Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
File: QGYnM7yHPRPh-fZujf91yCDV0vc.mft (raw, json)
Hash identifier: 6ZJ5p4rxWG5ZnaJQ8pZaQ6PHFEykX5tKBSfuJWOzEYo=
Subject key identifier: 8C:41:B4:DC:7B:61:77:3F:C8:E6:B0:65:AF:C9:34:AA:E6:3A:4F:FA
Authority key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
Certificate issuer: /CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Certificate serial: 0196504897B8923403FCA6FE78FAA0D97202
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
Manifest number: 0CFE
Signing time: Sat 19 Apr 2025 23:00:56 +0000
Manifest this update: Sat 19 Apr 2025 23:00:56 +0000
Manifest next update: Sun 20 Apr 2025 23:00:56 +0000
Files and hashes: 1: NiWsr1aAeWW2oN08xcS5Irqnn3Q.roa (hash: 2xUbIvKWWmEdUess43urc5rTq8I0ZstZadOhJMax4HI=)
2: QGYnM7yHPRPh-fZujf91yCDV0vc.crl (hash: E46mfG2xBqb2VCXHfs9CZ0HKcNWJR/MdnYQPa/ATlOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:97:b8:92:34:03:fc:a6:fe:78:fa:a0:d9:72:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Validity
Not Before: Apr 19 23:00:56 2025 GMT
Not After : Apr 20 23:00:56 2025 GMT
Subject: CN=8c41b4dc7b61773fc8e6b065afc934aae63a4ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cd:3c:26:f5:b4:97:f0:61:8c:c4:f7:e2:f6:
49:e5:04:8f:b3:b5:a0:e5:d0:f4:d8:23:a7:18:25:
c1:2e:6a:67:fa:b5:7b:cf:74:db:91:62:65:52:ce:
90:f5:00:8a:3a:98:01:6c:3f:24:b2:db:98:0c:10:
cf:3a:94:98:aa:e6:53:f9:ea:a0:4d:0a:7d:20:23:
33:36:60:cd:79:76:c6:84:fd:75:a0:43:43:af:0d:
fa:2c:30:d7:42:d2:32:e1:c8:c4:4a:7a:15:59:7f:
ff:4d:3f:a0:16:6a:d3:b0:f0:9a:cb:aa:10:7f:59:
ee:f3:56:de:50:d1:a5:38:29:fb:32:2d:82:84:84:
f4:d5:0d:b2:0f:f3:3d:53:c2:ce:31:07:c8:6c:8d:
b1:1c:13:c4:1d:20:d7:5d:40:a4:aa:34:50:d4:0d:
fa:c3:dd:47:5c:dc:b8:4f:0f:3e:7b:bb:db:0d:53:
83:8f:06:29:9a:b9:cc:12:27:20:1f:91:31:cf:76:
b2:0e:37:75:1b:f8:4e:dd:5f:c3:9a:f6:8a:64:a4:
0b:ae:11:f9:24:fe:ec:f1:88:3f:e7:de:62:69:ef:
e2:98:38:4f:9a:dc:83:c8:61:ff:eb:9b:1a:b5:db:
b8:2b:c5:e8:74:64:20:32:39:88:3d:8c:27:d7:25:
f2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:41:B4:DC:7B:61:77:3F:C8:E6:B0:65:AF:C9:34:AA:E6:3A:4F:FA
X509v3 Authority Key Identifier:
keyid:40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:49:33:e3:21:87:68:3a:5c:06:5d:fd:36:8c:aa:30:e0:5a:
e0:dd:04:2b:4d:e1:aa:bf:2c:a1:0d:1a:6b:0e:57:94:57:22:
08:bf:28:28:f5:1b:13:64:c3:54:91:bb:0d:6b:65:8a:65:9c:
4c:7b:39:e7:e6:50:73:3d:c9:92:6d:b8:b9:41:cc:76:0f:05:
d4:ef:73:0c:c1:17:98:62:1b:53:49:60:95:89:9b:2c:6d:42:
d5:2f:65:cd:63:49:b6:74:cb:69:ba:34:7e:d2:de:72:af:63:
25:34:e5:3f:51:2b:22:c1:e8:8c:13:c1:f5:27:70:fe:76:ff:
f4:97:12:39:81:3f:34:a2:99:ac:22:4d:cc:c5:36:2d:0d:5f:
d8:5f:f3:e8:dd:cc:52:50:e4:9c:99:ad:e0:ba:33:3d:70:c5:
f6:40:b9:69:42:82:42:c5:ca:d8:4e:71:5d:de:a5:9d:2c:ad:
ef:16:66:4d:01:1a:a6:68:93:88:16:97:e2:a6:0c:37:9c:b7:
b3:98:ad:40:a3:ce:b5:39:96:7a:f7:59:4c:de:c1:63:97:e0:
90:fb:8e:8e:60:db:9f:a4:af:71:0e:8f:28:d8:6f:a3:90:e9:
4a:b4:c6:6d:31:77:01:a7:8b:6a:58:20:46:eb:a3:5f:9c:85:
e7:be:be:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZQSJe4kjQD/Kb+ePqg2XICMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwNjYyNzMzYmM4NzNkMTNlMWY5ZjY2ZThkZmY3NWM4MjBk
NWQyZjcwHhcNMjUwNDE5MjMwMDU2WhcNMjUwNDIwMjMwMDU2WjAzMTEwLwYDVQQD
Eyg4YzQxYjRkYzdiNjE3NzNmYzhlNmIwNjVhZmM5MzRhYWU2M2E0ZmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxM08JvW0l/BhjMT34vZJ5QSPs7Wg
5dD02COnGCXBLmpn+rV7z3TbkWJlUs6Q9QCKOpgBbD8kstuYDBDPOpSYquZT+eqg
TQp9ICMzNmDNeXbGhP11oENDrw36LDDXQtIy4cjESnoVWX//TT+gFmrTsPCay6oQ
f1nu81beUNGlOCn7Mi2ChIT01Q2yD/M9U8LOMQfIbI2xHBPEHSDXXUCkqjRQ1A36
w91HXNy4Tw8+e7vbDVODjwYpmrnMEicgH5Exz3ayDjd1G/hO3V/DmvaKZKQLrhH5
JP7s8Yg/595iae/imDhPmtyDyGH/65satdu4K8XodGQgMjmIPYwn1yXygQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIxBtNx7YXc/yOawZa/JNKrmOk/6MB8GA1UdIwQY
MBaAFEBmJzO8hz0T4fn2bo3/dcgg1dL3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9kOTEwZDEtOTRjNi00NDEyLTg1MDYt
OWNiNTFlNTFmZjc3LzEvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9kOTEwZDEtOTRjNi00NDEyLTg1MDYtOWNiNTFlNTFmZjc3
LzEvUUdZbk03eUhQUlBoLWZadWpmOTF5Q0RWMHZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQEkz4yGH
aDpcBl39NoyqMOBa4N0EK03hqr8soQ0aaw5XlFciCL8oKPUbE2TDVJG7DWtlimWc
THs55+ZQcz3Jkm24uUHMdg8F1O9zDMEXmGIbU0lglYmbLG1C1S9lzWNJtnTLabo0
ftLecq9jJTTlP1ErIsHojBPB9Sdw/nb/9JcSOYE/NKKZrCJNzMU2LQ1f2F/z6N3M
UlDknJmt4LozPXDF9kC5aUKCQsXK2E5xXd6lnSyt7xZmTQEapmiTiBaX4qYMN5y3
s5itQKPOtTmWevdZTN7BY5fgkPuOjmDbn6SvcQ6PKNhvo5DpSrTGbTF3AaeLalgg
RuujX5yF576+UQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:53:57 2025 by rpki-client