Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
File: qYW1Uh0gkBiCR48PCUGWLD6clPo.mft (raw, json)
Hash identifier: L6++oPNT34seTbAsFBsavf/YP/WxJpMoYP5XiJLXLDY=
Subject key identifier: 85:A3:5A:C3:1C:27:68:AD:01:51:EE:8D:3F:84:1C:E2:43:F5:0C:70
Authority key identifier: A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
Certificate issuer: /CN=a985b5521d20901882478f0f0941962c3e9c94fa
Certificate serial: 01964EFEA07DF10087CF2C011A6AB28F0048
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
Manifest number: 0181
Signing time: Sat 19 Apr 2025 17:00:32 +0000
Manifest this update: Sat 19 Apr 2025 17:00:32 +0000
Manifest next update: Sun 20 Apr 2025 17:00:32 +0000
Files and hashes: 1: 5AKIjXxvlD1ejPdjcCa3GKRo67k.roa (hash: tQg1Hre7Hi5yVH1kQPOYLNbXNBUZ5paMSfhayTmbmmc=)
2: qYW1Uh0gkBiCR48PCUGWLD6clPo.crl (hash: 22cr3fW/kuz10UCMbLCJMxw6dVp6i0CB2Y+Wp7fWSU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:fe:a0:7d:f1:00:87:cf:2c:01:1a:6a:b2:8f:00:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a985b5521d20901882478f0f0941962c3e9c94fa
Validity
Not Before: Apr 19 17:00:32 2025 GMT
Not After : Apr 20 17:00:32 2025 GMT
Subject: CN=85a35ac31c2768ad0151ee8d3f841ce243f50c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dc:e1:17:93:97:63:a4:75:f5:17:86:ee:24:
4b:09:53:5a:a7:d7:50:eb:de:ed:30:49:d2:fc:ec:
d8:c8:b1:4f:cd:ad:97:74:32:ff:f6:65:56:d9:07:
73:00:29:f7:fd:e8:ff:f2:b1:f5:86:2f:e8:9e:4e:
9e:8a:7d:82:00:ef:66:4d:26:07:e8:08:30:97:30:
9f:ca:42:aa:81:6e:1e:c4:3b:52:43:61:0c:f3:5b:
39:a7:94:9d:dd:25:49:7a:d6:81:3b:9b:0d:c0:31:
56:7e:de:d2:02:4e:3b:9f:43:5e:29:48:a2:90:27:
91:87:f3:c7:5c:6a:f0:6f:f7:9d:05:03:75:f1:9f:
3a:8f:19:20:f2:27:f2:b8:87:1f:d4:b5:4a:87:19:
04:65:b1:79:ce:47:a6:c8:a5:e9:9c:40:da:34:ac:
22:bb:ef:6f:43:7d:9b:f5:00:50:ac:a1:85:77:33:
47:37:58:be:09:f8:4f:2b:aa:48:1a:c2:48:96:04:
a7:c0:bf:f5:e0:ce:b3:6b:59:30:b2:45:77:32:62:
a6:e7:60:b3:df:e8:81:55:3c:4f:dd:f7:58:66:1d:
e4:cd:08:b2:c6:01:f5:3a:87:47:c3:8b:0c:71:d0:
ef:5f:8a:36:a9:ff:67:69:06:e3:1d:85:34:18:01:
0d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A3:5A:C3:1C:27:68:AD:01:51:EE:8D:3F:84:1C:E2:43:F5:0C:70
X509v3 Authority Key Identifier:
keyid:A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:28:0a:86:32:8d:59:de:88:a2:b0:42:3a:3e:96:85:fd:bd:
