Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json)
Hash identifier: xnV8ZYHtHZDHHJmOH32KxZL6pi25UN9djqE5J++UAqc=
Subject key identifier: 07:27:5D:40:C0:3E:DC:BB:3A:FD:B5:BE:39:8B:9A:70:98:3A:BD:1A
Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999
Certificate serial: 019651FF934EAB9B4200A6D23348AE5F9509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
Manifest number: 1386
Signing time: Sun 20 Apr 2025 07:00:25 +0000
Manifest this update: Sun 20 Apr 2025 07:00:25 +0000
Manifest next update: Mon 21 Apr 2025 07:00:25 +0000
Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: kZYqVcFXA0A12Ua/yYeM3W5eFKmYFJml5at3joDY1wc=)
2: Y5hh8AgGKAUf_2S15Xwk_892p60.roa (hash: baZuJeVmztFazA/spLlePhpdINyXpI1DJgHdXLAL5/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:ff:93:4e:ab:9b:42:00:a6:d2:33:48:ae:5f:95:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999
Validity
Not Before: Apr 20 07:00:25 2025 GMT
Not After : Apr 21 07:00:25 2025 GMT
Subject: CN=07275d40c03edcbb3afdb5be398b9a70983abd1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6a:1d:3f:76:93:3f:32:99:b2:29:57:f3:b1:
c0:c6:b7:17:65:64:4d:e7:aa:f1:a2:f7:38:24:2d:
5c:e3:24:7e:90:94:9c:41:ad:9a:5c:4b:7f:bd:9d:
6b:3b:2a:8b:e5:58:2f:9e:86:f8:51:4c:0b:da:f9:
b7:0a:40:1e:1e:92:02:86:7e:8a:6a:ae:21:57:d8:
ec:68:3c:7b:9a:1e:e2:12:51:b2:0c:9f:1f:89:87:
9c:d6:aa:3c:51:4a:15:72:29:9a:7b:b4:db:98:b9:
22:d8:d2:73:56:d8:cc:ba:fb:aa:47:15:28:3b:8f:
83:37:1c:04:39:98:2d:1c:45:86:7e:02:7d:7b:08:
0d:b7:74:5e:33:80:0f:90:08:79:8a:46:d0:ef:82:
42:bb:b3:d4:f2:4c:3c:3d:c5:d8:bc:3e:40:35:3c:
bb:ca:1f:ab:76:5c:78:2b:c6:5b:eb:11:fd:88:a0:
54:37:a3:6e:7f:bf:b5:cf:2b:6e:ae:5f:51:03:e1:
89:93:3c:6c:be:65:10:06:bf:b5:49:ef:15:7d:f2:
fa:84:23:7e:6a:39:7c:95:b2:10:47:aa:74:42:8e:
ab:21:13:21:e6:65:34:76:7c:8a:42:59:92:f5:0d:
f9:38:94:20:c2:38:23:24:01:52:d0:78:d2:dd:a9:
40:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:27:5D:40:C0:3E:DC:BB:3A:FD:B5:BE:39:8B:9A:70:98:3A:BD:1A
X509v3 Authority Key Identifier:
keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:fd:7e:74:6f:cf:b8:b1:33:15:20:92:a1:ee:1f:98:95:fa:
40:2b:b0:3a:28:5b:1a:13:d0:29:16:d6:2d:88:e1:23:58:e4:
62:f3:52:11:8a:7d:56:7c:77:12:b7:34:c8:f7:08:e9:90:e3:
e0:9b:7f:9e:a3:e7:ce:a7:b5:ab:7a:b1:57:31:9c:27:11:18:
45:f1:67:89:33:67:86:c9:b3:0c:ac:c2:a7:69:47:ed:43:22:
a6:d0:2c:72:33:ba:29:29:e8:92:3e:4c:36:70:13:a6:8f:68:
5b:b4:b4:f8:50:f4:41:e9:17:5e:b6:ef:5a:ce:27:91:d9:49:
41:10:3e:10:8e:1d:d5:41:ff:f7:1b:92:83:ae:d7:55:46:a2:
47:8f:aa:1b:9a:7c:0d:da:73:88:02:58:d9:c4:10:43:ab:17:
89:f6:03:66:a5:d3:8b:aa:84:a9:d5:b8:52:4d:85:9b:9c:1c:
5a:2c:76:bc:11:8b:97:8b:87:9b:0c:5c:ff:c4:00:62:62:b9:
ef:73:29:51:d5:05:5c:a6:e0:e8:00:36:10:5a:7d:c5:3d:3a:
e3:1c:bc:e5:3a:2c:ff:9d:ee:66:b9:6e:7b:fd:15:65:df:ce:
d8:c7:e0:fa:03:1e:f6:d4:63:5c:16:66:9e:d8:a9:d4:75:c6:
1b:d0:1c:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZR/5NOq5tCAKbSM0iuX5UJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5MDg3MjJhNzU1NWRkMTYyMWRkNmE2MjIwOWZhOGRhNTI5
NDI5OTkwHhcNMjUwNDIwMDcwMDI1WhcNMjUwNDIxMDcwMDI1WjAzMTEwLwYDVQQD
EygwNzI3NWQ0MGMwM2VkY2JiM2FmZGI1YmUzOThiOWE3MDk4M2FiZDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWodP3aTPzKZsilX87HAxrcXZWRN
56rxovc4JC1c4yR+kJScQa2aXEt/vZ1rOyqL5Vgvnob4UUwL2vm3CkAeHpIChn6K
aq4hV9jsaDx7mh7iElGyDJ8fiYec1qo8UUoVcimae7TbmLki2NJzVtjMuvuqRxUo
O4+DNxwEOZgtHEWGfgJ9ewgNt3ReM4APkAh5ikbQ74JCu7PU8kw8PcXYvD5ANTy7
yh+rdlx4K8Zb6xH9iKBUN6Nuf7+1zyturl9RA+GJkzxsvmUQBr+1Se8VffL6hCN+
ajl8lbIQR6p0Qo6rIRMh5mU0dnyKQlmS9Q35OJQgwjgjJAFS0HjS3alAfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAcnXUDAPty7Ov21vjmLmnCYOr0aMB8GA1UdIwQY
MBaAFNkIcip1Vd0WId1qYiCfqNpSlCmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYt
MmQ5ZmNhNjYyZTUyLzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYtMmQ5ZmNhNjYyZTUy
LzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABf1+dG/P
uLEzFSCSoe4fmJX6QCuwOihbGhPQKRbWLYjhI1jkYvNSEYp9Vnx3Erc0yPcI6ZDj
4Jt/nqPnzqe1q3qxVzGcJxEYRfFniTNnhsmzDKzCp2lH7UMiptAscjO6KSnokj5M
NnATpo9oW7S0+FD0QekXXrbvWs4nkdlJQRA+EI4d1UH/9xuSg67XVUaiR4+qG5p8
DdpziAJY2cQQQ6sXifYDZqXTi6qEqdW4Uk2Fm5wcWix2vBGLl4uHmwxc/8QAYmK5
73MpUdUFXKbg6AA2EFp9xT064xy85Tos/53uZrlue/0VZd/O2Mfg+gMe9tRjXBZm
ntip1HXGG9Acpg==
-----END CERTIFICATE-----
Generated at Sun Apr 20 18:09:36 2025 by rpki-client