Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
File: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft (raw, json)
Hash identifier: 6ZPRwfotC2bEU/pr7xFSjzYoAceZJYcUHTLL7uCATF0=
Subject key identifier: 38:DF:4D:27:9D:59:F6:BA:07:F2:73:CA:A6:46:B3:77:9B:5D:CA:02
Authority key identifier: 41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
Certificate issuer: /CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Certificate serial: 0194C387BBDDEEF9CB4EB258703C797AE836
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
Manifest number: 12B6
Signing time: Sat 01 Feb 2025 22:00:40 +0000
Manifest this update: Sat 01 Feb 2025 22:00:40 +0000
Manifest next update: Sun 02 Feb 2025 22:00:40 +0000
Files and hashes: 1: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl (hash: 7dKri1ALEMciY1wPvUYf4R81jHYKNnBomfub8DPJhqg=)
2: tCKYdWD2hSQqFlBHMS87DdwFA_c.roa (hash: P2KIjX/YYHmksRirKKz2Fd1xnQFo0kzJQbDUVFG/Ics=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:bb:dd:ee:f9:cb:4e:b2:58:70:3c:79:7a:e8:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Validity
Not Before: Feb 1 22:00:40 2025 GMT
Not After : Feb 2 22:00:40 2025 GMT
Subject: CN=38df4d279d59f6ba07f273caa646b3779b5dca02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:8b:0e:ae:06:a3:69:64:13:ff:f6:cc:30:f2:
9d:8c:5e:30:ef:46:a3:87:66:56:9d:67:9a:24:06:
38:92:ac:50:f5:be:c8:fc:87:a8:fb:73:48:7d:5e:
27:c3:26:20:c4:d4:5f:33:03:fa:97:cd:32:05:1e:
c1:8d:16:9c:24:ce:65:db:5c:57:f7:97:32:9a:25:
33:da:34:b8:88:2b:c4:88:15:35:2b:d4:e4:1b:4c:
9c:1e:b8:a3:1c:4e:6a:e7:93:56:fb:dd:e1:88:62:
e2:ee:e7:f7:8b:1f:41:b9:ca:7c:d4:1c:56:05:fd:
bd:ee:fb:29:68:b8:8c:81:bf:8f:2a:2b:79:e3:55:
4c:c7:4b:9a:d7:b6:08:8a:6e:31:cb:7e:54:37:a9:
7d:67:c1:2b:98:be:2e:2d:09:7d:d8:ad:d0:01:17:
71:1b:d7:10:f3:d3:cc:32:09:25:69:6c:4a:be:af:
36:ad:cc:6a:c5:38:64:b8:e3:a7:9c:a0:d8:71:d0:
4d:83:40:54:0d:9b:d6:47:1d:52:ee:d0:0d:69:3e:
d9:95:35:25:8e:bc:f2:84:0a:3e:b8:c4:7b:93:c0:
40:b4:cd:70:2d:ea:a7:e3:0b:d6:b9:8b:f0:2a:58:
f9:78:f5:96:e8:b9:80:0c:15:65:d0:b4:50:c7:96:
5e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:DF:4D:27:9D:59:F6:BA:07:F2:73:CA:A6:46:B3:77:9B:5D:CA:02
X509v3 Authority Key Identifier:
keyid:41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:be:dd:5c:cc:b1:c5:85:4d:a0:24:45:64:28:71:af:c8:c0:
97:94:b4:5d:01:3f:5f:d6:43:24:44:01:53:42:2f:c4:91:35:
0c:f1:21:da:5c:ab:d0:85:1a:8f:03:12:ce:89:e7:43:73:04:
b6:bd:56:9a:6a:1d:06:22:33:c1:e6:ea:0f:77:9c:01:74:c7:
58:59:23:2f:84:e2:1a:ab:35:42:a6:2a:2d:8d:af:1d:a7:eb:
48:0c:0e:53:e2:df:a2:45:7f:46:ba:53:27:11:e5:3d:7e:b4:
ff:aa:e4:14:4e:63:eb:b7:e0:f7:d0:6d:af:bc:1d:26:7a:a2:
70:3c:9e:13:f8:42:43:98:ba:b6:ce:2b:6f:00:a0:c9:42:d5:
66:c9:1e:76:ac:fb:67:01:00:35:21:82:c9:0d:a4:14:cb:b8:
00:8b:a7:75:66:de:fe:8b:a4:07:fd:be:b8:e8:e5:c2:e8:b0:
f2:4a:e7:23:d9:b1:5d:b8:1d:3d:29:11:f0:f4:b0:46:35:77:
b6:16:f4:4f:0e:13:38:4e:85:d9:29:2e:c9:f5:37:33:51:2c:
5a:7b:97:dc:5a:c3:aa:fb:e8:55:e4:bf:7c:5d:02:be:4c:a8:
8c:1d:e3:7f:6a:ac:37:56:19:cb:0e:3c:71:a9:51:58:59:d1:
6d:7c:9b:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDh7vd7vnLTrJYcDx5eug2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxZjczNjcwYWMxNjFmNGI1NjY3OWM0OWRhOGI0ODliNjBi
ZjBiMTYwHhcNMjUwMjAxMjIwMDQwWhcNMjUwMjAyMjIwMDQwWjAzMTEwLwYDVQQD
EygzOGRmNGQyNzlkNTlmNmJhMDdmMjczY2FhNjQ2YjM3NzliNWRjYTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA24sOrgajaWQT//bMMPKdjF4w70aj
h2ZWnWeaJAY4kqxQ9b7I/Ieo+3NIfV4nwyYgxNRfMwP6l80yBR7BjRacJM5l21xX
95cymiUz2jS4iCvEiBU1K9TkG0ycHrijHE5q55NW+93hiGLi7uf3ix9Bucp81BxW
Bf297vspaLiMgb+PKit541VMx0ua17YIim4xy35UN6l9Z8ErmL4uLQl92K3QARdx
G9cQ89PMMgklaWxKvq82rcxqxThkuOOnnKDYcdBNg0BUDZvWRx1S7tANaT7ZlTUl
jrzyhAo+uMR7k8BAtM1wLeqn4wvWuYvwKlj5ePWW6LmADBVl0LRQx5ZemQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDjfTSedWfa6B/JzyqZGs3ebXcoCMB8GA1UdIwQY
MBaAFEH3NnCsFh9LVmecSdqLSJtgvwsWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWZjMmNLd1dIMHRXWjV4SjJvdEltMkNfQ3hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jMzEwMzMtZTdhZS00YWIxLWFmNDkt
Mjk2MTgzODdiYTI2LzEvUWZjMmNLd1dIMHRXWjV4SjJvdEltMkNfQ3hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9jMzEwMzMtZTdhZS00YWIxLWFmNDktMjk2MTgzODdiYTI2
LzEvUWZjMmNLd1dIMHRXWjV4SjJvdEltMkNfQ3hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOL7dXMyx
xYVNoCRFZChxr8jAl5S0XQE/X9ZDJEQBU0IvxJE1DPEh2lyr0IUajwMSzonnQ3ME
tr1WmmodBiIzwebqD3ecAXTHWFkjL4TiGqs1QqYqLY2vHafrSAwOU+LfokV/RrpT
JxHlPX60/6rkFE5j67fg99Btr7wdJnqicDyeE/hCQ5i6ts4rbwCgyULVZskedqz7
ZwEANSGCyQ2kFMu4AIundWbe/oukB/2+uOjlwuiw8krnI9mxXbgdPSkR8PSwRjV3
thb0Tw4TOE6F2SkuyfU3M1EsWnuX3FrDqvvoVeS/fF0CvkyojB3jf2qsN1YZyw48
calRWFnRbXybyA==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:48:25 2025 by rpki-client