Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.mft
File: QyExQaqTrYz4wmg3eFx4RUzbgYA.mft (raw, json)
Hash identifier: xtfm5a50S8u8hteTaiHr2cri9VMoSQQ2io1Rw9JH8Ic=
Subject key identifier: 9B:74:F4:CA:7E:5C:33:18:23:C7:21:87:0C:92:84:2B:DA:CA:F0:8E
Authority key identifier: 43:21:31:41:AA:93:AD:8C:F8:C2:68:37:78:5C:78:45:4C:DB:81:80
Certificate issuer: /CN=43213141aa93ad8cf8c26837785c78454cdb8180
Certificate serial: 019643D6E6F0B87B723B455141DF048B1A44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyExQaqTrYz4wmg3eFx4RUzbgYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.mft
Manifest number: 0489
Signing time: Thu 17 Apr 2025 13:01:19 +0000
Manifest this update: Thu 17 Apr 2025 13:01:19 +0000
Manifest next update: Fri 18 Apr 2025 13:01:19 +0000
Files and hashes: 1: QyExQaqTrYz4wmg3eFx4RUzbgYA.crl (hash: xi9PSXrP8vUeBS+YMVBnHf41BF0ZwXiWsxpTh2wu4e0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QyExQaqTrYz4wmg3eFx4RUzbgYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 13:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d6:e6:f0:b8:7b:72:3b:45:51:41:df:04:8b:1a:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43213141aa93ad8cf8c26837785c78454cdb8180
Validity
Not Before: Apr 17 13:01:19 2025 GMT
Not After : Apr 18 13:01:19 2025 GMT
Subject: CN=9b74f4ca7e5c331823c721870c92842bdacaf08e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c2:2d:49:bc:6f:6d:45:f5:31:6b:b1:01:aa:
85:ac:f4:0e:ee:47:cf:cf:23:f1:5e:74:04:69:a9:
bc:94:da:72:a3:c7:46:9b:7a:56:82:85:e2:52:b3:
cd:ce:b7:7c:1e:ac:d2:f7:62:4d:06:d0:db:ab:79:
31:7b:53:cd:f3:ab:e9:7f:87:ac:e5:97:91:ca:aa:
29:4b:af:2b:43:b2:0a:5e:ac:3c:a9:5d:48:12:1e:
1b:bf:2f:b7:bf:e7:ac:d0:06:44:d8:4a:ab:32:1c:
5e:fa:81:48:04:36:7e:49:b3:31:56:5c:c4:1f:3b:
c1:bb:27:66:67:39:e4:12:ae:3a:5f:29:cc:13:58:
79:81:f1:ae:3d:8b:52:85:fd:25:b1:03:83:e4:5c:
94:23:39:75:31:db:3a:3e:9d:b2:1b:66:cf:66:69:
1a:fb:1d:e5:fc:c2:e8:76:e5:a4:b2:2b:31:47:dd:
b0:20:80:c9:8a:41:d2:3f:4a:e0:50:0a:cf:6c:12:
9d:a8:90:25:a7:ee:8d:25:b9:ec:62:6a:fa:ca:1a:
eb:95:04:ab:4c:12:f7:0d:36:6a:78:dc:51:73:f9:
d5:0c:81:af:96:4e:21:30:86:3c:17:be:1b:6f:20:
e2:e1:b5:d9:e7:cb:df:e4:f0:c2:68:83:cc:ef:66:
d6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:74:F4:CA:7E:5C:33:18:23:C7:21:87:0C:92:84:2B:DA:CA:F0:8E
X509v3 Authority Key Identifier:
keyid:43:21:31:41:AA:93:AD:8C:F8:C2:68:37:78:5C:78:45:4C:DB:81:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyExQaqTrYz4wmg3eFx4RUzbgYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:83:d7:2c:73:c4:d1:90:a4:bc:9c:6b:4d:0f:fd:f5:7e:fb:
