5:a8:ad:40:9b:f0:12:18:b2:31:
20:38:3b:1a:42:32:de:20:14:45:b6:31:13:64:71:
c3:86:6b:ff:49:73:11:6a:e0:f6:81:6a:96:51:87:
0d:7d:2b:eb:4f:7d:82:09:cd:65:1b:39:1a:49:85:
ae:81:e9:d8:83:97:de:8c:c5:f9:2b:38:f9:59:ed:
d8:c0:f8:64:8e:d9:c4:06:81:18:a2:3a:6a:77:37:
49:91:10:68:6d:bd:c2:8b:9e:a6:ff:85:74:85:42:
67:cc:54:0a:eb:11:00:8e:40:3a:13:90:31:09:19:
ef:aa:96:f9:7d:0d:48:70:48:dc:63:36:27:59:fe:
fd:80:78:98:43:b8:d5:0c:7c:ad:9e:ec:59:df:3d:
97:cf:e4:b0:65:55:b0:fa:8d:f3:cd:d9:55:be:83:
f6:cf:cd:94:73:25:4e:0f:28:b9:12:ce:00:bc:88:
99:23:7a:30:da:16:49:f0:7c:a7:13:7e:41:cb:7f:
ef:ae:c4:69:0c:fe:32:74:bd:42:20:b5:1f:9a:b9:
b8:cb:3f:48:75:af:7a:78:96:ed:84:bd:ad:87:c1:
a5:11:3c:9d:78:35:4a:9c:69:73:6d:7b:46:09:dc:
6b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E0:38:C3:2B:E8:10:54:03:76:A6:AD:DB:8B:9E:F3:C9:A4:F8:52
X509v3 Authority Key Identifier:
keyid:42:4A:B8:C7:CF:74:03:B5:62:0A:1B:81:3E:6A:D1:DA:0D:AC:B4:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:e1:fd:b1:60:7c:9a:83:19:06:c8:bd:fa:09:01:1a:85:42:
95:5d:19:b8:42:26:9b:bb:7c:e5:1f:43:ea:a0:de:ce:03:f9:
34:46:6a:8b:84:d3:23:c4:ac:1c:b8:8b:de:43:32:ba:da:3e:
a6:5c:5e:fa:7f:98:14:3a:fd:8a:ff:74:50:88:21:72:ca:b6:
e3:5b:8f:fc:de:a9:96:55:e1:ed:75:e2:61:11:75:ed:81:84:
25:36:01:6a:6c:99:22:cd:97:75:a5:c3:cb:3f:66:c3:87:4f:
1a:48:5d:55:cd:f4:50:83:01:57:c1:f0:8a:86:08:b3:8b:8f:
3d:5d:3d:fa:52:c1:a0:d4:c0:65:5e:d4:ab:06:8b:6a:e8:ff:
60:29:d8:bc:79:12:5a:70:ac:49:52:0d:93:a2:93:b2:5c:32:
55:3d:0c:55:c2:72:7c:6b:f5:ee:5d:22:ac:98:58:08:7f:9d:
04:d0:85:52:51:8b:7e:35:60:9d:96:c7:09:62:ef:74:47:be:
05:03:2e:39:90:2b:5f:b6:5d:ea:c0:ea:c3:0f:d5:12:35:37:
12:24:5b:ae:bd:39:9b:78:c9:4b:6e:15:77:84:3d:75:12:b0:
1d:28:e3:fa:32:b6:87:54:78:ef:04:b7:ea:de:df:79:ba:ff:
fd:1d:c6:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpKaP2ozBDdWqfcAbChq3IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyNGFiOGM3Y2Y3NDAzYjU2MjBhMWI4MTNlNmFkMWRhMGRh
Y2I0NGQwHhcNMjUwNjEzMTIwMDI1WhcNMjUwNjE0MTIwMDI1WjAzMTEwLwYDVQQD
EyhmNGUwMzhjMzJiZTgxMDU0MDM3NmE2YWRkYjhiOWVmM2M5YTRmODUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2fiqorKP5lXaZk7+XFjCDXbXldWo
rUCb8BIYsjEgODsaQjLeIBRFtjETZHHDhmv/SXMRauD2gWqWUYcNfSvrT32CCc1l
GzkaSYWugenYg5fejMX5Kzj5We3YwPhkjtnEBoEYojpqdzdJkRBobb3Ci56m/4V0
hUJnzFQK6xEAjkA6E5AxCRnvqpb5fQ1IcEjcYzYnWf79gHiYQ7jVDHytnuxZ3z2X
z+SwZVWw+o3zzdlVvoP2z82UcyVODyi5Es4AvIiZI3ow2hZJ8HynE35By3/vrsRp
DP4ydL1CILUfmrm4yz9Ida96eJbthL2th8GlETydeDVKnGlzbXtGCdxrsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPTgOMMr6BBUA3amrduLnvPJpPhSMB8GA1UdIwQY
MBaAFEJKuMfPdAO1YgobgT5q0doNrLRNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWtxNHg4OTBBN1ZpQ2h1QlBtclIyZzJzdEUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8zYjMyMTUtNTcyMS00MzQ1LTg0MWIt
MmFkOTMwOGYxZjZjLzEvUWtxNHg4OTBBN1ZpQ2h1QlBtclIyZzJzdEUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8zYjMyMTUtNTcyMS00MzQ1LTg0MWItMmFkOTMwOGYxZjZj
LzEvUWtxNHg4OTBBN1ZpQ2h1QlBtclIyZzJzdEUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOOH9sWB8
moMZBsi9+gkBGoVClV0ZuEImm7t85R9D6qDezgP5NEZqi4TTI8SsHLiL3kMyuto+
plxe+n+YFDr9iv90UIghcsq241uP/N6pllXh7XXiYRF17YGEJTYBamyZIs2XdaXD
yz9mw4dPGkhdVc30UIMBV8HwioYIs4uPPV09+lLBoNTAZV7UqwaLauj/YCnYvHkS
WnCsSVINk6KTslwyVT0MVcJyfGv17l0irJhYCH+dBNCFUlGLfjVgnZbHCWLvdEe+
BQMuOZArX7Zd6sDqww/VEjU3EiRbrr05m3jJS24Vd4Q9dRKwHSjj+jK2h1R47wS3
6t7febr//R3Ggw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:11:33 2025 by rpki-client