Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json)
Hash identifier: k6WEAy24/L4/wcCMGlLY97uWh2s0Bm8JkGULw03VM9I=
Subject key identifier: 46:82:50:7C:E2:6D:4A:33:7C:3A:EC:74:35:B2:48:75:E7:ED:6B:CF
Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Certificate serial: 01965BDE9BAEED3B7AD752CEF8E157B55EBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
Manifest number: 01FC
Signing time: Tue 22 Apr 2025 05:00:37 +0000
Manifest this update: Tue 22 Apr 2025 05:00:37 +0000
Manifest next update: Wed 23 Apr 2025 05:00:37 +0000
Files and hashes: 1: Lh_NKL7D2mWFyhzHGugt5SgY5Oo.roa (hash: DjvsQWCGurUIzxMM5VASKrLIiSf6rVM8+QHojBeXG6I=)
2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: RoJOeZoer3CE/SGuzCx6H3Yf6eojhT0Pb1PHdOerMVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:de:9b:ae:ed:3b:7a:d7:52:ce:f8:e1:57:b5:5e:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Validity
Not Before: Apr 22 05:00:37 2025 GMT
Not After : Apr 23 05:00:37 2025 GMT
Subject: CN=4682507ce26d4a337c3aec7435b24875e7ed6bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:60:58:a6:f1:e9:69:c1:c8:97:ab:2b:eb:de:
23:7f:92:e2:a0:89:70:b7:e1:0f:7c:e2:46:37:f8:
89:db:74:32:11:1d:21:21:e1:dd:bf:f9:41:05:6b:
83:3f:09:9c:0d:b7:eb:28:6e:a6:1f:64:83:27:50:
55:a8:ac:b8:3b:fc:98:15:e8:c6:bf:b6:07:f7:79:
e3:4c:45:28:4b:7e:e1:68:13:03:bc:b3:56:0a:53:
77:d2:ba:ce:22:a3:4f:a3:be:80:12:73:a9:85:70:
00:db:4d:15:14:eb:2b:e5:19:77:27:cd:3a:31:49:
c3:e5:b0:db:c1:90:94:f5:73:88:7c:18:d5:57:92:
95:d2:37:de:a1:49:57:62:56:8a:dd:68:4e:2a:00:
55:28:45:9b:38:73:fd:2b:6f:c0:fd:6d:2f:e4:f0:
95:63:1e:d6:37:be:ac:98:fb:ba:bf:73:b8:ff:72:
e9:b3:11:a0:e0:e9:e8:6b:23:82:96:4d:39:ad:ca:
b7:b4:01:31:8f:36:32:ef:6d:4c:1b:70:12:9b:95:
50:38:e2:5d:5b:7e:04:28:ac:80:8f:18:24:6e:83:
b5:5c:91:ac:c7:43:87:58:e6:7d:bb:74:de:99:73:
86:af:25:f0:36:10:75:9e:38:b0:33:db:66:ed:1e:
cd:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:82:50:7C:E2:6D:4A:33:7C:3A:EC:74:35:B2:48:75:E7:ED:6B:CF
X509v3 Authority Key Identifier:
keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:56:4c:6c:fd:47:c1:f4:6b:cb:7b:8a:6e:30:60:60:48:87:
9d:4d:c3:cf:b4:74:b6:ed:e7:1a:b3:93:fd:7c:1e:0b:d5:85:
e4:b3:b1:7c:0a:9c:e0:8e:d9:59:d9:90:d5:5c:e3:08:2d:80:
64:dd:fa:c4:79:e9:40:1f:9a:0b:7e:5a:fb:af:4e:d6:67:5f:
