Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/1QBRYT08xrPrgdW7QArg1OJBLIA.mft
File: 1QBRYT08xrPrgdW7QArg1OJBLIA.mft (raw, json)
Hash identifier: vIrnCEiOJvoIXBXA7scTvdDVN6WbEqKLTXuq4PNz7K4=
Subject key identifier: 25:52:37:F3:73:9C:C6:8A:D3:4E:BC:A8:61:64:FB:F5:96:24:41:71
Authority key identifier: D5:00:51:61:3D:3C:C6:B3:EB:81:D5:BB:40:0A:E0:D4:E2:41:2C:80
Certificate issuer: /CN=d50051613d3cc6b3eb81d5bb400ae0d4e2412c80
Certificate serial: 019653495CEC162739DBE36B11213A5958C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QBRYT08xrPrgdW7QArg1OJBLIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/1QBRYT08xrPrgdW7QArg1OJBLIA.mft
Manifest number: 090A
Signing time: Sun 20 Apr 2025 13:00:38 +0000
Manifest this update: Sun 20 Apr 2025 13:00:38 +0000
Manifest next update: Mon 21 Apr 2025 13:00:38 +0000
Files and hashes: 1: 1QBRYT08xrPrgdW7QArg1OJBLIA.crl (hash: K+MK+/MBpofOiQsG5xEtfd5X/V0PS+6A6Ub9Uxa2/8g=)
2: qBfFLLbMjDiXpHlclpBQm55p-Q8.roa (hash: X7f4s7PxbdY1OwsEitEQVcC4bC8kVzy8m2zO1xjTkLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/1QBRYT08xrPrgdW7QArg1OJBLIA.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/1QBRYT08xrPrgdW7QArg1OJBLIA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QBRYT08xrPrgdW7QArg1OJBLIA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:5c:ec:16:27:39:db:e3:6b:11:21:3a:59:58:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50051613d3cc6b3eb81d5bb400ae0d4e2412c80
Validity
Not Before: Apr 20 13:00:38 2025 GMT
Not After : Apr 21 13:00:38 2025 GMT
Subject: CN=255237f3739cc68ad34ebca86164fbf596244171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ce:0c:28:8a:0a:50:02:d2:1e:d8:90:ea:46:
67:fd:c1:7a:e9:da:6b:28:59:d8:a4:5f:1f:28:c1:
73:6f:6d:c8:8f:9c:d9:1b:23:81:b6:f6:88:30:f7:
02:1f:d4:1a:63:f3:23:52:93:72:16:26:51:0c:31:
a2:a0:d5:8a:7c:9c:db:40:28:9b:21:0b:25:87:b1:
d3:34:9f:f4:72:25:aa:a8:15:16:40:2c:1b:dc:e9:
5a:bb:fd:87:22:9a:dd:5f:1e:ac:c4:79:7c:45:48:
8c:0c:7a:ba:2f:b2:70:2c:87:3e:be:5c:fd:42:b1:
4d:16:00:a1:6f:f1:d2:9f:6c:0a:b8:2c:52:ec:e8:
75:67:a5:3f:4f:91:d3:a1:6c:bf:59:19:3a:5a:76:
e8:0c:73:70:c0:b5:c3:3a:4e:fd:73:de:67:cd:76:
31:d0:27:f2:a2:9f:fe:44:f0:ef:35:0a:62:3e:fa:
09:6d:01:9c:cd:b3:ed:6f:1a:47:ff:a2:63:d9:de:
f0:b7:74:76:ef:91:14:4f:c7:49:51:61:5a:b2:49:
4c:bf:e6:a1:da:d9:66:4b:bf:ec:85:f3:59:dc:26:
ad:eb:1c:27:2f:8f:e9:c9:67:56:10:97:26:bd:46:
a8:3a:11:c4:ff:87:7a:63:53:58:df:10:15:cf:d4:
61:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:52:37:F3:73:9C:C6:8A:D3:4E:BC:A8:61:64:FB:F5:96:24:41:71
X509v3 Authority Key Identifier:
