Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
File: qnD7s9sihDfWBXmaxPRZjSLhPhs.mft (raw, json)
Hash identifier: 1A4Gudd6Nu3/JXQtOwh3C4sTnHQSlXS0ZaFhUaearRQ=
Subject key identifier: 08:56:6E:B6:86:49:9A:40:04:1B:FF:F9:02:11:4F:42:D7:9A:C0:3A
Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Certificate serial: 01963FFA74E6D13D631CBE159381DE111869
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
Manifest number: 14F4
Signing time: Wed 16 Apr 2025 19:01:40 +0000
Manifest this update: Wed 16 Apr 2025 19:01:40 +0000
Manifest next update: Thu 17 Apr 2025 19:01:40 +0000
Files and hashes: 1: JDPCHXAUbfBXZ-JAE6cFE-tGXMI.roa (hash: bOxTgT+7J9XF4HocPumdm4M3ak6meIWnJq5cg5Hpmfs=)
2: qnD7s9sihDfWBXmaxPRZjSLhPhs.crl (hash: W86uI2uW7twt8g/HSMdNvfW/V5o7+fZ0Qzvx7/zG7ac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:fa:74:e6:d1:3d:63:1c:be:15:93:81:de:11:18:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Validity
Not Before: Apr 16 19:01:40 2025 GMT
Not After : Apr 17 19:01:40 2025 GMT
Subject: CN=08566eb686499a40041bfff902114f42d79ac03a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b3:6a:89:e1:4e:b9:0b:bc:90:8b:31:b2:03:
a7:95:7f:25:7b:2f:45:9f:cd:72:f7:49:68:de:eb:
e5:2b:74:3f:5a:2b:54:14:a6:22:ac:86:72:c9:e8:
20:bc:86:93:7e:fb:70:66:39:85:03:50:01:f6:78:
cd:c9:a8:a2:dc:1b:f8:d5:bb:a2:21:ba:c9:2a:e1:
9f:e7:0b:22:8a:4e:89:c7:ae:e9:ad:51:7f:df:8e:
60:ef:b4:99:f6:28:5b:24:24:20:3d:05:6b:df:55:
81:6e:a4:bc:c9:6f:b5:5e:61:e8:ff:27:68:3a:6e:
a6:85:7d:8c:0c:84:86:5e:1b:de:b5:14:b5:ef:33:
f6:97:bc:97:bc:0f:a9:e7:af:2a:d0:8b:50:62:bf:
47:05:be:4d:60:63:6b:16:a2:6a:c1:34:f1:21:0f:
84:aa:37:49:b1:24:8a:13:70:13:7e:79:a0:a8:e3:
10:01:e1:ac:14:eb:6d:67:01:48:c5:53:d1:2e:47:
11:f6:d5:5e:9e:6c:e2:4f:7f:b5:df:91:67:28:76:
43:3b:4f:fa:e1:35:3b:74:d2:89:b2:48:6e:25:68:
c3:11:62:2c:70:81:f7:b2:fe:f0:43:3d:d8:57:94:
c7:b1:bf:18:99:ac:f4:2c:82:ba:c5:a0:53:c8:03:
4c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:56:6E:B6:86:49:9A:40:04:1B:FF:F9:02:11:4F:42:D7:9A:C0:3A
X509v3 Authority Key Identifier:
keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:a4:68:cf:b2:5a:6f:a6:20:09:db:c7:b9:27:38:e4:77:27:
9e:7f:01:0f:c7:a5:d8:60:d9:6f:45:fc:3c:5c:64:8d:5c:70:
7c:18:38:ea:21:09:c9:a0:23:0a:b1:9a:46:1e:ff:8a:73:42:
ef:79:4f:a1:58:9e:03:1b:b9:ca:a5:ea:14:17:8e:ee:fd:3a:
a3:e8:6e:eb:e7:bd:6a:4d:b8:18:a0:50:33:a8:91:7c:93:86:
36:aa:ce:1b:90:b6:5d:4d:ad:10:e7:5a:18:57:14:00:4f:10:
e9:29:64:cb:4b:95:dc:49:9e:1c:cb:67:c6:ec:c6:43:64:91:
fa:24:57:47:36:bb:61:b0:b8:27:56:4e:02:47:be:5b:23:8e:
48:52:cf:89:06:aa:71:35:e9:7e:14:e2:02:64:82:04:10:93:
47:5f:91:dd:78:48:54:fe:40:b6:5b:a6:e0:8c:10:46:94:5d:
3d:ee:6e:b0:ab:4c:48:7d:82:9a:65:d0:fa:f7:55:1a:ae:fb:
38:0f:da:13:b5:18:06:86:ff:43:84:e6:5b:3c:50:51:c1:92:
d4:f5:cf:c4:23:87:55:66:ce:09:18:14:38:3a:cb:64:3d:de:
ca:da:e1:6c:86:31:6d:85:c0:6d:e6:9e:90:88:01:28:bc:57:
90:c7:21:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY/+nTm0T1jHL4Vk4HeERhpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNzBmYmIzZGIyMjg0MzdkNjA1Nzk5YWM0ZjQ1OThkMjJl
MTNlMWIwHhcNMjUwNDE2MTkwMTQwWhcNMjUwNDE3MTkwMTQwWjAzMTEwLwYDVQQD
EygwODU2NmViNjg2NDk5YTQwMDQxYmZmZjkwMjExNGY0MmQ3OWFjMDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7NqieFOuQu8kIsxsgOnlX8ley9F
n81y90lo3uvlK3Q/WitUFKYirIZyyeggvIaTfvtwZjmFA1AB9njNyaii3Bv41bui
IbrJKuGf5wsiik6Jx67prVF/345g77SZ9ihbJCQgPQVr31WBbqS8yW+1XmHo/ydo
Om6mhX2MDISGXhvetRS17zP2l7yXvA+p568q0ItQYr9HBb5NYGNrFqJqwTTxIQ+E
qjdJsSSKE3ATfnmgqOMQAeGsFOttZwFIxVPRLkcR9tVenmziT3+135FnKHZDO0/6
4TU7dNKJskhuJWjDEWIscIH3sv7wQz3YV5THsb8Ymaz0LIK6xaBTyANMdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAhWbraGSZpABBv/+QIRT0LXmsA6MB8GA1UdIwQY
MBaAFKpw+7PbIoQ31gV5msT0WY0i4T4bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW5EN3M5c2loRGZXQlhtYXhQUlpqU0xoUGhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9kOGUxODQtZTc5Yi00N2ZlLTk2ZGMt
NWJhNDIzNWNlNjE5LzEvcW5EN3M5c2loRGZXQlhtYXhQUlpqU0xoUGhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9kOGUxODQtZTc5Yi00N2ZlLTk2ZGMtNWJhNDIzNWNlNjE5
LzEvcW5EN3M5c2loRGZXQlhtYXhQUlpqU0xoUGhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs6Roz7Ja
b6YgCdvHuSc45Hcnnn8BD8el2GDZb0X8PFxkjVxwfBg46iEJyaAjCrGaRh7/inNC
73lPoVieAxu5yqXqFBeO7v06o+hu6+e9ak24GKBQM6iRfJOGNqrOG5C2XU2tEOda
GFcUAE8Q6Slky0uV3EmeHMtnxuzGQ2SR+iRXRza7YbC4J1ZOAke+WyOOSFLPiQaq
cTXpfhTiAmSCBBCTR1+R3XhIVP5Atlum4IwQRpRdPe5usKtMSH2CmmXQ+vdVGq77
OA/aE7UYBob/Q4TmWzxQUcGS1PXPxCOHVWbOCRgUODrLZD3eytrhbIYxbYXAbeae
kIgBKLxXkMch2A==
-----END CERTIFICATE-----
Generated at Thu Apr 17 01:15:08 2025 by rpki-client