Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
File: qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft (raw, json)
Hash identifier: nbCUhXXyBAc5kX4NenCZzceuEGveIdWf422BH0Yp+rs=
Subject key identifier: F3:B1:BA:F8:0C:41:B3:57:E1:2D:0D:94:02:D1:F7:44:DA:BB:24:70
Authority key identifier: AA:7C:64:35:A8:50:F0:C5:E9:9A:9C:E0:51:F3:4B:DB:53:22:2F:04
Certificate issuer: /CN=aa7c6435a850f0c5e99a9ce051f34bdb53222f04
Certificate serial: 019510C73EEE8F3514A1007ADC3B3DA1B320
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
Manifest number: 04F2
Signing time: Sun 16 Feb 2025 22:00:47 +0000
Manifest this update: Sun 16 Feb 2025 22:00:47 +0000
Manifest next update: Mon 17 Feb 2025 22:00:47 +0000
Files and hashes: 1: qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl (hash: 5bX7tZ0OEGQjesimoWiNfLyEaP8OpnpomxzQCID9cvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:3e:ee:8f:35:14:a1:00:7a:dc:3b:3d:a1:b3:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa7c6435a850f0c5e99a9ce051f34bdb53222f04
Validity
Not Before: Feb 16 22:00:47 2025 GMT
Not After : Feb 17 22:00:47 2025 GMT
Subject: CN=f3b1baf80c41b357e12d0d9402d1f744dabb2470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a8:a5:eb:a8:49:b2:3a:e2:5d:54:be:c6:27:
92:7e:89:ed:d4:07:be:8e:f6:84:ac:d1:ef:f6:04:
65:be:9a:48:ca:16:6e:82:2b:f0:14:c3:e3:08:50:
4e:5a:fa:44:77:b9:3f:53:24:ca:2e:2b:13:a9:ed:
c7:f7:f5:cf:20:09:d9:96:b1:dd:88:98:57:53:7a:
8d:7d:61:ab:83:05:cc:9d:5e:6b:8a:04:94:e0:ad:
91:b4:cc:ad:ef:9e:01:92:8d:7e:f6:72:e0:1a:3e:
0a:a3:0d:1c:7d:fe:28:16:95:01:2b:56:7f:ab:f6:
eb:12:6a:5e:1f:30:4f:cf:62:6f:46:1c:bc:06:31:
f5:6a:de:c7:3e:33:9a:d9:b2:e9:5f:14:7c:a5:5d:
3f:ee:e5:6d:8c:54:33:d1:d0:9c:15:9d:2e:a8:64:
d6:5f:af:fb:f2:2e:5e:9c:72:88:d9:fa:16:b2:ac:
0e:e0:8f:7e:eb:9d:47:97:17:42:8e:d2:79:8d:60:
1d:93:f4:0a:ce:dd:cc:ce:c8:55:c8:4e:12:7b:3f:
aa:a2:ad:50:d0:1d:1e:06:2e:d8:11:d5:67:2a:a9:
38:7d:a9:39:8e:ea:45:9a:b0:73:2a:14:5e:76:57:
64:2c:23:b1:f9:fc:76:31:e0:d8:4c:61:af:6c:40:
37:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B1:BA:F8:0C:41:B3:57:E1:2D:0D:94:02:D1:F7:44:DA:BB:24:70
X509v3 Authority Key Identifier:
keyid:AA:7C:64:35:A8:50:F0:C5:E9:9A:9C:E0:51:F3:4B:DB:53:22:2F:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:59:46:dc:30:5b:ac:a0:6b:9d:b4:8c:c5:d5:86:ce:bb:2c:
cd:5f:7e:82:05:5e:b1:ad:df:ca:52:f7:5d:a4:cf:f1:f1:15:
