Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
File: 1qcbToaUQX67vPYmi5yPljFwsfE.mft (raw, json)
Hash identifier: 5Eh9d/kt6yZz/DmrZg4v/OGp+laWRcEgAggGnUMfqvY=
Subject key identifier: A6:FF:84:CE:42:07:DD:B4:FF:F3:69:67:1C:AB:7B:09:02:A1:67:0E
Authority key identifier: D6:A7:1B:4E:86:94:41:7E:BB:BC:F6:26:8B:9C:8F:96:31:70:B1:F1
Certificate issuer: /CN=d6a71b4e8694417ebbbcf6268b9c8f963170b1f1
Certificate serial: 01964A0F6F4368CEA36D04D97C9867CE68D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
Manifest number: 04CC
Signing time: Fri 18 Apr 2025 18:00:47 +0000
Manifest this update: Fri 18 Apr 2025 18:00:47 +0000
Manifest next update: Sat 19 Apr 2025 18:00:47 +0000
Files and hashes: 1: 1qcbToaUQX67vPYmi5yPljFwsfE.crl (hash: QOgZ59uwU2gDo/3fE6D/J690JrDbaEppxL52G1lhLGE=)
2: cPWanhkOF5JFf7ndWQEsgDaOym4.roa (hash: hNMT1d2ZHlvJJQiGYjNYvL4LotmJH6VgqTxIxCqCmaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 18:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0f:6f:43:68:ce:a3:6d:04:d9:7c:98:67:ce:68:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6a71b4e8694417ebbbcf6268b9c8f963170b1f1
Validity
Not Before: Apr 18 18:00:47 2025 GMT
Not After : Apr 19 18:00:47 2025 GMT
Subject: CN=a6ff84ce4207ddb4fff369671cab7b0902a1670e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f2:25:a8:12:99:72:8c:f6:76:11:2c:ab:9c:
61:cd:cc:87:53:db:42:99:93:0f:02:11:de:c7:c5:
c2:1b:4f:c3:7c:02:31:34:43:69:c6:a6:fb:12:dc:
4a:a9:b2:94:49:96:21:04:7d:22:83:ef:6e:48:03:
de:69:25:8b:40:f5:e8:3e:02:01:f1:14:53:0d:1d:
a7:3c:9d:7c:d2:c7:2e:a7:02:7c:d7:d9:99:25:2e:
10:5b:be:99:34:66:76:50:00:10:d0:4c:2e:13:fe:
4e:8d:6b:e3:38:98:97:72:b8:6c:b5:75:45:39:f8:
b6:80:e6:a7:95:fd:e9:06:57:30:96:9f:c4:d9:89:
e1:06:77:9a:4b:7a:e4:57:29:03:5f:36:ef:05:22:
41:91:12:f1:c8:b9:a1:79:da:9e:57:0e:84:a1:8f:
87:a0:b5:d7:8b:05:d5:af:58:ea:51:4a:4d:7b:35:
8c:39:21:8a:2d:b0:ac:09:59:0d:db:dd:35:7c:52:
b3:82:06:bd:65:e1:35:1c:03:57:76:16:32:0f:f1:
3e:b3:0b:c1:c9:22:9e:64:c6:3c:c0:22:e3:03:27:
c0:be:2c:af:a8:f4:a0:d1:4d:72:93:81:ed:b7:71:
38:30:da:62:10:05:68:82:64:10:de:c4:28:99:09:
ba:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FF:84:CE:42:07:DD:B4:FF:F3:69:67:1C:AB:7B:09:02:A1:67:0E
X509v3 Authority Key Identifier:
keyid:D6:A7:1B:4E:86:94:41:7E:BB:BC:F6:26:8B:9C:8F:96:31:70:B1:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:3c:09:a7:fd:30:1c:4e:a1:1b:c2:47:df:13:18:e5:e9:50:
