Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
File: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft (raw, json)
Hash identifier: ivRWVZtGgyREB6acZVpU8YW1/tObTX3LLU/QTAVjhzc=
Subject key identifier: D7:1C:6A:C1:81:67:A5:24:D5:51:43:0D:FA:E6:89:39:34:D1:15:AC
Authority key identifier: 41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
Certificate issuer: /CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Certificate serial: 01965B038F34E6E6A6340970E43B5998CEC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
Manifest number: 1389
Signing time: Tue 22 Apr 2025 01:01:21 +0000
Manifest this update: Tue 22 Apr 2025 01:01:21 +0000
Manifest next update: Wed 23 Apr 2025 01:01:21 +0000
Files and hashes: 1: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl (hash: Q44DYUo0FQbL/6oJqHptPbZ6nqIutaDxMABTzLZtwnk=)
2: tCKYdWD2hSQqFlBHMS87DdwFA_c.roa (hash: P2KIjX/YYHmksRirKKz2Fd1xnQFo0kzJQbDUVFG/Ics=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:03:8f:34:e6:e6:a6:34:09:70:e4:3b:59:98:ce:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Validity
Not Before: Apr 22 01:01:21 2025 GMT
Not After : Apr 23 01:01:21 2025 GMT
Subject: CN=d71c6ac18167a524d551430dfae6893934d115ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:70:c0:2f:11:a8:58:11:43:05:4e:32:a5:23:
47:75:b6:e0:70:04:22:e3:f4:9a:7b:fb:15:c8:49:
a8:27:9b:23:23:66:24:7f:c6:c3:f2:d3:f5:b7:0b:
e7:3a:bc:6e:02:0b:49:c4:98:63:62:ba:b3:1f:0b:
43:15:16:55:20:6a:0f:fd:6c:bb:f5:98:14:be:29:
a4:91:90:97:f0:84:f7:05:56:28:0f:4c:12:ad:1e:
49:11:ac:0c:9c:f5:85:e0:b0:81:57:c4:80:e9:1f:
66:0b:80:ca:bb:45:e7:74:87:db:40:0a:e9:6b:a5:
ae:e6:f4:6e:63:ab:c3:c2:5c:51:a5:5b:ee:88:1b:
6e:a0:da:0d:d0:c2:3f:f6:a9:cb:b2:a0:bb:64:d0:
ca:8b:df:4e:2e:4e:70:56:05:87:c9:f1:bb:d0:50:
b9:c6:b4:79:e7:3e:ec:df:c9:99:fc:f0:16:7b:f0:
00:59:25:0f:28:90:16:6a:6e:64:9c:52:d7:fb:81:
9c:30:bc:9b:39:47:01:ca:d0:c0:6f:a4:e3:1c:0c:
8a:7a:ab:f0:98:42:c3:81:46:32:71:e5:b0:2a:a8:
d3:17:00:52:b2:7c:07:f6:e3:18:6d:4c:d1:70:0e:
27:6b:ad:e3:12:85:d2:5f:2c:32:e8:21:a2:4f:c3:
ca:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1C:6A:C1:81:67:A5:24:D5:51:43:0D:FA:E6:89:39:34:D1:15:AC
X509v3 Authority Key Identifier:
keyid:41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:8b:e0:54:cc:64:8e:61:1d:58:ac:f1:07:a1:5f:fa:f6:6b:
7d:ce:62:1a:00:5f:ea:b0:93:31:f4:bd:79:6d:f6:ec:d6:ff:
62:90:d7:c6:b4:6b:68:fa:d4:d9:56:0d:fe:e9:c6:1b:39:18:
f5:24:0e:28:8f:ff:14:07:de:6d:93:a9:02:72:af:02:d5:f4:
f5:42:0d:8d:41:f9:e7:a8:78:47:0d:74:e4:e0:72:9e:ad:7e:
d9:d4:8f:bf:27:34:e8:19:45:4b:79:45:cd:61:3a:a8:e8:b0:
62:94:ec:93:b9:63:b1:76:61:bb:07:00:5a:16:a7:6d:4a:7d:
7b:e5:0c:df:2b:b4:11:34:26:c3:92:eb:f6:50:89:42:18:61:
a8:48:73:9f:36:12:b3:63:91:b0:39:f1:83:53:5e:ab:d9:99:
53:b7:43:75:8a:18:9d:6e:f1:df:64:c5:3a:ff:1b:13:03:21:
13:14:a6:0c:19:57:60:89:82:6b:bf:c5:b0:3f:ef:3f:c5:3c:
c4:c2:e4:be:12:a4:1b:25:9b:e8:61:70:3f:ee:79:9c:f4:41:
3c:6d:2c:35:8a:e3:59:51:53:d8:3f:d2:11:20:d6:9b:7c:e5:
22:bd:29:32:14:25:b5:e9:3e:21:9c:cc:5b:32:54:1d:94:c2:
ba:ff:20:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZbA4805uamNAlw5DtZmM7CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxZjczNjcwYWMxNjFmNGI1NjY3OWM0OWRhOGI0ODliNjBi
ZjBiMTYwHhcNMjUwNDIyMDEwMTIxWhcNMjUwNDIzMDEwMTIxWjAzMTEwLwYDVQQD
EyhkNzFjNmFjMTgxNjdhNTI0ZDU1MTQzMGRmYWU2ODkzOTM0ZDExNWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHDALxGoWBFDBU4ypSNHdbbgcAQi
4/Sae/sVyEmoJ5sjI2Ykf8bD8tP1twvnOrxuAgtJxJhjYrqzHwtDFRZVIGoP/Wy7
9ZgUvimkkZCX8IT3BVYoD0wSrR5JEawMnPWF4LCBV8SA6R9mC4DKu0XndIfbQArp
a6Wu5vRuY6vDwlxRpVvuiBtuoNoN0MI/9qnLsqC7ZNDKi99OLk5wVgWHyfG70FC5
xrR55z7s38mZ/PAWe/AAWSUPKJAWam5knFLX+4GcMLybOUcBytDAb6TjHAyKeqvw
mELDgUYyceWwKqjTFwBSsnwH9uMYbUzRcA4na63jEoXSXywy6CGiT8PK2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNccasGBZ6Uk1VFDDfrmiTk00RWsMB8GA1UdIwQY
MBaAFEH3NnCsFh9LVmecSdqLSJtgvwsWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWZjMmNLd1dIMHRXWjV4SjJvdEltMkNfQ3hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jMzEwMzMtZTdhZS00YWIxLWFmNDkt
Mjk2MTgzODdiYTI2LzEvUWZjMmNLd1dIMHRXWjV4SjJvdEltMkNfQ3hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9jMzEwMzMtZTdhZS00YWIxLWFmNDktMjk2MTgzODdiYTI2
LzEvUWZjMmNLd1dIMHRXWjV4SjJvdEltMkNfQ3hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaIvgVMxk
jmEdWKzxB6Ff+vZrfc5iGgBf6rCTMfS9eW327Nb/YpDXxrRraPrU2VYN/unGGzkY
9SQOKI//FAfebZOpAnKvAtX09UINjUH556h4Rw105OBynq1+2dSPvyc06BlFS3lF
zWE6qOiwYpTsk7ljsXZhuwcAWhanbUp9e+UM3yu0ETQmw5Lr9lCJQhhhqEhznzYS
s2ORsDnxg1Neq9mZU7dDdYoYnW7x32TFOv8bEwMhExSmDBlXYImCa7/FsD/vP8U8
xMLkvhKkGyWb6GFwP+55nPRBPG0sNYrjWVFT2D/SESDWm3zlIr0pMhQltek+IZzM
WzJUHZTCuv8gpA==
-----END CERTIFICATE-----
Generated at Tue Apr 22 04:36:49 2025 by rpki-client