dd:7f:f2:45:10:0a:7b:74:e2:4c:57:b5:d5:45:af:fa:e0:b5:
89:ad:c0:df:d4:be:22:05:17:4d:a6:0d:a2:ac:76:8b:0c:f9:
8a:fa:80:6a:7c:2a:97:95:71:ca:c4:43:fb:80:ac:95:e1:9d:
31:fd:04:d4:bc:b0:84:2b:e9:d9:88:62:69:07:79:0a:c1:c7:
ef:d4:8c:d7:0a:46:4c:4b:d1:c3:b4:87:de:4a:38:a5:b1:09:
88:f2:c0:92:40:4d:b5:70:5e:ea:d7:13:d7:f0:49:4d:b0:4b:
05:4d:ba:86:8c:8a:62:15:e4:b8:83:b2:c8:7b:d8:ac:ae:49:
a0:5b:09:40:1c:c0:07:99:90:3d:22:e9:16:7b:9b:31:d8:fd:
10:20:15:83:49:f2:76:24:70:b4:63:a8:ce:02:bc:c7:74:a3:
ef:8a:f4:b4:65:f8:65:3e:4e:dc:e8:83:e0:07:52:80:c1:b0:
65:9d:b1:92:ef:e0:10:66:ed:d0:eb:0d:6c:59:38:17:c5:8e:
c8:f5:0b:8a:57:a4:2e:8b:33:36:bd:1b:7c:9d:b5:db:ae:0a:
83:d2:c2:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQxz7ujzUUoQB63Ds9obMgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhN2M2NDM1YTg1MGYwYzVlOTlhOWNlMDUxZjM0YmRiNTMy
MjJmMDQwHhcNMjUwMjE2MjIwMDQ3WhcNMjUwMjE3MjIwMDQ3WjAzMTEwLwYDVQQD
EyhmM2IxYmFmODBjNDFiMzU3ZTEyZDBkOTQwMmQxZjc0NGRhYmIyNDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0qil66hJsjriXVS+xieSfont1Ae+
jvaErNHv9gRlvppIyhZugivwFMPjCFBOWvpEd7k/UyTKLisTqe3H9/XPIAnZlrHd
iJhXU3qNfWGrgwXMnV5rigSU4K2RtMyt754Bko1+9nLgGj4Kow0cff4oFpUBK1Z/
q/brEmpeHzBPz2JvRhy8BjH1at7HPjOa2bLpXxR8pV0/7uVtjFQz0dCcFZ0uqGTW
X6/78i5enHKI2foWsqwO4I9+651HlxdCjtJ5jWAdk/QKzt3MzshVyE4Sez+qoq1Q
0B0eBi7YEdVnKqk4fak5jupFmrBzKhRedldkLCOx+fx2MeDYTGGvbEA3RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPOxuvgMQbNX4S0NlALR90TauyRwMB8GA1UdIwQY
MBaAFKp8ZDWoUPDF6Zqc4FHzS9tTIi8EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW54a05haFE4TVhwbXB6Z1VmTkwyMU1pTHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC80ZDkwOTMtZmI2ZC00N2Y2LThhY2Qt
Yzc4MGVkNjEyMzY2LzEvcW54a05haFE4TVhwbXB6Z1VmTkwyMU1pTHdRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC80ZDkwOTMtZmI2ZC00N2Y2LThhY2QtYzc4MGVkNjEyMzY2
LzEvcW54a05haFE4TVhwbXB6Z1VmTkwyMU1pTHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc1lG3DBb
rKBrnbSMxdWGzrsszV9+ggVesa3fylL3XaTP8fEV3X/yRRAKe3TiTFe11UWv+uC1
ia3A39S+IgUXTaYNoqx2iwz5ivqAanwql5VxysRD+4CsleGdMf0E1LywhCvp2Yhi
aQd5CsHH79SM1wpGTEvRw7SH3ko4pbEJiPLAkkBNtXBe6tcT1/BJTbBLBU26hoyK
YhXkuIOyyHvYrK5JoFsJQBzAB5mQPSLpFnubMdj9ECAVg0nydiRwtGOozgK8x3Sj
74r0tGX4ZT5O3OiD4AdSgMGwZZ2xku/gEGbt0OsNbFk4F8WOyPULilekLoszNr0b
fJ21264Kg9LCVA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:36 2025 by rpki-client