Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
File: qF7VXxRNceZz5j9LdnDEE0TAlYA.mft (raw, json)
Hash identifier: amk59PS4njxI6Sko8BVaWH72snWvu5OGbMg44feydGU=
Subject key identifier: F4:C9:D7:49:C9:B5:F1:48:38:C7:1B:A6:1D:8C:0A:53:3E:3D:69:1C
Authority key identifier: A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80
Certificate issuer: /CN=a85ed55f144d71e673e63f4b7670c41344c09580
Certificate serial: 019650B6B4442BF4228B5DF720E89157E68F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
Manifest number: 89
Signing time: Sun 20 Apr 2025 01:01:13 +0000
Manifest this update: Sun 20 Apr 2025 01:01:13 +0000
Manifest next update: Mon 21 Apr 2025 01:01:13 +0000
Files and hashes: 1: cT2eGd63Px5rG_L6GRT2XCwHH8E.roa (hash: +Vm6cesMvrKle1O+NFaMGbBUxTSdI75W5YWzhqJGopE=)
2: qF7VXxRNceZz5j9LdnDEE0TAlYA.crl (hash: 4AUautewavlABfVImzMWb27RX1s/qGNqmQdteZ3EyJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:b6:b4:44:2b:f4:22:8b:5d:f7:20:e8:91:57:e6:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85ed55f144d71e673e63f4b7670c41344c09580
Validity
Not Before: Apr 20 01:01:13 2025 GMT
Not After : Apr 21 01:01:13 2025 GMT
Subject: CN=f4c9d749c9b5f14838c71ba61d8c0a533e3d691c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:dd:95:16:d8:b8:09:d7:2a:81:3c:ba:a9:53:
10:ee:43:3e:90:0c:79:8c:85:18:a4:fa:c2:09:56:
8f:d9:4b:24:3f:cd:54:6b:ff:80:d8:28:97:2b:c4:
8c:84:b0:12:11:10:cf:f8:68:e8:01:3b:1f:86:dd:
4f:be:09:26:4c:ff:37:c4:4c:67:9f:d7:8d:92:83:
95:e4:1f:3d:ab:dd:e6:be:b3:b2:a7:f6:2a:73:ab:
ff:4b:11:06:aa:e8:82:d2:04:ed:a4:46:f3:0a:50:
b7:3f:2a:71:d2:41:27:49:d4:76:c6:c1:ae:b6:e7:
9d:15:4f:49:e0:f0:55:e5:57:04:bc:c4:1e:03:73:
1a:d3:94:cd:18:33:fb:ea:3f:22:85:0c:3e:60:f0:
9e:9e:27:5f:65:53:a3:41:b2:8d:84:26:1d:cf:c9:
07:0c:db:26:95:cd:0d:33:a3:7a:2c:a1:85:08:7d:
02:57:48:ba:f9:60:8a:8a:55:de:16:c7:0e:d5:c5:
c9:7f:53:22:6b:dc:60:25:fe:8f:53:56:c6:ac:7b:
d6:db:5b:93:03:5d:d7:cd:48:a6:26:9d:ff:74:a5:
c4:9f:44:11:44:ec:8c:50:a3:6a:64:e8:4d:c6:69:
63:10:1f:46:17:ad:3b:20:72:02:27:63:c0:d7:c8:
af:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:C9:D7:49:C9:B5:F1:48:38:C7:1B:A6:1D:8C:0A:53:3E:3D:69:1C
X509v3 Authority Key Identifier:
keyid:A8:5E:D5:5F:14:4D:71:E6:73:E6:3F:4B:76:70:C4:13:44:C0:95:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qF7VXxRNceZz5j9LdnDEE0TAlYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/749d77-e995-489a-87e0-d00a13aae540/1/qF7VXxRNceZz5j9LdnDEE0TAlYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:e9:db:dc:1b:3c:3b:ad:b3:23:f3:e8:53:28:6b:28:58:3e:
99:a0:8e:24:89:3b:09:f7:d3:5b:f6:e4:15:79:13:a2:60:73:
ea:32:cb:11:a2:f5:d4:3b:4c:50:3d:52:2d:3e:4d:e6:e9:cd:
4b:c1:47:4b:fa:a8:87:a7:10:0e:ef:06:dd:a7:25:ea:d3:a8:
fe:28:96:36:de:96:4a:96:cf:da:5b:e3:f0:1d:b6:ce:b7:82:
51:c3:70:5b:7b:22:6e:20:27:9b:09:b7:7b:16:6b:e4:55:cc:
fc:7b:f1:8c:c3:e3:71:4b:2d:c0:b8:29:3e:0c:31:bb:0e:7c:
24:7e:32:5d:8a:78:78:d6:48:58:2b:f9:c1:2f:3b:32:ed:05:
82:cc:33:4f:f4:6f:3b:f8:18:d8:9f:7e:ac:7f:68:db:92:18:
d6:f5:c7:23:00:18:a0:33:80:b7:9c:21:30:b8:d4:c3:74:dd:
88:5d:0e:2b:5c:f8:f0:cf:62:e1:49:ef:73:ca:55:53:74:75:
53:b6:1e:b5:47:99:eb:6e:ea:8f:12:f1:78:4f:35:b1:2a:ed:
a2:dd:47:ec:b8:6d:bf:eb:39:08:ab:fe:b5:23:cc:2c:c9:ca:
df:5f:1a:e5:0a:98:18:98:4b:22:58:60:5f:4b:b2:e1:56:dc:
ff:28:22:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZQtrREK/Qii133IOiRV+aPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4NWVkNTVmMTQ0ZDcxZTY3M2U2M2Y0Yjc2NzBjNDEzNDRj
MDk1ODAwHhcNMjUwNDIwMDEwMTEzWhcNMjUwNDIxMDEwMTEzWjAzMTEwLwYDVQQD
EyhmNGM5ZDc0OWM5YjVmMTQ4MzhjNzFiYTYxZDhjMGE1MzNlM2Q2OTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwt2VFti4CdcqgTy6qVMQ7kM+kAx5
jIUYpPrCCVaP2UskP81Ua/+A2CiXK8SMhLASERDP+GjoATsfht1PvgkmTP83xExn
n9eNkoOV5B89q93mvrOyp/Yqc6v/SxEGquiC0gTtpEbzClC3Pypx0kEnSdR2xsGu
tuedFU9J4PBV5VcEvMQeA3Ma05TNGDP76j8ihQw+YPCenidfZVOjQbKNhCYdz8kH
DNsmlc0NM6N6LKGFCH0CV0i6+WCKilXeFscO1cXJf1Mia9xgJf6PU1bGrHvW21uT
A13XzUimJp3/dKXEn0QRROyMUKNqZOhNxmljEB9GF607IHICJ2PA18ivxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPTJ10nJtfFIOMcbph2MClM+PWkcMB8GA1UdIwQY
MBaAFKhe1V8UTXHmc+Y/S3ZwxBNEwJWAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC83NDlkNzctZTk5NS00ODlhLTg3ZTAt
ZDAwYTEzYWFlNTQwLzEvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC83NDlkNzctZTk5NS00ODlhLTg3ZTAtZDAwYTEzYWFlNTQw
LzEvcUY3Vlh4Uk5jZVp6NWo5TGRuREVFMFRBbFlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgOnb3Bs8
O62zI/PoUyhrKFg+maCOJIk7CffTW/bkFXkTomBz6jLLEaL11DtMUD1SLT5N5unN
S8FHS/qoh6cQDu8G3acl6tOo/iiWNt6WSpbP2lvj8B22zreCUcNwW3sibiAnmwm3
exZr5FXM/HvxjMPjcUstwLgpPgwxuw58JH4yXYp4eNZIWCv5wS87Mu0FgswzT/Rv
O/gY2J9+rH9o25IY1vXHIwAYoDOAt5whMLjUw3TdiF0OK1z48M9i4Unvc8pVU3R1
U7YetUeZ627qjxLxeE81sSrtot1H7Lhtv+s5CKv+tSPMLMnK318a5QqYGJhLIlhg
X0uy4Vbc/ygiJw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:29:07 2025 by rpki-client