Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/QL_e36qTma09VTH6RxoSs7_jfhI.mft
File: QL_e36qTma09VTH6RxoSs7_jfhI.mft (raw, json)
Hash identifier: TLYFhQEmFTTxIMVsx9P5G0obQrW1dK+TBx2Pzn9eGww=
Subject key identifier: C7:0D:11:D1:5E:95:1C:C3:4B:88:E3:0D:88:3E:38:A9:E9:4E:22:67
Authority key identifier: 40:BF:DE:DF:AA:93:99:AD:3D:55:31:FA:47:1A:12:B3:BF:E3:7E:12
Certificate issuer: /CN=40bfdedfaa9399ad3d5531fa471a12b3bfe37e12
Certificate serial: 01965726701761976A4F11AC78C4C1B19A79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QL_e36qTma09VTH6RxoSs7_jfhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/QL_e36qTma09VTH6RxoSs7_jfhI.mft
Manifest number: 0820
Signing time: Mon 21 Apr 2025 07:00:58 +0000
Manifest this update: Mon 21 Apr 2025 07:00:58 +0000
Manifest next update: Tue 22 Apr 2025 07:00:58 +0000
Files and hashes: 1: QL_e36qTma09VTH6RxoSs7_jfhI.crl (hash: qTyPOGLbXryj/HpRZ84lsuRRHn2lGMhM6mgfgAFioVk=)
2: jSlm79fFu0VgJBsIaC81oVf4nGI.roa (hash: 8IYkRLo3mCrHlEs7aBNerIrNbkB27E7Mc7prSDZuZVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/QL_e36qTma09VTH6RxoSs7_jfhI.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/QL_e36qTma09VTH6RxoSs7_jfhI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QL_e36qTma09VTH6RxoSs7_jfhI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 07:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:70:17:61:97:6a:4f:11:ac:78:c4:c1:b1:9a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bfdedfaa9399ad3d5531fa471a12b3bfe37e12
Validity
Not Before: Apr 21 07:00:58 2025 GMT
Not After : Apr 22 07:00:58 2025 GMT
Subject: CN=c70d11d15e951cc34b88e30d883e38a9e94e2267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dd:2b:ec:d7:d6:b8:a3:4c:cf:9d:b7:70:62:
f1:ea:bf:3a:67:eb:f3:13:10:e1:9c:28:0e:61:8f:
6f:21:12:35:93:f1:8a:60:36:7a:f1:92:2f:e8:ac:
84:52:e3:3f:2e:18:cc:61:f8:cc:75:82:f8:50:30:
ff:f2:14:60:c3:46:4f:23:19:59:94:61:1a:ed:e8:
47:95:19:39:49:f1:f0:a1:c1:ea:11:c3:aa:9d:55:
ab:a1:e4:78:1c:cf:8d:b6:e3:b9:5a:83:dc:ec:3b:
38:e2:63:e1:e2:ed:1a:de:83:d5:6c:25:ab:03:3f:
64:28:25:e8:16:15:54:cb:29:c9:48:b0:70:ef:b7:
ed:b8:83:f9:40:59:a5:23:d4:52:c0:59:87:18:3f:
1b:b9:cd:b3:11:23:d8:d2:60:e9:9c:f0:2d:08:38:
21:83:7d:88:ed:3a:7c:d4:be:26:01:95:1d:8c:4a:
52:b0:09:c4:51:e9:c0:4c:3c:58:a6:65:2d:ec:39:
18:68:d8:d5:4b:90:5f:a7:b2:02:9d:f2:56:51:61:
f4:a0:89:4d:58:41:0f:ec:71:7b:b4:ad:69:3a:ab:
ce:30:ed:d3:3e:b4:4e:c1:dd:cf:56:e8:4a:04:b4:
c2:43:d3:02:e8:08:84:20:6e:6e:56:cb:2c:a2:9b:
37:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0D:11:D1:5E:95:1C:C3:4B:88:E3:0D:88:3E:38:A9:E9:4E:22:67
X509v3 Authority Key Identifier:
