
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
File: QGHbehW9JPvKFGzRLMcNQTnIW58.mft (raw, json)
Hash identifier: 26cfWCG8NIal0lTbAYaDe5l5ajIDwrkqC4tiCj8/kdo=
Subject key identifier: CF:F4:88:B2:AC:2C:3E:DE:3A:30:ED:50:A9:2D:C5:F9:94:8E:42:BB
Authority key identifier: 40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
Certificate issuer: /CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Certificate serial: 019654933DFE2B535ADC15ADE331466F7BC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
Manifest number: 14CA
Signing time: Sun 20 Apr 2025 19:00:57 +0000
Manifest this update: Sun 20 Apr 2025 19:00:57 +0000
Manifest next update: Mon 21 Apr 2025 19:00:57 +0000
Files and hashes: 1: QGHbehW9JPvKFGzRLMcNQTnIW58.crl (hash: kKkL9PHtn7BiRHFH9Bx9D90tZNzVvk8/OrkOPbA16e8=)
2: o-ZlaW1WgunU3TjJVwdOR6husz0.roa (hash: 4yZiG/NqXqcKJ1Bdf8yQPmHJloI/I/ZH5JktUOUh3mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 19:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:93:3d:fe:2b:53:5a:dc:15:ad:e3:31:46:6f:7b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Validity
Not Before: Apr 20 19:00:57 2025 GMT
Not After : Apr 21 19:00:57 2025 GMT
Subject: CN=cff488b2ac2c3ede3a30ed50a92dc5f9948e42bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:40:5a:dc:61:e9:f5:ef:f8:46:61:35:a2:54:
0e:c2:aa:83:cf:17:30:78:ea:c2:3d:ff:98:1e:05:
7b:06:fe:ce:b7:ae:3d:fa:22:76:a6:06:ab:05:13:
44:04:44:a0:7e:d2:b2:00:36:27:c1:e4:88:1c:57:
28:91:91:3c:1b:0a:09:ee:eb:57:cf:52:2b:9f:e4:
d0:11:c9:5d:a0:ce:9f:d7:3a:01:ec:b8:0b:d6:a2:
fd:d6:99:e5:84:ab:30:9e:ca:76:fb:f6:9f:75:88:
2a:8f:a7:89:a3:55:75:5b:d5:50:4f:24:e4:67:21:
ca:00:88:76:47:38:0d:03:94:0f:13:a6:e0:f9:ea:
bd:a6:53:d2:50:1b:64:1e:96:c8:be:6a:1c:29:92:
38:5c:d6:b6:4d:cd:55:c9:2d:bd:fe:60:ca:69:fe:
25:e3:d6:6c:16:30:8c:44:68:e6:40:b7:48:af:ab:
46:d2:a9:7f:bf:3f:8b:c0:14:e6:c8:47:0e:fd:4c:
d9:5f:86:b8:02:f5:1b:1f:ed:67:8e:d9:c6:2b:1f:
b4:1c:74:ea:ba:d0:fc:62:7a:6c:38:62:63:f2:e1:
fa:85:58:d7:0a:6b:cd:91:52:e7:8c:63:88:18:dd:
0d:b0:0b:33:98:fa:6d:57:4a:2c:b2:4b:a9:d0:b3:
d0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:F4:88:B2:AC:2C:3E:DE:3A:30:ED:50:A9:2D:C5:F9:94:8E:42:BB
X509v3 Authority Key Identifier:
keyid:40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:ef:00:25:a2:7a:71:e5:9a:17:dd:c1:fe:dd:2a:4e:92:27:
f3:52:54:c2:10:97:3f:5d:82:b0:c5:cc:80:e5:f9:eb:65:30:
ac:58:18:0c:dc:3b:c0:df:8f:cc:fb:0f:8b:ef:e4:fa:3a:16:
e0:6d:3d:a7:1f:4f:a5:fe:3f:91:f0:6b:72:07:4a:e7:2c:3e:
92:58:e4:c2:fe:cc:f4:a1:17:8d:58:e4:65:5c:ea:26:35:df:
b8:15:d0:fa:eb:bd:90:11:e7:d5:95:90:2e:22:05:2a:a9:be:
3c:9a:0b:2e:a2:85:ab:47:6c:4b:1f:bc:76:ad:45:40:1b:30:
32:fd:4a:9a:0a:ad:b6:ee:3a:c3:14:93:96:1e:a7:28:63:d1:
fd:2f:ff:26:54:81:08:70:0e:eb:93:c7:63:98:5e:6b:9f:21:
e6:1d:a1:37:58:4b:17:c5:3b:ab:56:be:3c:0b:0e:6f:14:90:
ab:56:af:13:12:56:db:51:46:37:84:11:92:f4:fb:7a:cf:b0:
69:45:27:32:b2:fc:6f:43:8c:ba:40:25:f6:3d:1f:ab:2b:30:
69:7b:67:33:03:33:90:86:3e:9d:14:a3:ce:b7:0a:b6:cb:42:
e3:07:51:88:cd:cc:a9:83:5a:8b:0a:2f:ce:dc:aa:a7:d0:3f:
cb:00:e6:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUkz3+K1Na3BWt4zFGb3vGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwNjFkYjdhMTViZDI0ZmJjYTE0NmNkMTJjYzcwZDQxMzlj
ODViOWYwHhcNMjUwNDIwMTkwMDU3WhcNMjUwNDIxMTkwMDU3WjAzMTEwLwYDVQQD
EyhjZmY0ODhiMmFjMmMzZWRlM2EzMGVkNTBhOTJkYzVmOTk0OGU0MmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0Ba3GHp9e/4RmE1olQOwqqDzxcw
eOrCPf+YHgV7Bv7Ot649+iJ2pgarBRNEBESgftKyADYnweSIHFcokZE8GwoJ7utX
z1Irn+TQEcldoM6f1zoB7LgL1qL91pnlhKswnsp2+/afdYgqj6eJo1V1W9VQTyTk
ZyHKAIh2RzgNA5QPE6bg+eq9plPSUBtkHpbIvmocKZI4XNa2Tc1VyS29/mDKaf4l
49ZsFjCMRGjmQLdIr6tG0ql/vz+LwBTmyEcO/UzZX4a4AvUbH+1njtnGKx+0HHTq
utD8YnpsOGJj8uH6hVjXCmvNkVLnjGOIGN0NsAszmPptV0osskup0LPQ1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM/0iLKsLD7eOjDtUKktxfmUjkK7MB8GA1UdIwQY
MBaAFEBh23oVvST7yhRs0SzHDUE5yFufMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUdIYmVoVzlKUHZLRkd6UkxNY05RVG5JVzU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8wMDRjM2ItYWEzZi00ZDhiLTgyNmYt
MTk5ZDE0YzA2YmNiLzEvUUdIYmVoVzlKUHZLRkd6UkxNY05RVG5JVzU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8wMDRjM2ItYWEzZi00ZDhiLTgyNmYtMTk5ZDE0YzA2YmNi
LzEvUUdIYmVoVzlKUHZLRkd6UkxNY05RVG5JVzU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqu8AJaJ6
ceWaF93B/t0qTpIn81JUwhCXP12CsMXMgOX562UwrFgYDNw7wN+PzPsPi+/k+joW
4G09px9Ppf4/kfBrcgdK5yw+kljkwv7M9KEXjVjkZVzqJjXfuBXQ+uu9kBHn1ZWQ
LiIFKqm+PJoLLqKFq0dsSx+8dq1FQBswMv1Kmgqttu46wxSTlh6nKGPR/S//JlSB
CHAO65PHY5hea58h5h2hN1hLF8U7q1a+PAsObxSQq1avExJW21FGN4QRkvT7es+w
aUUnMrL8b0OMukAl9j0fqyswaXtnMwMzkIY+nRSjzrcKtstC4wdRiM3MqYNaiwov
ztyqp9A/ywDmow==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:45:31 2025 by rpki-client