Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json)
Hash identifier: tvP0uXXZnmK4oDXCn2GH+RH7RoRVrl/soLzmXsxpwRA=
Subject key identifier: 49:47:AF:FF:EC:F5:22:B2:13:37:4A:DA:DC:D6:9F:6B:11:39:A2:3F
Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Certificate serial: 01964A7D572CC65DD07D07F96B91F9969658
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
Manifest number: 14FD
Signing time: Fri 18 Apr 2025 20:00:50 +0000
Manifest this update: Fri 18 Apr 2025 20:00:50 +0000
Manifest next update: Sat 19 Apr 2025 20:00:50 +0000
Files and hashes: 1: HitPQyHhpEoVidVOwqr2ddK23LE.roa (hash: UNtTyCfc7GR1gxgfjG0Y/XLw7gBd/DnSW8H0cz2SvrM=)
2: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: uJwARU79p1w6Y/uL8k8xk7dK4bgEoZHHnFdAlxmzPqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:7d:57:2c:c6:5d:d0:7d:07:f9:6b:91:f9:96:96:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Validity
Not Before: Apr 18 20:00:50 2025 GMT
Not After : Apr 19 20:00:50 2025 GMT
Subject: CN=4947afffecf522b213374adadcd69f6b1139a23f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:55:d2:44:87:63:9f:47:8f:b8:37:d5:e9:0a:
ea:5a:08:cb:b1:5f:96:3a:b3:42:68:4d:cf:76:aa:
8b:8e:07:d7:4d:25:58:21:89:e4:ca:e3:58:56:bb:
0c:2c:bb:41:d9:da:e7:4e:58:9c:3b:fb:82:05:1a:
e2:8c:f9:25:1a:b4:00:33:a7:92:c9:c8:7b:7e:2c:
78:a8:34:a4:b0:d5:59:c9:a6:b6:30:d7:99:25:bb:
5e:13:f7:05:b5:1c:c9:f9:3a:ce:1a:84:3e:2a:01:
2c:62:79:ee:f0:fe:d3:c8:cb:55:2e:e1:ac:fc:35:
e3:3a:5c:f9:fb:2a:4c:dc:66:73:66:4c:dd:c7:03:
13:e6:1f:a6:a9:ad:fa:0e:31:ab:4e:1d:cb:36:b5:
e6:3d:71:2d:93:5e:ee:5c:55:b8:a8:77:77:ae:12:
23:c7:69:42:32:1b:1e:1e:71:c3:49:55:0b:ae:e1:
ed:74:a9:b9:bc:97:94:d6:68:d2:6e:85:d4:25:db:
a4:22:7a:ed:39:fe:bd:4a:42:6f:46:f6:4b:c7:4d:
d8:80:04:c8:92:03:92:32:3a:84:7d:d9:d2:aa:7c:
71:21:3a:d2:05:b8:38:59:f1:33:09:0e:8b:83:5e:
ee:5b:79:2a:c1:c9:40:2c:b5:14:a9:e5:b0:96:bb:
13:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:47:AF:FF:EC:F5:22:B2:13:37:4A:DA:DC:D6:9F:6B:11:39:A2:3F
X509v3 Authority Key Identifier:
keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:b8:17:3f:92:44:cb:ca:87:03:87:80:17:2e:34:38:b6:08:
28:b6:0e:b8:16:f4:4e:8c:fa:8c:b1:44:2a:20:85:69:12:1d:
b1:d7:84:2a:a0:2f:0b:fc:87:80:9e:ef:99:81:e1:13:8b:ab:
98:74:a0:5b:51:36:a9:05:40:c8:81:19:fa:ed:a5:dd:fe:47:
b6:b1:b5:c6:16:65:0c:fe:fb:3c:08:fc:75:d1:f6:98:9e:53:
23:34:ea:b9:11:c5:a8:c1:e3:9d:d0:a7:6b:f2:bf:63:16:b4:
db:55:6d:31:79:df:c7:9d:37:6a:13:93:fb:8d:62:81:89:e4:
83:99:bd:0d:5c:1e:a6:34:71:da:dc:47:91:13:b4:2e:24:ec:
e9:9c:ff:23:26:5a:3e:5e:e9:3d:63:0a:c6:82:77:9e:82:f3:
20:f1:68:82:d8:18:df:3a:a8:3d:b8:db:27:43:d4:68:0f:21:
73:a3:ac:6b:5e:7d:4c:5e:28:71:5c:61:ec:b5:92:f3:99:b6:
cb:2a:8d:eb:b7:18:a8:ad:5f:bb:9c:9c:d6:2d:79:d7:8f:c2:
7d:d4:e9:42:93:0f:07:94:16:a6:3d:ce:a4:a5:63:70:25:08:
54:41:e5:6e:0f:a6:63:75:a4:25:36:b3:d2:cc:f9:9d:27:7b:
e8:0c:8b:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZKfVcsxl3QfQf5a5H5lpZYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxODFjMjJlYjdiMzJkOTAxZDEyNTcwMGUxNDBlYjYwMDlk
Y2M2ZGEwHhcNMjUwNDE4MjAwMDUwWhcNMjUwNDE5MjAwMDUwWjAzMTEwLwYDVQQD
Eyg0OTQ3YWZmZmVjZjUyMmIyMTMzNzRhZGFkY2Q2OWY2YjExMzlhMjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8VXSRIdjn0ePuDfV6QrqWgjLsV+W
OrNCaE3PdqqLjgfXTSVYIYnkyuNYVrsMLLtB2drnTlicO/uCBRrijPklGrQAM6eS
ych7fix4qDSksNVZyaa2MNeZJbteE/cFtRzJ+TrOGoQ+KgEsYnnu8P7TyMtVLuGs
/DXjOlz5+ypM3GZzZkzdxwMT5h+mqa36DjGrTh3LNrXmPXEtk17uXFW4qHd3rhIj
x2lCMhseHnHDSVULruHtdKm5vJeU1mjSboXUJdukInrtOf69SkJvRvZLx03YgATI
kgOSMjqEfdnSqnxxITrSBbg4WfEzCQ6Lg17uW3kqwclALLUUqeWwlrsTjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFElHr//s9SKyEzdK2tzWn2sROaI/MB8GA1UdIwQY
MBaAFEGBwi63sy2QHRJXAOFA62AJ3MbaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMt
YzIxNDA5NDQyZmFjLzEvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMtYzIxNDA5NDQyZmFj
LzEvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdLgXP5JE
y8qHA4eAFy40OLYIKLYOuBb0Toz6jLFEKiCFaRIdsdeEKqAvC/yHgJ7vmYHhE4ur
mHSgW1E2qQVAyIEZ+u2l3f5HtrG1xhZlDP77PAj8ddH2mJ5TIzTquRHFqMHjndCn
a/K/Yxa021VtMXnfx503ahOT+41igYnkg5m9DVwepjRx2txHkRO0LiTs6Zz/IyZa
Pl7pPWMKxoJ3noLzIPFogtgY3zqoPbjbJ0PUaA8hc6Osa159TF4ocVxh7LWS85m2
yyqN67cYqK1fu5yc1i1514/CfdTpQpMPB5QWpj3OpKVjcCUIVEHlbg+mY3WkJTaz
0sz5nSd76AyL2Q==
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:46:58 2025 by rpki-client