Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: jQlwOk5tlPRdf2Hj1BQfEqxDLl7t3cUmPcTzjCyrgt4=
Subject key identifier: E1:A6:C2:3F:12:4B:5B:02:F5:25:80:C5:91:EE:3B:08:67:6B:6E:DF
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 0194C387FABE6F6AFD149A4015268B47874A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 142E
Signing time: Sat 01 Feb 2025 22:00:56 +0000
Manifest this update: Sat 01 Feb 2025 22:00:56 +0000
Manifest next update: Sun 02 Feb 2025 22:00:56 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: /eq61mRixQdVyZXN3qFY0B8EOu3rwbum2M4Wnz0T0QU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:fa:be:6f:6a:fd:14:9a:40:15:26:8b:47:87:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Feb 1 22:00:56 2025 GMT
Not After : Feb 2 22:00:56 2025 GMT
Subject: CN=e1a6c23f124b5b02f52580c591ee3b08676b6edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8f:f2:9c:00:9c:20:f2:9c:97:76:b3:c8:8d:
eb:60:f8:40:92:da:eb:20:1b:16:50:ae:1c:fb:58:
5f:76:31:a0:df:bd:fc:64:8f:f2:30:18:ed:89:7e:
fd:2d:aa:00:2f:b4:86:13:36:cd:bc:30:d7:e6:41:
ce:fc:3b:20:37:21:76:c1:54:a1:9d:4d:e8:97:4c:
54:c5:c5:0d:d5:28:2a:a6:fb:d2:2a:88:d6:38:fc:
43:62:30:af:3f:8b:03:7b:f9:90:ca:94:ca:9d:48:
da:61:a6:9a:bb:b0:a9:55:c7:4d:8d:c0:49:aa:55:
e2:0d:b3:cf:9a:be:ee:af:27:73:02:58:ca:de:75:
b6:85:f7:be:2c:3e:f2:9a:99:3e:1b:13:e0:e0:09:
c7:41:cc:20:92:f4:1b:28:08:cf:b7:57:86:f2:55:
41:00:92:d0:70:c9:47:96:ab:cc:e9:40:bc:bb:3e:
54:9e:66:6d:39:69:7c:87:86:48:0a:6f:87:74:04:
9b:fd:fa:90:6e:74:2e:37:6e:06:8d:15:86:dc:5d:
58:61:5d:74:c3:6e:2c:dd:ee:a8:63:81:17:6f:2b:
8d:e4:b1:68:ac:b7:95:f6:5f:0d:f6:c8:7e:a9:a7:
72:f4:19:a1:e2:f3:99:f7:96:9d:5a:2e:29:1f:04:
1e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A6:C2:3F:12:4B:5B:02:F5:25:80:C5:91:EE:3B:08:67:6B:6E:DF
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:cb:25:58:bf:32:e1:50:f2:af:b1:73:67:db:43:97:b7:74:
d6:74:a8:fc:22:9b:09:d9:d7:d2:24:58:62:03:96:a3:9f:78:
22:fc:8c:42:fa:69:93:5c:60:46:8c:40:f2:c0:2d:07:0f:4d:
63:49:91:ee:0d:29:a9:e0:68:f3:da:e6:5b:f7:b0:85:5c:8a:
de:97:eb:26:fc:88:0d:ec:2a:f5:71:ca:53:12:b2:42:e2:29:
06:35:b6:e1:ac:b6:c0:c8:61:4d:4a:3f:45:71:de:16:a2:d7:
d0:fb:ff:5c:7f:5e:a8:bb:d5:e6:61:12:c6:bd:96:bc:2b:40:
7f:c5:d3:d2:0f:f0:cd:71:09:c0:f8:47:2a:94:85:eb:b6:b1:
d7:1e:d5:2c:c5:0b:33:d6:17:29:a0:db:b6:1d:59:7f:77:30:
8a:a5:16:a6:19:fe:cc:df:23:0d:96:b0:33:9c:b6:fa:ad:aa:
13:4b:77:ad:68:69:22:34:e6:31:86:83:67:3a:e8:aa:01:ec:
07:61:3a:a6:f6:df:71:58:8a:76:87:35:cf:65:7f:6f:f1:72:
1b:49:ed:f7:9a:73:2c:9a:c9:d6:fa:f3:b7:65:ea:2b:ea:29:
6b:ed:53:83:8e:70:1b:84:fd:77:31:44:19:11:4f:3f:3a:69:
25:56:15:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDh/q+b2r9FJpAFSaLR4dKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYjljYWM5MzUzMTFlNzgwMzRiNDA3MzgzMGE4MWEzY2Y3
YjQ1ZDkwHhcNMjUwMjAxMjIwMDU2WhcNMjUwMjAyMjIwMDU2WjAzMTEwLwYDVQQD
EyhlMWE2YzIzZjEyNGI1YjAyZjUyNTgwYzU5MWVlM2IwODY3NmI2ZWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoI/ynACcIPKcl3azyI3rYPhAktrr
IBsWUK4c+1hfdjGg3738ZI/yMBjtiX79LaoAL7SGEzbNvDDX5kHO/DsgNyF2wVSh
nU3ol0xUxcUN1SgqpvvSKojWOPxDYjCvP4sDe/mQypTKnUjaYaaau7CpVcdNjcBJ
qlXiDbPPmr7urydzAljK3nW2hfe+LD7ympk+GxPg4AnHQcwgkvQbKAjPt1eG8lVB
AJLQcMlHlqvM6UC8uz5UnmZtOWl8h4ZICm+HdASb/fqQbnQuN24GjRWG3F1YYV10
w24s3e6oY4EXbyuN5LForLeV9l8N9sh+qady9Bmh4vOZ95adWi4pHwQezwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOGmwj8SS1sC9SWAxZHuOwhna27fMB8GA1UdIwQY
MBaAFEC5ysk1MR54A0tAc4MKgaPPe0XZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yODVhYjYtMDEwOS00NGUxLWJiMmIt
NzUzNGZlMGYxYjgzLzEvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi8yODVhYjYtMDEwOS00NGUxLWJiMmItNzUzNGZlMGYxYjgz
LzEvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARcslWL8y
4VDyr7FzZ9tDl7d01nSo/CKbCdnX0iRYYgOWo594IvyMQvppk1xgRoxA8sAtBw9N
Y0mR7g0pqeBo89rmW/ewhVyK3pfrJvyIDewq9XHKUxKyQuIpBjW24ay2wMhhTUo/
RXHeFqLX0Pv/XH9eqLvV5mESxr2WvCtAf8XT0g/wzXEJwPhHKpSF67ax1x7VLMUL
M9YXKaDbth1Zf3cwiqUWphn+zN8jDZawM5y2+q2qE0t3rWhpIjTmMYaDZzroqgHs
B2E6pvbfcViKdoc1z2V/b/FyG0nt95pzLJrJ1vrzt2XqK+opa+1Tg45wG4T9dzFE
GRFPPzppJVYVFg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:50:57 2025 by rpki-client