84:25:b3:c6:7b:6f:49:7e:5c:0d:90:b6:40:91:55:65:aa:14:
10:25:bb:a4:b4:00:35:88:35:6c:7f:e7:5b:32:cf:cc:43:03:
fe:b6:80:6d:f7:22:49:dd:f3:91:8b:fa:64:a2:f3:52:d4:85:
cc:d4:be:d2:b5:9f:a3:de:43:8c:a2:a6:2a:58:22:e9:c2:c2:
d5:33:9d:41:8c:61:46:b5:89:fa:fd:2c:2c:7e:05:70:d0:63:
92:7a:f1:49:5e:9c:bb:52:ec:fe:47:00:e0:c7:fd:8b:77:55:
03:50:bc:5d:80:79:26:16:75:4f:c2:5d:33:5d:0b:da:1b:ae:
3a:13:e9:62:6c:6d:c0:46:9f:f4:d1:30:dd:80:76:53:7e:1a:
aa:0a:c7:3f:0c:8a:81:f7:97:ec:6f:14:f4:7b:63:02:f3:cd:
86:ee:80:13:59:e5:5b:c1:90:08:27:fc:1b:6a:d8:d8:6e:23:
38:b9:b3:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZb3puu7Tt611LO+OFXtV66MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhMjIyZjU2NzNiODI4YTdhZTUyZjk5YmEwYzYyYWNkNzA5
NzRhMzgwHhcNMjUwNDIyMDUwMDM3WhcNMjUwNDIzMDUwMDM3WjAzMTEwLwYDVQQD
Eyg0NjgyNTA3Y2UyNmQ0YTMzN2MzYWVjNzQzNWIyNDg3NWU3ZWQ2YmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1mBYpvHpacHIl6sr694jf5LioIlw
t+EPfOJGN/iJ23QyER0hIeHdv/lBBWuDPwmcDbfrKG6mH2SDJ1BVqKy4O/yYFejG
v7YH93njTEUoS37haBMDvLNWClN30rrOIqNPo76AEnOphXAA200VFOsr5Rl3J806
MUnD5bDbwZCU9XOIfBjVV5KV0jfeoUlXYlaK3WhOKgBVKEWbOHP9K2/A/W0v5PCV
Yx7WN76smPu6v3O4/3LpsxGg4OnoayOClk05rcq3tAExjzYy721MG3ASm5VQOOJd
W34EKKyAjxgkboO1XJGsx0OHWOZ9u3TemXOGryXwNhB1njiwM9tm7R7NPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEaCUHzibUozfDrsdDWySHXn7WvPMB8GA1UdIwQY
MBaAFKoiL1ZzuCinrlL5m6DGKs1wl0o4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWlJdlZuTzRLS2V1VXZtYm9NWXF6WENYU2pnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lNTQ2MzYtYzk5OC00MDlhLTg5YmIt
MmI3YjgyN2U3MThjLzEvcWlJdlZuTzRLS2V1VXZtYm9NWXF6WENYU2pnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lNTQ2MzYtYzk5OC00MDlhLTg5YmItMmI3YjgyN2U3MThj
LzEvcWlJdlZuTzRLS2V1VXZtYm9NWXF6WENYU2pnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjlZMbP1H
wfRry3uKbjBgYEiHnU3Dz7R0tu3nGrOT/XweC9WF5LOxfAqc4I7ZWdmQ1VzjCC2A
ZN36xHnpQB+aC35a+69O1mdfhCWzxntvSX5cDZC2QJFVZaoUECW7pLQANYg1bH/n
WzLPzEMD/raAbfciSd3zkYv6ZKLzUtSFzNS+0rWfo95DjKKmKlgi6cLC1TOdQYxh
RrWJ+v0sLH4FcNBjknrxSV6cu1Ls/kcA4Mf9i3dVA1C8XYB5JhZ1T8JdM10L2huu
OhPpYmxtwEaf9NEw3YB2U34aqgrHPwyKgfeX7G8U9HtjAvPNhu6AE1nlW8GQCCf8
G2rY2G4jOLmzqA==
-----END CERTIFICATE-----
Generated at Tue Apr 22 10:28:14 2025 by rpki-client