keyid:D5:00:51:61:3D:3C:C6:B3:EB:81:D5:BB:40:0A:E0:D4:E2:41:2C:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QBRYT08xrPrgdW7QArg1OJBLIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/1QBRYT08xrPrgdW7QArg1OJBLIA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/1QBRYT08xrPrgdW7QArg1OJBLIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:0b:27:51:06:f8:57:60:fe:68:4f:15:6a:c6:0c:9b:69:20:
cd:fe:80:97:bb:ca:9a:a6:fe:24:af:92:21:39:2c:03:46:b9:
11:79:8b:47:4b:52:9c:1a:ec:7b:93:70:ae:ab:4f:96:00:42:
0b:ff:89:7b:c1:8d:9e:84:8e:ce:0d:9a:ee:02:79:02:10:d9:
98:d6:2b:b1:ed:1e:4a:15:cc:f8:d1:ba:84:c7:86:df:39:23:
d0:5e:4a:4f:e8:d9:90:da:aa:53:34:60:78:cb:0e:e2:d5:48:
a3:3c:4e:8a:37:58:d5:87:0b:d2:bc:6c:19:38:f4:68:39:a7:
04:28:6b:9a:3a:a2:a4:dc:66:92:ec:f2:93:86:c2:26:11:83:
3d:54:20:1d:c3:12:e3:22:de:92:f3:91:30:fe:1f:eb:ed:91:
ad:84:96:1b:52:57:65:f4:47:06:a3:9f:98:c4:3e:5f:7a:29:
1d:64:04:60:ed:1d:70:29:94:e6:85:32:40:e9:a3:cb:c4:7e:
38:6f:cf:f8:38:1c:95:61:2e:9e:4d:6b:58:66:22:0c:cb:c4:
80:92:90:8c:a6:4a:dd:d2:b2:4c:41:14:ed:2c:84:7b:7b:d3:
22:d4:e3:a4:1b:6c:b2:93:52:2d:81:d5:0e:77:a9:41:dc:66:
f0:00:9d:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZTSVzsFic52+NrESE6WVjJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MDA1MTYxM2QzY2M2YjNlYjgxZDViYjQwMGFlMGQ0ZTI0
MTJjODAwHhcNMjUwNDIwMTMwMDM4WhcNMjUwNDIxMTMwMDM4WjAzMTEwLwYDVQQD
EygyNTUyMzdmMzczOWNjNjhhZDM0ZWJjYTg2MTY0ZmJmNTk2MjQ0MTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2c4MKIoKUALSHtiQ6kZn/cF66dpr
KFnYpF8fKMFzb23Ij5zZGyOBtvaIMPcCH9QaY/MjUpNyFiZRDDGioNWKfJzbQCib
IQslh7HTNJ/0ciWqqBUWQCwb3Olau/2HIprdXx6sxHl8RUiMDHq6L7JwLIc+vlz9
QrFNFgChb/HSn2wKuCxS7Oh1Z6U/T5HToWy/WRk6WnboDHNwwLXDOk79c95nzXYx
0Cfyop/+RPDvNQpiPvoJbQGczbPtbxpH/6Jj2d7wt3R275EUT8dJUWFasklMv+ah
2tlmS7/shfNZ3Cat6xwnL4/pyWdWEJcmvUaoOhHE/4d6Y1NY3xAVz9RhJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCVSN/NznMaK0068qGFk+/WWJEFxMB8GA1UdIwQY
MBaAFNUAUWE9PMaz64HVu0AK4NTiQSyAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVFCUllUMDh4clByZ2RXN1FBcmcxT0pCTElBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC81OWZjMjYtZjhkZC00ZjVlLWJjYTIt
MjI1ZDhhZGZlOGJiLzEvMVFCUllUMDh4clByZ2RXN1FBcmcxT0pCTElBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC81OWZjMjYtZjhkZC00ZjVlLWJjYTItMjI1ZDhhZGZlOGJi
LzEvMVFCUllUMDh4clByZ2RXN1FBcmcxT0pCTElBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGQsnUQb4
V2D+aE8VasYMm2kgzf6Al7vKmqb+JK+SITksA0a5EXmLR0tSnBrse5NwrqtPlgBC
C/+Je8GNnoSOzg2a7gJ5AhDZmNYrse0eShXM+NG6hMeG3zkj0F5KT+jZkNqqUzRg
eMsO4tVIozxOijdY1YcL0rxsGTj0aDmnBChrmjqipNxmkuzyk4bCJhGDPVQgHcMS
4yLekvORMP4f6+2RrYSWG1JXZfRHBqOfmMQ+X3opHWQEYO0dcCmU5oUyQOmjy8R+
OG/P+DgclWEunk1rWGYiDMvEgJKQjKZK3dKyTEEU7SyEe3vTItTjpBtsspNSLYHV
DnepQdxm8ACdow==
-----END CERTIFICATE-----
Generated at Sun Apr 20 20:12:02 2025 by rpki-client