Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
File: hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft (raw, json)
Hash identifier: GUM/osz/lsJViQQNkL9vaEWxe5UlUo0NGt3xN3du5MI=
Subject key identifier: 01:E2:80:DD:83:F8:BF:17:B7:80:00:82:07:8E:5E:02:E1:59:EA:CC
Authority key identifier: 85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4
Certificate issuer: /CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4
Certificate serial: 0196515AE51CEBDA6CF7F2BD69C11E626A1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
Manifest number: 14F8
Signing time: Sun 20 Apr 2025 04:00:33 +0000
Manifest this update: Sun 20 Apr 2025 04:00:33 +0000
Manifest next update: Mon 21 Apr 2025 04:00:33 +0000
Files and hashes: 1: hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl (hash: iuYt5cPkzVfsyHXGTxB85ruec8/N/Ey8CWFdJouK/a0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5a:e5:1c:eb:da:6c:f7:f2:bd:69:c1:1e:62:6a:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4
Validity
Not Before: Apr 20 04:00:33 2025 GMT
Not After : Apr 21 04:00:33 2025 GMT
Subject: CN=01e280dd83f8bf17b7800082078e5e02e159eacc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2e:c1:4c:a8:ab:ee:5d:26:b0:f4:89:3b:4d:
3f:b0:6b:ca:73:0b:23:ba:fd:c2:f3:5d:90:48:0c:
63:3c:99:a9:b2:68:c4:99:1a:fd:5b:8b:17:13:7b:
06:01:e9:d2:d7:2c:d2:06:a1:dd:8b:c6:e2:fb:43:
82:3a:8a:22:a1:e5:22:be:0a:a3:22:26:f6:e3:d9:
25:31:75:15:04:59:60:7f:78:cb:02:04:c5:ba:82:
8d:a0:11:da:8e:4b:38:d7:4e:08:88:01:03:51:08:
79:9e:39:06:e1:59:cb:5e:c6:dc:dd:c1:b4:d9:9e:
82:e9:5a:4a:e8:20:76:c9:b3:b8:7b:b5:b2:87:d0:
8b:e3:62:b8:57:66:eb:04:d0:13:bc:5e:50:f4:28:
8f:a5:ea:1c:52:4d:9b:87:87:5d:80:ca:36:ad:ff:
db:cc:7f:21:b1:0c:56:87:c6:33:66:f8:3a:cb:ff:
c0:4e:b5:38:e3:69:a4:81:27:a2:ac:5b:b0:7b:ae:
0d:e3:15:1e:1f:6b:ed:26:06:de:7f:77:bb:d5:a9:
17:bb:6c:5e:2b:c5:56:fb:f5:66:13:75:68:d1:18:
de:c5:ff:e6:33:95:09:be:88:56:fe:da:09:08:0f:
ea:3e:56:d7:41:76:f2:8f:fc:12:55:aa:c8:3d:ff:
bc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E2:80:DD:83:F8:BF:17:B7:80:00:82:07:8E:5E:02:E1:59:EA:CC
X509v3 Authority Key Identifier:
keyid:85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:c9:72:b5:22:4d:63:59:13:8f:e5:7c:a5:bc:f9:22:1e:f7:
07:fd:01:da:7f:83:a8:32:9d:f6:63:92:ae:9a:b2:07:f8:93:
71:e9:cc:d4:ab:88:a4:8d:4c:e6:0b:07:d4:2f:29:83:65:2c:
e9:d6:92:4e:08:e2:b1:9f:16:df:9d:87:26:5f:95:98:a0:5f:
b5:13:c9:aa:66:7c:cd:25:da:4b:33:5e:b7:e1:4e:36:e8:b8:
bc:ec:c0:37:21:95:21:b6:d4:24:e6:d2:5f:7a:b4:36:62:d5:
d6:75:93:7f:e2:a0:51:71:60:a9:a1:33:71:5a:1c:c2:4e:00:
41:1a:e2:8e:7d:ac:23:d2:95:8a:b6:84:ca:0b:69:7c:a6:6b:
76:e8:41:a0:65:f2:98:e7:63:da:66:72:10:0b:db:bf:0b:b4:
a6:d5:83:d3:48:0f:51:26:13:37:6f:7a:6d:14:6a:13:29:2b:
59:b2:17:56:5f:f1:26:9b:39:68:55:4d:1f:82:96:0b:c7:c7:
5a:a4:30:63:78:a8:42:05:c6:8c:43:bc:ca:9a:bd:24:25:ef:
11:46:52:dd:0b:30:13:73:52:ed:44:e6:fe:9c:57:d3:fb:70:
46:08:ce:e9:dd:46:f7:8b:c0:9f:d0:a8:cd:28:55:14:0e:ec:
4a:67:ec:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZRWuUc69ps9/K9acEeYmoeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MDEyM2U0Y2UyYjgwZWJmMTJlNDNmZWU0YjFjMThjNWM3
M2QzYjQwHhcNMjUwNDIwMDQwMDMzWhcNMjUwNDIxMDQwMDMzWjAzMTEwLwYDVQQD
EygwMWUyODBkZDgzZjhiZjE3Yjc4MDAwODIwNzhlNWUwMmUxNTllYWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwy7BTKir7l0msPSJO00/sGvKcwsj
uv3C812QSAxjPJmpsmjEmRr9W4sXE3sGAenS1yzSBqHdi8bi+0OCOooioeUivgqj
Iib249klMXUVBFlgf3jLAgTFuoKNoBHajks4104IiAEDUQh5njkG4VnLXsbc3cG0
2Z6C6VpK6CB2ybO4e7Wyh9CL42K4V2brBNATvF5Q9CiPpeocUk2bh4ddgMo2rf/b
zH8hsQxWh8YzZvg6y//ATrU442mkgSeirFuwe64N4xUeH2vtJgbef3e71akXu2xe
K8VW+/VmE3Vo0Rjexf/mM5UJvohW/toJCA/qPlbXQXbyj/wSVarIPf+8/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAHigN2D+L8Xt4AAggeOXgLhWerMMB8GA1UdIwQY
MBaAFIUBI+TOK4Dr8S5D/uSxwYxcc9O0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFFFajVNNHJnT3Z4TGtQLTVMSEJqRnh6MDdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My85OGI1ZGQtN2RlZS00ZjRlLTljZDEt
MTYzMjBkMDE0YzA0LzEvaFFFajVNNHJnT3Z4TGtQLTVMSEJqRnh6MDdRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My85OGI1ZGQtN2RlZS00ZjRlLTljZDEtMTYzMjBkMDE0YzA0
LzEvaFFFajVNNHJnT3Z4TGtQLTVMSEJqRnh6MDdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyMlytSJN
Y1kTj+V8pbz5Ih73B/0B2n+DqDKd9mOSrpqyB/iTcenM1KuIpI1M5gsH1C8pg2Us
6daSTgjisZ8W352HJl+VmKBftRPJqmZ8zSXaSzNet+FONui4vOzANyGVIbbUJObS
X3q0NmLV1nWTf+KgUXFgqaEzcVocwk4AQRrijn2sI9KViraEygtpfKZrduhBoGXy
mOdj2mZyEAvbvwu0ptWD00gPUSYTN296bRRqEykrWbIXVl/xJps5aFVNH4KWC8fH
WqQwY3ioQgXGjEO8ypq9JCXvEUZS3QswE3NS7UTm/pxX0/twRgjO6d1G94vAn9Co
zShVFA7sSmfs/A==
-----END CERTIFICATE-----
Generated at Sun Apr 20 14:18:22 2025 by rpki-client