Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
File: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft (raw, json)
Hash identifier: p3dammE3glHbbqCDKXEaPe629So2NqDhhYdksQL9/Ws=
Subject key identifier: 35:7E:12:81:2C:10:29:F8:3E:48:76:76:C2:C8:8A:A5:8F:3C:DD:D7
Authority key identifier: 43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
Certificate issuer: /CN=430e0949df5930f6b79efcbd9cba174ca213f569
Certificate serial: 019768F2DE42E898B4D409FBEA3919A303F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
Manifest number: 1520
Signing time: Fri 13 Jun 2025 11:00:36 +0000
Manifest this update: Fri 13 Jun 2025 11:00:36 +0000
Manifest next update: Sat 14 Jun 2025 11:00:36 +0000
Files and hashes: 1: B2zXHYwEq1mSDhRzWM21ZLKQRZ0.roa (hash: P+0tfOZ2RaLt/nUPuFjZ/CAtJcAtybwXEXHcIsSIUm4=)
2: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl (hash: mAUj1qYKkwsTKJdYC5iGmNTReiiwDWMx7yIR/mrCvtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:de:42:e8:98:b4:d4:09:fb:ea:39:19:a3:03:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430e0949df5930f6b79efcbd9cba174ca213f569
Validity
Not Before: Jun 13 11:00:36 2025 GMT
Not After : Jun 14 11:00:36 2025 GMT
Subject: CN=357e12812c1029f83e487676c2c88aa58f3cddd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d3:91:18:e6:62:18:df:f4:d2:34:b9:b1:6a:
4e:de:e4:ef:a9:2b:21:d3:3f:52:e2:cd:aa:97:88:
62:57:5f:13:14:6c:f2:06:70:e0:e4:96:98:46:09:
c2:fd:6d:d4:26:0e:58:91:94:a1:9b:f4:ba:c9:ff:
e7:a6:23:0a:e6:36:3c:60:d9:22:04:60:c3:33:1f:
90:ba:1b:14:dd:2a:8d:92:e1:31:f3:ad:79:37:78:
b0:45:75:09:26:f0:b1:12:2b:b2:5e:ce:04:c9:fa:
e1:f7:a3:75:87:37:2b:5e:1a:83:f3:53:1c:36:9a:
25:5d:82:b9:49:b0:8c:1c:a5:04:d9:0f:c7:b4:91:
0c:73:d1:32:8e:8a:44:06:0d:58:26:e1:01:4d:10:
08:fa:10:11:e9:76:06:05:d8:db:f5:b5:26:d5:6d:
c6:2d:b8:a0:07:5e:00:1b:f8:35:da:a7:2d:0d:bf:
d2:a8:4e:f2:7b:ac:41:18:a6:ed:08:14:33:9a:72:
56:52:63:1f:17:06:df:fa:9a:c1:cc:a4:b4:e6:ab:
11:b4:3e:89:82:94:d4:b0:37:53:2f:80:8e:6e:90:
d3:e9:a2:be:37:cb:08:44:02:1e:0c:f8:a3:aa:a9:
cd:04:f6:84:e4:62:3c:e6:5c:60:59:9c:62:1c:f4:
13:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:7E:12:81:2C:10:29:F8:3E:48:76:76:C2:C8:8A:A5:8F:3C:DD:D7
X509v3 Authority Key Identifier:
keyid:43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:a5:8c:8e:c9:5d:ca:0c:0f:48:ad:11:82:00:ba:a1:b5:24:
81:19:49:0a:2c:c7:e7:03:06:d9:eb:8a:3d:b9:74:97:bc:f2:
d8:e1:69:98:52:66:a9:7f:c7:a8:14:d4:91:bb:01:1c:aa:66:
10:0b:f3:29:e2:7f:ed:d6:f9:f1:30:97:de:63:45:ea:cc:00:
f4:4a:43:95:c6:b6:ad:3b:8f:09:2c:57:59:e8:e8:f1:4c:c8:
83:05:93:4b:9e:fa:4a:1f:f5:cd:4a:8a:51:2e:50:01:84:56:
af:33:b0:a5:d2:88:87:a8:7c:07:29:7e:99:36:7c:89:14:dc:
86:cc:5b:c9:19:85:23:e0:74:04:47:8f:70:19:e0:0f:f6:63:
dd:48:68:87:85:c6:13:e0:67:64:6b:ac:87:a2:fe:e8:22:1a:
10:18:a2:18:fe:6b:fc:2a:e4:52:a0:b0:f0:3c:00:f1:11:f2:
4b:59:e5:86:74:56:dc:b0:68:56:c9:f6:da:f8:b4:35:54:26:
ff:a7:0b:92:fb:10:81:69:69:91:9c:34:3e:64:41:8a:e0:58:
c8:9f:87:eb:a5:1b:5d:75:38:4a:5d:d3:c4:fc:52:ec:30:0c:
c1:64:3a:f3:aa:97:34:fb:e7:9f:54:b5:27:9a:76:1b:13:5e:
67:46:e9:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdo8t5C6Ji01An76jkZowP2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMGUwOTQ5ZGY1OTMwZjZiNzllZmNiZDljYmExNzRjYTIx
M2Y1NjkwHhcNMjUwNjEzMTEwMDM2WhcNMjUwNjE0MTEwMDM2WjAzMTEwLwYDVQQD
EygzNTdlMTI4MTJjMTAyOWY4M2U0ODc2NzZjMmM4OGFhNThmM2NkZGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dORGOZiGN/00jS5sWpO3uTvqSsh
0z9S4s2ql4hiV18TFGzyBnDg5JaYRgnC/W3UJg5YkZShm/S6yf/npiMK5jY8YNki
BGDDMx+QuhsU3SqNkuEx8615N3iwRXUJJvCxEiuyXs4Eyfrh96N1hzcrXhqD81Mc
NpolXYK5SbCMHKUE2Q/HtJEMc9EyjopEBg1YJuEBTRAI+hAR6XYGBdjb9bUm1W3G
LbigB14AG/g12qctDb/SqE7ye6xBGKbtCBQzmnJWUmMfFwbf+prBzKS05qsRtD6J
gpTUsDdTL4CObpDT6aK+N8sIRAIeDPijqqnNBPaE5GI85lxgWZxiHPQTUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDV+EoEsECn4Pkh2dsLIiqWPPN3XMB8GA1UdIwQY
MBaAFEMOCUnfWTD2t578vZy6F0yiE/VpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXc0SlNkOVpNUGEzbnZ5OW5Mb1hUS0lUOVdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC81MmE5N2YtMmFkNi00MDU5LTg2NDYt
MDY4NjE2MGE3ZTY4LzEvUXc0SlNkOVpNUGEzbnZ5OW5Mb1hUS0lUOVdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC81MmE5N2YtMmFkNi00MDU5LTg2NDYtMDY4NjE2MGE3ZTY4
LzEvUXc0SlNkOVpNUGEzbnZ5OW5Mb1hUS0lUOVdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASqWMjsld
ygwPSK0RggC6obUkgRlJCizH5wMG2euKPbl0l7zy2OFpmFJmqX/HqBTUkbsBHKpm
EAvzKeJ/7db58TCX3mNF6swA9EpDlca2rTuPCSxXWejo8UzIgwWTS576Sh/1zUqK
US5QAYRWrzOwpdKIh6h8Byl+mTZ8iRTchsxbyRmFI+B0BEePcBngD/Zj3Uhoh4XG
E+BnZGush6L+6CIaEBiiGP5r/CrkUqCw8DwA8RHyS1nlhnRW3LBoVsn22vi0NVQm
/6cLkvsQgWlpkZw0PmRBiuBYyJ+H66UbXXU4Sl3TxPxS7DAMwWQ686qXNPvnn1S1
J5p2GxNeZ0bpDw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:18:50 2025 by rpki-client