ba:13:57:39:fe:5d:4d:43:46:57:6f:81:68:a3:3d:70:59:83:
f1:9a:fe:78:89:39:be:03:1d:d2:04:cf:e8:e5:7c:00:8b:9e:
c4:cd:54:fe:3a:df:c7:64:2c:4c:c1:e5:cf:ea:c9:06:1c:f0:
f9:fd:22:32:7d:96:89:8a:35:bd:3b:de:db:df:b9:3e:8a:9d:
31:06:d5:a3:cc:05:e4:1b:1f:e5:d5:90:dc:1e:e3:79:f6:7c:
fa:99:e7:35:78:3e:07:13:6c:0e:2f:4c:14:d6:53:88:a5:85:
b1:63:8d:1b:d0:49:69:12:a3:d4:c2:64:2b:17:cc:83:1c:e5:
bf:ff:d4:bf:71:a5:9b:e1:7c:e2:7f:90:20:06:70:48:32:83:
27:b1:cb:59:8a:1f:0d:7a:82:c7:af:b0:10:51:68:b8:ea:a4:
e3:fc:ac:2d:8a:9f:c6:03:56:34:bd:e8:c3:87:a0:de:8c:8d:
cb:f7:f9:70:93:6e:2d:5c:da:4b:df:de:bb:d0:c3:eb:f1:cb:
44:88:ec:e5:4b:3e:54:9e:7a:1a:7f:c0:bc:c3:f5:45:48:3c:
07:08:6d:26:fc:bd:21:32:44:d0:42:fa:29:97:39:91:c7:b1:
3c:f3:83:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZD1ubwuHtyO0VRQd8EixpEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMjEzMTQxYWE5M2FkOGNmOGMyNjgzNzc4NWM3ODQ1NGNk
YjgxODAwHhcNMjUwNDE3MTMwMTE5WhcNMjUwNDE4MTMwMTE5WjAzMTEwLwYDVQQD
Eyg5Yjc0ZjRjYTdlNWMzMzE4MjNjNzIxODcwYzkyODQyYmRhY2FmMDhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68ItSbxvbUX1MWuxAaqFrPQO7kfP
zyPxXnQEaam8lNpyo8dGm3pWgoXiUrPNzrd8HqzS92JNBtDbq3kxe1PN86vpf4es
5ZeRyqopS68rQ7IKXqw8qV1IEh4bvy+3v+es0AZE2EqrMhxe+oFIBDZ+SbMxVlzE
HzvBuydmZznkEq46XynME1h5gfGuPYtShf0lsQOD5FyUIzl1Mds6Pp2yG2bPZmka
+x3l/MLoduWksisxR92wIIDJikHSP0rgUArPbBKdqJAlp+6NJbnsYmr6yhrrlQSr
TBL3DTZqeNxRc/nVDIGvlk4hMIY8F74bbyDi4bXZ58vf5PDCaIPM72bWGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJt09Mp+XDMYI8chhwyShCvayvCOMB8GA1UdIwQY
MBaAFEMhMUGqk62M+MJoN3hceEVM24GAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXlFeFFhcVRyWXo0d21nM2VGeDRSVXpiZ1lBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC82OGQ3YTQtNGU3My00OTVjLWEwM2Ut
MGUyNzY5YWE4YWIwLzEvUXlFeFFhcVRyWXo0d21nM2VGeDRSVXpiZ1lBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC82OGQ3YTQtNGU3My00OTVjLWEwM2UtMGUyNzY5YWE4YWIw
LzEvUXlFeFFhcVRyWXo0d21nM2VGeDRSVXpiZ1lBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxYPXLHPE
0ZCkvJxrTQ/99X77uhNXOf5dTUNGV2+BaKM9cFmD8Zr+eIk5vgMd0gTP6OV8AIue
xM1U/jrfx2QsTMHlz+rJBhzw+f0iMn2WiYo1vTve29+5PoqdMQbVo8wF5Bsf5dWQ
3B7jefZ8+pnnNXg+BxNsDi9MFNZTiKWFsWONG9BJaRKj1MJkKxfMgxzlv//Uv3Gl
m+F84n+QIAZwSDKDJ7HLWYofDXqCx6+wEFFouOqk4/ysLYqfxgNWNL3ow4eg3oyN
y/f5cJNuLVzaS9/eu9DD6/HLRIjs5Us+VJ56Gn/AvMP1RUg8BwhtJvy9ITJE0EL6
KZc5kcexPPOD7A==
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:58:43 2025 by rpki-client