Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: JDzZrJkfVEaeXA3QHVkceriifNQGS4rVqHzm8YJIpw0=
Subject key identifier: EE:D1:F6:58:71:50:43:56:E1:92:EC:2D:04:88:F8:32:92:82:14:A5
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 01965424E76769D83B1DED4CEC564B5C3C9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 0FC8
Signing time: Sun 20 Apr 2025 17:00:26 +0000
Manifest this update: Sun 20 Apr 2025 17:00:26 +0000
Manifest next update: Mon 21 Apr 2025 17:00:26 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: PIwafEJLwwAU+8c+Au7sjw/c4MXA+MyNasN+WJ7WVMk=)
2: fD4OezRM4UrasrKKJ10uGn5_Qug.roa (hash: +HiHjgUZa5Xei+THiDncnTXYzPCxqbbX0ahPYM7QsZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:24:e7:67:69:d8:3b:1d:ed:4c:ec:56:4b:5c:3c:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: Apr 20 17:00:26 2025 GMT
Not After : Apr 21 17:00:26 2025 GMT
Subject: CN=eed1f65871504356e192ec2d0488f832928214a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fb:9b:a1:28:9a:7c:ce:c3:82:2b:dd:34:50:
11:98:84:99:30:91:0e:c7:b6:fa:ea:8b:21:9e:46:
a7:5a:99:1c:7b:0d:4c:ab:0b:69:e9:91:2f:c1:c7:
44:d5:f3:44:f6:5b:7e:00:47:dd:6d:3a:d0:6c:44:
84:79:89:96:50:20:c7:7b:b9:8b:4b:ad:7d:55:3f:
3a:2a:eb:d3:13:80:90:3c:11:0f:91:28:e6:b7:88:
f7:11:7c:02:48:2d:8a:36:59:0c:c8:33:95:c4:c7:
af:7a:51:6b:94:75:7b:2f:e9:49:11:8d:56:b1:a3:
4a:29:a5:ad:a5:93:12:ed:ef:ce:5b:92:c0:ab:a7:
b0:ae:e0:2b:bc:c7:b9:e5:73:a5:4e:ad:0b:0e:c7:
44:a2:cb:38:6d:37:dd:bd:ff:b7:00:7b:64:02:c7:
28:f7:c3:76:e2:24:91:8f:f7:76:35:c0:8c:a5:86:
3b:ab:85:99:ed:37:fe:10:0f:08:19:33:57:b7:f0:
8b:34:17:e6:6c:4f:69:5e:d8:9b:4f:a9:cf:04:0d:
ed:c8:a2:a7:ba:9a:76:cf:dc:65:bf:de:c5:90:ee:
d2:51:48:f4:78:21:c3:cf:fb:26:ef:a3:7d:c8:e9:
48:13:c1:b8:c7:0a:56:2b:91:bf:35:2b:23:44:84:
cd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D1:F6:58:71:50:43:56:E1:92:EC:2D:04:88:F8:32:92:82:14:A5
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:4f:ae:96:06:e0:79:a5:c7:bd:50:f0:f7:ad:a8:bc:94:f0:
f1:eb:a4:0a:24:df:3f:5a:f1:69:a2:ad:3a:43:19:63:e7:c3:
59:a9:03:5c:28:0d:e2:21:13:42:61:93:08:d3:f4:86:89:94:
37:fe:ea:ee:e4:9e:56:d7:e2:fe:e0:2f:c4:70:5a:9e:0b:b3:
c3:18:7b:07:c5:3c:bd:cc:4e:04:14:80:9d:02:be:4d:0f:2c:
d0:f5:a3:42:71:56:e1:21:77:75:d0:57:b1:ce:07:ba:d4:b7:
84:25:57:03:22:a8:72:8e:25:38:d8:1c:4a:15:43:88:1d:5a:
f7:4e:6f:79:1d:74:d9:03:98:51:f6:93:ad:12:e6:a1:46:c6:
80:71:af:ff:1f:78:a6:db:e8:34:84:28:d6:5d:a1:06:33:9d:
6e:92:6c:8b:70:56:cf:fd:aa:c1:65:24:56:a6:b5:e3:61:7e:
67:54:bf:9b:91:3f:aa:e5:f2:50:8b:a4:35:4d:70:4a:2b:4d:
ff:3d:38:04:0e:05:88:dc:8a:cb:1a:2f:03:f4:ea:1e:2e:5b:
f0:ad:fe:00:a0:9f:00:68:99:7c:c4:20:03:14:90:d7:88:cd:
8c:02:7c:b8:44:6f:0a:b5:67:15:c3:16:c1:88:49:83:fc:83:
09:1f:f2:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUJOdnadg7He1M7FZLXDyfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MDk2MjAzNWM1ZTk1MTAxM2NhMDY3MGNhNTY5ZTc5Zjhk
NjNjMTUwHhcNMjUwNDIwMTcwMDI2WhcNMjUwNDIxMTcwMDI2WjAzMTEwLwYDVQQD
EyhlZWQxZjY1ODcxNTA0MzU2ZTE5MmVjMmQwNDg4ZjgzMjkyODIxNGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfuboSiafM7DgivdNFARmISZMJEO
x7b66oshnkanWpkcew1Mqwtp6ZEvwcdE1fNE9lt+AEfdbTrQbESEeYmWUCDHe7mL
S619VT86KuvTE4CQPBEPkSjmt4j3EXwCSC2KNlkMyDOVxMevelFrlHV7L+lJEY1W
saNKKaWtpZMS7e/OW5LAq6ewruArvMe55XOlTq0LDsdEoss4bTfdvf+3AHtkAsco
98N24iSRj/d2NcCMpYY7q4WZ7Tf+EA8IGTNXt/CLNBfmbE9pXtibT6nPBA3tyKKn
upp2z9xlv97FkO7SUUj0eCHDz/sm76N9yOlIE8G4xwpWK5G/NSsjRITNowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO7R9lhxUENW4ZLsLQSI+DKSghSlMB8GA1UdIwQY
MBaAFNUJYgNcXpUQE8oGcMpWnnn41jwVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTIt
MDU0YTM2MzExNWY1LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTItMDU0YTM2MzExNWY1
LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeE+ulgbg
eaXHvVDw962ovJTw8eukCiTfP1rxaaKtOkMZY+fDWakDXCgN4iETQmGTCNP0homU
N/7q7uSeVtfi/uAvxHBanguzwxh7B8U8vcxOBBSAnQK+TQ8s0PWjQnFW4SF3ddBX
sc4HutS3hCVXAyKoco4lONgcShVDiB1a905veR102QOYUfaTrRLmoUbGgHGv/x94
ptvoNIQo1l2hBjOdbpJsi3BWz/2qwWUkVqa142F+Z1S/m5E/quXyUIukNU1wSitN
/z04BA4FiNyKyxovA/TqHi5b8K3+AKCfAGiZfMQgAxSQ14jNjAJ8uERvCrVnFcMW
wYhJg/yDCR/y9Q==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:47:54 2025 by rpki-client