Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
File: QIVi4riWGyLinHYtbJkDMbo2Zm8.mft (raw, json)
Hash identifier: YlRXp6BfNUtS/Z87MXgjpFVYuXpGSZQVpU9U+X3jSEA=
Subject key identifier: 59:2B:F5:A3:41:DF:DA:20:F7:24:1B:FE:50:4F:CE:B4:49:D1:75:E0
Authority key identifier: 40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
Certificate issuer: /CN=408562e2b8961b22e29c762d6c990331ba36666f
Certificate serial: 01976F62FB290F832EB5D02E9D85FEBF04D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
Manifest number: 1249
Signing time: Sat 14 Jun 2025 17:00:47 +0000
Manifest this update: Sat 14 Jun 2025 17:00:47 +0000
Manifest next update: Sun 15 Jun 2025 17:00:47 +0000
Files and hashes: 1: QIVi4riWGyLinHYtbJkDMbo2Zm8.crl (hash: Fp2agfBeFc4OjXAre5A/LvoL1WYkjMNsZETV9tDFZQs=)
2: TH3iTyQHdiPtwrxen-ik0aBRXKI.roa (hash: 9e3J8Nl+Dc6K9RH7KE3BYQUYhRYoAJ/tNPR6z9IBOhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 17:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:62:fb:29:0f:83:2e:b5:d0:2e:9d:85:fe:bf:04:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408562e2b8961b22e29c762d6c990331ba36666f
Validity
Not Before: Jun 14 17:00:47 2025 GMT
Not After : Jun 15 17:00:47 2025 GMT
Subject: CN=592bf5a341dfda20f7241bfe504fceb449d175e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:07:42:2a:53:bb:07:d5:72:b0:e7:6f:34:ab:
0e:47:de:37:8c:2e:1a:66:44:1d:d5:6d:35:c9:f6:
53:b9:4e:00:73:c0:95:de:87:73:93:2b:1a:da:89:
1e:98:46:b8:d4:d4:4e:41:68:e6:ae:9b:6c:f3:e7:
aa:f1:4a:83:ad:01:cd:bd:7d:b7:d5:b3:97:fb:5c:
cc:ff:d0:11:ef:df:c0:4b:3d:0a:7a:77:88:33:81:
21:81:52:5b:69:42:56:4a:84:86:24:44:c0:1c:b1:
46:1d:24:02:10:e9:7e:f9:c5:87:a6:e9:63:e1:4b:
46:29:70:e4:da:63:ca:b2:8b:fe:e7:49:14:3a:65:
34:c3:14:34:d0:ff:71:64:1c:94:c5:1d:0f:ac:e2:
bb:23:8c:55:0b:59:ed:bd:23:f7:32:08:cc:a0:01:
73:06:b5:5c:0d:2c:a0:5a:1e:00:94:30:f6:57:7d:
e7:a9:66:6d:42:ee:3f:b9:0c:c5:ba:1f:af:73:09:
eb:d5:f0:9b:78:84:87:07:72:e7:52:1c:e4:df:a5:
ba:98:a0:19:b1:0c:96:5e:f9:46:fa:16:76:5b:85:
ff:85:82:bf:b9:1f:f6:e4:9a:d1:f1:7a:0f:b1:ee:
0e:43:25:f7:c9:56:ff:c6:cb:73:5a:df:b5:92:b3:
36:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:2B:F5:A3:41:DF:DA:20:F7:24:1B:FE:50:4F:CE:B4:49:D1:75:E0
X509v3 Authority Key Identifier:
keyid:40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:ee:a9:78:45:45:46:35:0b:ce:54:16:1d:5e:b7:eb:e6:85:
09:21:c4:de:dc:98:55:64:79:19:83:48:6d:30:d4:cf:8d:92:
1f:bf:1f:f7:ad:85:d7:73:3e:a9:bf:25:0d:c1:69:47:5b:41:
6b:ce:c3:dc:df:a2:47:07:9a:04:4c:20:53:fc:04:22:fa:f5:
00:97:fb:1d:bd:1a:6e:72:c6:42:74:59:f1:f9:fc:b9:dd:34:
a8:52:75:ac:1c:f6:79:29:54:3b:38:f8:8b:f3:b5:90:07:51:
5c:db:13:9d:1d:4a:0e:f0:0d:b2:00:d1:e9:66:62:14:66:e9:
c5:ce:d7:ea:8d:76:1a:8f:7b:f4:39:90:09:6c:df:08:f3:3c:
e4:3b:2a:34:9e:92:35:f2:25:ae:56:c5:46:0e:84:41:d9:80:
17:03:53:85:36:4b:3b:b0:f4:22:3e:b2:aa:01:be:e5:8b:61:
b7:84:74:31:5e:d8:3e:49:6e:05:45:52:c1:76:6e:f3:9d:b0:
5f:77:69:0e:a4:74:d8:13:29:07:df:61:72:a5:c4:ea:21:b7:
04:a6:73:a2:a0:77:10:61:3e:82:89:57:e2:40:ef:37:bd:9b:
00:85:33:49:40:6a:35:50:6f:38:3a:23:6f:32:12:41:dd:fc:
5a:77:42:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvYvspD4MutdAunYX+vwTZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwODU2MmUyYjg5NjFiMjJlMjljNzYyZDZjOTkwMzMxYmEz
NjY2NmYwHhcNMjUwNjE0MTcwMDQ3WhcNMjUwNjE1MTcwMDQ3WjAzMTEwLwYDVQQD
Eyg1OTJiZjVhMzQxZGZkYTIwZjcyNDFiZmU1MDRmY2ViNDQ5ZDE3NWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAdCKlO7B9VysOdvNKsOR943jC4a
ZkQd1W01yfZTuU4Ac8CV3odzkysa2okemEa41NROQWjmrpts8+eq8UqDrQHNvX23
1bOX+1zM/9AR79/ASz0KeneIM4EhgVJbaUJWSoSGJETAHLFGHSQCEOl++cWHpulj
4UtGKXDk2mPKsov+50kUOmU0wxQ00P9xZByUxR0PrOK7I4xVC1ntvSP3MgjMoAFz
BrVcDSygWh4AlDD2V33nqWZtQu4/uQzFuh+vcwnr1fCbeISHB3LnUhzk36W6mKAZ
sQyWXvlG+hZ2W4X/hYK/uR/25JrR8XoPse4OQyX3yVb/xstzWt+1krM2KwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFkr9aNB39og9yQb/lBPzrRJ0XXgMB8GA1UdIwQY
MBaAFECFYuK4lhsi4px2LWyZAzG6NmZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUlWaTRyaVdHeUxpbkhZdGJKa0RNYm8yWm04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny81MmE2ZGUtNzIzMi00OWIxLTkxYzct
Y2ZkZmNkNGVlMGYyLzEvUUlWaTRyaVdHeUxpbkhZdGJKa0RNYm8yWm04Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny81MmE2ZGUtNzIzMi00OWIxLTkxYzctY2ZkZmNkNGVlMGYy
LzEvUUlWaTRyaVdHeUxpbkhZdGJKa0RNYm8yWm04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARe6peEVF
RjULzlQWHV636+aFCSHE3tyYVWR5GYNIbTDUz42SH78f962F13M+qb8lDcFpR1tB
a87D3N+iRweaBEwgU/wEIvr1AJf7Hb0abnLGQnRZ8fn8ud00qFJ1rBz2eSlUOzj4
i/O1kAdRXNsTnR1KDvANsgDR6WZiFGbpxc7X6o12Go979DmQCWzfCPM85DsqNJ6S
NfIlrlbFRg6EQdmAFwNThTZLO7D0Ij6yqgG+5Ytht4R0MV7YPkluBUVSwXZu852w
X3dpDqR02BMpB99hcqXE6iG3BKZzoqB3EGE+golX4kDvN72bAIUzSUBqNVBvODoj
bzISQd38WndCJQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 23:59:19 2025 by rpki-client