keyid:40:BF:DE:DF:AA:93:99:AD:3D:55:31:FA:47:1A:12:B3:BF:E3:7E:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QL_e36qTma09VTH6RxoSs7_jfhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/QL_e36qTma09VTH6RxoSs7_jfhI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/QL_e36qTma09VTH6RxoSs7_jfhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:18:ee:51:43:3f:1c:8a:b0:fd:28:ca:80:35:44:fd:a8:b2:
63:5d:8c:83:47:eb:78:f1:60:f5:90:06:63:0e:9d:a5:1c:78:
f6:e7:db:d2:11:b2:9c:53:30:9d:d0:22:3c:9c:97:94:1c:21:
e6:d2:83:19:11:85:40:3d:d6:a9:c6:0d:a6:6b:ab:52:ae:c0:
78:bc:fb:38:47:54:7b:b2:56:2e:43:e2:22:e7:a3:a5:e5:70:
ca:95:94:a1:ff:2f:88:d7:58:c2:9c:00:c2:76:ea:b9:fc:ef:
11:c6:97:35:d3:ad:5e:03:c2:2e:da:96:4b:9b:e5:76:79:39:
0c:45:8a:49:93:79:3d:8e:ff:36:4e:e7:20:e9:93:0f:96:e7:
ce:11:96:2b:71:69:d5:fb:f8:21:ac:ac:71:c0:90:b8:36:27:
cb:73:71:7f:97:72:40:f3:c5:c1:67:b7:c7:e2:3b:88:1e:ee:
67:1f:ba:8b:5d:31:81:bc:84:aa:9e:7e:af:7e:c8:1d:03:b5:
48:d0:44:6e:0e:55:83:cb:9b:9e:17:8e:d2:8a:d6:51:00:05:
0f:5b:06:5a:84:dc:84:3e:2b:3a:af:90:39:0b:d6:a5:cd:0f:
ee:a8:df:b7:c5:ef:82:47:e4:dc:42:c7:e0:2d:a3:a3:12:bf:
ff:75:01:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZXJnAXYZdqTxGseMTBsZp5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYmZkZWRmYWE5Mzk5YWQzZDU1MzFmYTQ3MWExMmIzYmZl
MzdlMTIwHhcNMjUwNDIxMDcwMDU4WhcNMjUwNDIyMDcwMDU4WjAzMTEwLwYDVQQD
EyhjNzBkMTFkMTVlOTUxY2MzNGI4OGUzMGQ4ODNlMzhhOWU5NGUyMjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAst0r7NfWuKNMz523cGLx6r86Z+vz
ExDhnCgOYY9vIRI1k/GKYDZ68ZIv6KyEUuM/LhjMYfjMdYL4UDD/8hRgw0ZPIxlZ
lGEa7ehHlRk5SfHwocHqEcOqnVWroeR4HM+NtuO5WoPc7Ds44mPh4u0a3oPVbCWr
Az9kKCXoFhVUyynJSLBw77ftuIP5QFmlI9RSwFmHGD8buc2zESPY0mDpnPAtCDgh
g32I7Tp81L4mAZUdjEpSsAnEUenATDxYpmUt7DkYaNjVS5Bfp7ICnfJWUWH0oIlN
WEEP7HF7tK1pOqvOMO3TPrROwd3PVuhKBLTCQ9MC6AiEIG5uVsssops3FQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMcNEdFelRzDS4jjDYg+OKnpTiJnMB8GA1UdIwQY
MBaAFEC/3t+qk5mtPVUx+kcaErO/434SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUxfZTM2cVRtYTA5VlRINlJ4b1NzN19qZmhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9kYjU1ZWMtMzU3Ny00MjFmLTg5MTYt
OGU5ODUxYjdmODExLzEvUUxfZTM2cVRtYTA5VlRINlJ4b1NzN19qZmhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9kYjU1ZWMtMzU3Ny00MjFmLTg5MTYtOGU5ODUxYjdmODEx
LzEvUUxfZTM2cVRtYTA5VlRINlJ4b1NzN19qZmhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVxjuUUM/
HIqw/SjKgDVE/aiyY12Mg0frePFg9ZAGYw6dpRx49ufb0hGynFMwndAiPJyXlBwh
5tKDGRGFQD3WqcYNpmurUq7AeLz7OEdUe7JWLkPiIuejpeVwypWUof8viNdYwpwA
wnbqufzvEcaXNdOtXgPCLtqWS5vldnk5DEWKSZN5PY7/Nk7nIOmTD5bnzhGWK3Fp
1fv4IaysccCQuDYny3Nxf5dyQPPFwWe3x+I7iB7uZx+6i10xgbyEqp5+r37IHQO1
SNBEbg5Vg8ubnheO0orWUQAFD1sGWoTchD4rOq+QOQvWpc0P7qjft8Xvgkfk3ELH
4C2joxK//3UBMw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:06:32 2025 by rpki-client