5b:8b:25:4f:8d:21:94:12:cb:22:56:99:23:d0:9f:75:83:98:
c1:8b:0d:6e:41:91:8f:cd:3c:c4:a1:f2:ce:a5:0d:e6:c5:ee:
3b:42:a8:e6:74:c6:41:33:60:79:76:ec:a2:50:0e:9c:d5:6d:
4e:59:18:9c:80:80:64:17:7d:cf:37:76:b8:72:87:f5:c8:ba:
16:7d:50:be:20:a0:f4:8d:cf:94:b1:51:a3:1b:de:e4:13:9f:
e3:f4:43:68:d5:f4:45:27:0a:36:74:8c:bb:ae:f6:6e:ad:c4:
94:99:65:ca:e7:6b:4d:13:6c:c9:99:32:62:e3:7a:63:f8:bd:
b8:a1:1e:e1:82:b2:ce:d0:80:e5:f7:c8:44:c2:15:f3:4a:b9:
ee:ae:96:36:52:27:2f:2a:d7:b1:86:73:68:a7:24:49:ca:0f:
08:e1:86:5a:a7:61:99:bb:1b:61:e0:af:7f:dd:06:94:2f:79:
16:c8:43:54:bf:62:43:29:ea:8c:99:89:24:4a:68:6c:69:31:
69:7a:fb:a5:0b:69:49:56:d8:9f:1e:b1:f7:9f:48:15:9f:00:
21:74:b3:5d:c6:ff:ef:ec:8f:1e:c8:89:1d:d7:2d:c8:06:de:
72:81:3a:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZKD29DaM6jbQTZfJhnzmjZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2YTcxYjRlODY5NDQxN2ViYmJjZjYyNjhiOWM4Zjk2MzE3
MGIxZjEwHhcNMjUwNDE4MTgwMDQ3WhcNMjUwNDE5MTgwMDQ3WjAzMTEwLwYDVQQD
EyhhNmZmODRjZTQyMDdkZGI0ZmZmMzY5NjcxY2FiN2IwOTAyYTE2NzBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/IlqBKZcoz2dhEsq5xhzcyHU9tC
mZMPAhHex8XCG0/DfAIxNENpxqb7EtxKqbKUSZYhBH0ig+9uSAPeaSWLQPXoPgIB
8RRTDR2nPJ180scupwJ819mZJS4QW76ZNGZ2UAAQ0EwuE/5OjWvjOJiXcrhstXVF
Ofi2gOanlf3pBlcwlp/E2YnhBneaS3rkVykDXzbvBSJBkRLxyLmhedqeVw6EoY+H
oLXXiwXVr1jqUUpNezWMOSGKLbCsCVkN2901fFKzgga9ZeE1HANXdhYyD/E+swvB
ySKeZMY8wCLjAyfAviyvqPSg0U1yk4Htt3E4MNpiEAVogmQQ3sQomQm61wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKb/hM5CB920//NpZxyrewkCoWcOMB8GA1UdIwQY
MBaAFNanG06GlEF+u7z2Joucj5YxcLHxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXFjYlRvYVVRWDY3dlBZbWk1eVBsakZ3c2ZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83NmE0NjMtMDczMi00OTdhLTk0OGQt
MjkzMTEwNGM1ZjdhLzEvMXFjYlRvYVVRWDY3dlBZbWk1eVBsakZ3c2ZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy83NmE0NjMtMDczMi00OTdhLTk0OGQtMjkzMTEwNGM1Zjdh
LzEvMXFjYlRvYVVRWDY3dlBZbWk1eVBsakZ3c2ZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyjwJp/0w
HE6hG8JH3xMY5elQW4slT40hlBLLIlaZI9CfdYOYwYsNbkGRj808xKHyzqUN5sXu
O0Ko5nTGQTNgeXbsolAOnNVtTlkYnICAZBd9zzd2uHKH9ci6Fn1QviCg9I3PlLFR
oxve5BOf4/RDaNX0RScKNnSMu672bq3ElJllyudrTRNsyZkyYuN6Y/i9uKEe4YKy
ztCA5ffIRMIV80q57q6WNlInLyrXsYZzaKckScoPCOGGWqdhmbsbYeCvf90GlC95
FshDVL9iQynqjJmJJEpobGkxaXr7pQtpSVbYnx6x959IFZ8AIXSzXcb/7+yPHsiJ
HdctyAbecoE6Dw==
-----END CERTIFICATE-----
Generated at Sat Apr 19 02:05:20 2025 by rpki-client