Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
File: qltHHQugidnp9GwpExlnT6yBKNA.mft (raw, json)
Hash identifier: Qa9YfIyF25czx9fs2Oc/eosRLxTqNF5PZZ/tGgvZoH0=
Subject key identifier: E3:C1:49:DD:0F:6A:A4:24:03:15:0A:88:A1:70:C4:C6:8A:38:34:BE
Authority key identifier: AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
Certificate issuer: /CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Certificate serial: 01964142DAF05EF1BD6CF6B681D1D13AF73F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
Manifest number: 0B45
Signing time: Thu 17 Apr 2025 01:00:22 +0000
Manifest this update: Thu 17 Apr 2025 01:00:22 +0000
Manifest next update: Fri 18 Apr 2025 01:00:22 +0000
Files and hashes: 1: VNd90Fl0tWahsmhhQvhoAAT8f5U.roa (hash: U+zi8hpH0S9lksZLxaBLhZX/Hg0tdOzYwVmTSHbyaHY=)
2: oPUfgQs_gRyUUqFixo17ClnZdws.roa (hash: BRanyzZIskjVzme1gyyyKAnXC2WxzE9xAlEA/GqswiQ=)
3: qltHHQugidnp9GwpExlnT6yBKNA.crl (hash: eF7vlb+S/4TsOe7NUG6F7Zzkc4UVxoZywXIGWqP5Tas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:42:da:f0:5e:f1:bd:6c:f6:b6:81:d1:d1:3a:f7:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Validity
Not Before: Apr 17 01:00:22 2025 GMT
Not After : Apr 18 01:00:22 2025 GMT
Subject: CN=e3c149dd0f6aa42403150a88a170c4c68a3834be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:37:82:16:88:c9:97:04:b2:ac:b1:90:84:ac:
f9:ff:51:99:86:ef:7d:a9:54:64:7d:d3:21:20:10:
9b:1e:6f:dc:e0:db:1a:90:81:1f:c0:b6:b9:73:ef:
dc:b6:5b:27:aa:d2:38:e2:3b:17:07:fa:3a:e1:1b:
5c:54:70:8d:1c:f9:1d:01:d1:f2:a9:f4:a7:71:51:
e4:cb:2a:14:04:f3:7b:7b:a6:4f:8c:6b:e8:cd:bf:
62:d4:0a:5f:1e:47:10:65:4a:d3:39:9a:74:ac:48:
e2:4b:eb:25:f7:ab:cb:d9:0c:c9:87:3f:b5:ac:25:
e2:b9:9f:31:4c:1a:ab:ab:4f:b9:d6:c2:ea:8e:51:
e9:92:a5:cd:ec:11:e6:40:08:f0:37:1e:57:0d:23:
63:5a:58:06:67:d8:5f:3f:82:b4:f1:53:c3:69:53:
6a:f4:ee:45:81:6e:2c:51:1e:5b:b7:6c:3f:85:b7:
84:fe:87:c2:3a:6c:a6:29:a5:04:46:03:8d:29:10:
cb:8b:59:c7:b9:bc:1b:ce:41:3a:09:87:3c:0c:49:
20:96:cd:e7:fb:52:4a:bf:d1:b0:13:3c:59:18:9d:
32:8b:bd:8a:13:b8:28:d3:89:77:71:f1:a7:63:b7:
d5:4e:8c:57:4c:73:cf:2d:25:d4:2b:4d:e7:77:4d:
1d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C1:49:DD:0F:6A:A4:24:03:15:0A:88:A1:70:C4:C6:8A:38:34:BE
X509v3 Authority Key Identifier:
keyid:AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:c1:5d:9c:1f:54:f3:99:ff:f2:f2:29:cb:ec:02:44:cc:48:
9c:70:06:d8:af:4a:dc:da:e1:a8:f1:ee:b4:09:c7:87:ff:0f:
93:37:f9:bc:fa:2c:a9:e3:63:af:f1:73:aa:0a:01:7e:0a:de:
ae:88:ba:aa:7e:2e:84:40:03:87:63:57:f9:d9:00:fe:86:7f:
42:35:e1:02:7c:cb:64:a1:3e:c9:c5:27:e5:ee:06:33:e4:f2:
93:61:3c:2b:14:e9:9c:9c:df:27:c5:91:b8:81:5c:e0:35:e7:
cc:c9:ba:60:64:24:04:49:b3:99:0c:63:b9:47:35:3f:e3:cc:
33:b7:39:37:4f:55:76:81:17:6c:57:f8:49:c2:ed:90:d9:98:
d3:36:06:e5:a8:7f:65:84:54:67:65:a2:f9:64:aa:5b:56:41:
72:f8:40:84:41:6c:eb:60:bd:37:e6:cc:00:bf:9e:f1:e8:a3:
0d:4e:4f:b7:8d:32:17:93:ef:5f:38:dc:18:ba:3e:4f:8f:60:
21:d3:5b:53:e0:45:21:d3:cb:db:a5:77:09:61:6b:9a:e6:ec:
12:d2:6e:c2:de:b0:09:a1:0b:55:9d:a3:13:31:4c:a2:18:3c:
8d:43:42:9e:12:64:a4:37:97:06:47:12:ec:25:77:5a:9f:bd:
ca:0f:37:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZBQtrwXvG9bPa2gdHROvc/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNWI0NzFkMGJhMDg5ZDllOWY0NmMyOTEzMTk2NzRmYWM4
MTI4ZDAwHhcNMjUwNDE3MDEwMDIyWhcNMjUwNDE4MDEwMDIyWjAzMTEwLwYDVQQD
EyhlM2MxNDlkZDBmNmFhNDI0MDMxNTBhODhhMTcwYzRjNjhhMzgzNGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDeCFojJlwSyrLGQhKz5/1GZhu99
qVRkfdMhIBCbHm/c4NsakIEfwLa5c+/ctlsnqtI44jsXB/o64RtcVHCNHPkdAdHy
qfSncVHkyyoUBPN7e6ZPjGvozb9i1ApfHkcQZUrTOZp0rEjiS+sl96vL2QzJhz+1
rCXiuZ8xTBqrq0+51sLqjlHpkqXN7BHmQAjwNx5XDSNjWlgGZ9hfP4K08VPDaVNq
9O5FgW4sUR5bt2w/hbeE/ofCOmymKaUERgONKRDLi1nHubwbzkE6CYc8DEkgls3n
+1JKv9GwEzxZGJ0yi72KE7go04l3cfGnY7fVToxXTHPPLSXUK03nd00dAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOPBSd0PaqQkAxUKiKFwxMaKODS+MB8GA1UdIwQY
MBaAFKpbRx0LoInZ6fRsKRMZZ0+sgSjQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80YmUwMjctODhlOS00N2UzLWJiODgt
NmYyZTI1MjliZTgyLzEvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS80YmUwMjctODhlOS00N2UzLWJiODgtNmYyZTI1MjliZTgy
LzEvcWx0SEhRdWdpZG5wOUd3cEV4bG5UNnlCS05BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHMFdnB9U
85n/8vIpy+wCRMxInHAG2K9K3NrhqPHutAnHh/8Pkzf5vPosqeNjr/FzqgoBfgre
roi6qn4uhEADh2NX+dkA/oZ/QjXhAnzLZKE+ycUn5e4GM+Tyk2E8KxTpnJzfJ8WR
uIFc4DXnzMm6YGQkBEmzmQxjuUc1P+PMM7c5N09VdoEXbFf4ScLtkNmY0zYG5ah/
ZYRUZ2Wi+WSqW1ZBcvhAhEFs62C9N+bMAL+e8eijDU5Pt40yF5PvXzjcGLo+T49g
IdNbU+BFIdPL26V3CWFrmubsEtJuwt6wCaELVZ2jEzFMohg8jUNCnhJkpDeXBkcS
7CV3Wp+9yg83ew==
-----END CERTIFICATE-----
Generated at Thu Apr 17 05:43:56 2025 by rpki-client