9a:73:20:84:29:9e:1b:6c:c3:3a:94:86:4a:fd:93:57:38:ea:
18:42:75:56:01:5f:f4:72:03:8e:54:48:d1:1f:aa:b2:92:71:
d3:1b:67:87:96:85:7f:a5:c1:24:91:63:3c:05:9b:ee:8c:ce:
36:95:b2:56:dc:20:ae:f3:da:00:13:c8:74:ee:0f:8e:a6:fd:
f2:e0:d9:aa:6d:b1:73:1d:73:fe:b6:d5:90:9f:42:ac:62:21:
49:2b:ac:85:0e:0b:bf:cc:87:9b:22:cb:48:36:2f:b5:e4:50:
2c:82:47:b9:e0:ed:f2:23:cd:8d:5f:e6:80:d3:5f:f5:65:fc:
d1:f2:1b:25:68:5c:69:d2:7c:05:38:70:d2:86:7a:98:5f:d3:
c8:b0:24:f1:26:26:2d:0c:26:ac:82:4a:b6:07:1d:55:a0:36:
bc:30:32:b0:b5:90:67:c3:75:16:69:e3:01:eb:89:f7:a4:c5:
a4:5c:e0:0c:8c:0c:f8:c5:b0:ca:ba:84:6c:22:ad:d2:f1:16:
f6:7a:84:dd:3e:cc:ec:44:99:c5:01:0d:ab:bc:e6:b7:a7:f1:
a8:fd:44:5b:d9:a0:5e:f6:77:b0:b3:78:45:aa:e0:4c:8d:f5:
53:54:43:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZO/qB98QCHzywBGmqyjwBIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5ODViNTUyMWQyMDkwMTg4MjQ3OGYwZjA5NDE5NjJjM2U5
Yzk0ZmEwHhcNMjUwNDE5MTcwMDMyWhcNMjUwNDIwMTcwMDMyWjAzMTEwLwYDVQQD
Eyg4NWEzNWFjMzFjMjc2OGFkMDE1MWVlOGQzZjg0MWNlMjQzZjUwYzcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdzhF5OXY6R19ReG7iRLCVNap9dQ
697tMEnS/OzYyLFPza2XdDL/9mVW2QdzACn3/ej/8rH1hi/onk6ein2CAO9mTSYH
6AgwlzCfykKqgW4exDtSQ2EM81s5p5Sd3SVJetaBO5sNwDFWft7SAk47n0NeKUii
kCeRh/PHXGrwb/edBQN18Z86jxkg8ifyuIcf1LVKhxkEZbF5zkemyKXpnEDaNKwi
u+9vQ32b9QBQrKGFdzNHN1i+CfhPK6pIGsJIlgSnwL/14M6za1kwskV3MmKm52Cz
3+iBVTxP3fdYZh3kzQiyxgH1OodHw4sMcdDvX4o2qf9naQbjHYU0GAENjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIWjWsMcJ2itAVHujT+EHOJD9QxwMB8GA1UdIwQY
MBaAFKmFtVIdIJAYgkePDwlBliw+nJT6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS83ZmZiM2UtOGE0Yy00MGI3LTg3NmUt
NjAwM2Q1YWVlZDFmLzEvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS83ZmZiM2UtOGE0Yy00MGI3LTg3NmUtNjAwM2Q1YWVlZDFm
LzEvcVlXMVVoMGdrQmlDUjQ4UENVR1dMRDZjbFBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaygKhjKN
Wd6IorBCOj6Whf29mnMghCmeG2zDOpSGSv2TVzjqGEJ1VgFf9HIDjlRI0R+qspJx
0xtnh5aFf6XBJJFjPAWb7ozONpWyVtwgrvPaABPIdO4Pjqb98uDZqm2xcx1z/rbV
kJ9CrGIhSSushQ4Lv8yHmyLLSDYvteRQLIJHueDt8iPNjV/mgNNf9WX80fIbJWhc
adJ8BThw0oZ6mF/TyLAk8SYmLQwmrIJKtgcdVaA2vDAysLWQZ8N1FmnjAeuJ96TF
pFzgDIwM+MWwyrqEbCKt0vEW9nqE3T7M7ESZxQENq7zmt6fxqP1EW9mgXvZ3sLN4
RargTI31U1RDpA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:01:29 2025 by rpki-client