Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
File: Q9JznRqU2rlXbiF80N-FdyBLIwA.mft (raw, json)
Hash identifier: YinHvfVdMSOX6ROQmcvda9rNbPak6NaXLPG6iL4bNoY=
Subject key identifier: FB:50:65:44:5D:79:8E:4B:09:BF:9C:46:40:61:B3:E2:27:4E:AF:BF
Authority key identifier: 43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
Certificate issuer: /CN=43d2739d1a94dab9576e217cd0df8577204b2300
Certificate serial: 01964F35AD657DD1662D0216D9083A5DDFF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
Manifest number: 0252
Signing time: Sat 19 Apr 2025 18:00:39 +0000
Manifest this update: Sat 19 Apr 2025 18:00:39 +0000
Manifest next update: Sun 20 Apr 2025 18:00:39 +0000
Files and hashes: 1: Q9JznRqU2rlXbiF80N-FdyBLIwA.crl (hash: 02brThgYFzJ921S1zPOzChdxIghAT+MDg41WpwMLK90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 18:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:35:ad:65:7d:d1:66:2d:02:16:d9:08:3a:5d:df:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d2739d1a94dab9576e217cd0df8577204b2300
Validity
Not Before: Apr 19 18:00:39 2025 GMT
Not After : Apr 20 18:00:39 2025 GMT
Subject: CN=fb5065445d798e4b09bf9c464061b3e2274eafbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1f:68:63:ba:1f:fd:d1:c6:fb:a9:02:8c:f0:
fd:62:e8:5d:40:57:25:de:87:ff:da:a5:44:ee:0d:
ac:c1:d9:dc:8b:b4:ea:6c:96:10:b0:ce:99:45:4f:
8f:14:2d:a9:a1:c3:b4:7a:e8:d1:33:93:eb:3f:1d:
23:9e:b4:66:a4:eb:00:6e:27:f5:e0:67:8a:5b:20:
29:ff:1f:02:d9:bf:d7:89:1a:58:60:e6:cd:0d:74:
ed:74:71:f9:15:54:1a:23:96:bd:a1:73:81:dd:5f:
f4:0a:0d:94:3d:99:e8:fb:ba:84:47:5c:13:2d:23:
9f:b1:94:94:e6:31:e6:c5:4e:1a:51:c0:17:24:f7:
30:e7:74:c1:00:4d:32:42:43:a4:33:d2:67:49:83:
51:3a:40:91:ca:98:88:95:e3:1e:03:fd:c8:ad:8d:
55:ee:8f:71:c8:a0:8c:ee:5d:ee:0e:eb:3e:ae:68:
03:56:55:02:53:35:d0:c4:99:87:ac:e0:64:d1:2d:
f0:47:ce:6d:5c:0a:e1:4e:c4:54:84:f1:e5:fb:26:
7e:c3:11:b0:3a:87:a4:73:af:58:fd:78:a8:42:ba:
7b:15:e2:42:8e:ff:47:8d:2a:43:a9:2e:c3:42:27:
ee:f8:c6:42:4e:e3:6b:8f:9a:74:f3:76:bb:d7:dc:
b6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:50:65:44:5D:79:8E:4B:09:BF:9C:46:40:61:B3:E2:27:4E:AF:BF
X509v3 Authority Key Identifier:
keyid:43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:5e:34:a8:3f:a3:1e:07:e4:19:7e:24:2d:14:b8:7b:5e:4e:
cd:82:93:c6:8e:d1:a3:7b:1c:d3:2d:1b:3e:e7:e8:93:54:d4:
51:4c:df:f4:1d:ad:5e:e9:31:67:13:92:3a:ed:a0:4b:7a:bd:
64:73:6c:99:29:80:a1:0b:20:6b:ff:0f:55:c6:a7:9a:c6:fc:
6d:77:ce:65:97:95:44:42:f6:81:22:d6:c1:3d:ae:63:e8:eb:
df:b4:65:55:01:90:2f:02:8d:4e:db:db:39:74:84:c7:63:20:
87:e8:21:e9:8c:8e:78:e4:91:6b:d5:fc:34:3d:bd:99:e3:ea:
02:a9:e9:b8:a0:34:69:c3:71:d2:98:b0:8e:f0:78:85:e1:2f:
1f:fe:40:cc:8f:81:1a:65:23:da:b0:64:ea:51:03:69:e0:4c:
de:c6:6c:db:ba:74:51:72:a9:fe:c9:fa:84:6c:69:7a:ad:ea:
93:19:a2:ba:d8:b2:6d:0e:f2:0b:62:4d:0c:6f:67:83:73:2e:
5c:5b:97:fa:b2:3d:ea:34:50:c3:42:45:06:16:6c:c0:1d:27:
3e:58:53:9a:1a:ad:14:bf:0e:05:e3:c3:2b:58:ea:33:bd:ba:
35:80:c0:ce:9a:25:b4:ba:13:e4:4c:c0:0c:fa:d6:a0:19:7a:
69:85:9f:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZPNa1lfdFmLQIW2Qg6Xd/wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzZDI3MzlkMWE5NGRhYjk1NzZlMjE3Y2QwZGY4NTc3MjA0
YjIzMDAwHhcNMjUwNDE5MTgwMDM5WhcNMjUwNDIwMTgwMDM5WjAzMTEwLwYDVQQD
EyhmYjUwNjU0NDVkNzk4ZTRiMDliZjljNDY0MDYxYjNlMjI3NGVhZmJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApR9oY7of/dHG+6kCjPD9YuhdQFcl
3of/2qVE7g2swdnci7TqbJYQsM6ZRU+PFC2pocO0eujRM5PrPx0jnrRmpOsAbif1
4GeKWyAp/x8C2b/XiRpYYObNDXTtdHH5FVQaI5a9oXOB3V/0Cg2UPZno+7qER1wT
LSOfsZSU5jHmxU4aUcAXJPcw53TBAE0yQkOkM9JnSYNROkCRypiIleMeA/3IrY1V
7o9xyKCM7l3uDus+rmgDVlUCUzXQxJmHrOBk0S3wR85tXArhTsRUhPHl+yZ+wxGw
Ooekc69Y/XioQrp7FeJCjv9HjSpDqS7DQifu+MZCTuNrj5p083a719y2VwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPtQZURdeY5LCb+cRkBhs+InTq+/MB8GA1UdIwQY
MBaAFEPSc50alNq5V24hfNDfhXcgSyMAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTlKem5ScVUycmxYYmlGODBOLUZkeUJMSXdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ZmU1YzUtOWJhMi00ZTY2LWJhMmUt
YTQ0MzI2YTM5Zjk3LzEvUTlKem5ScVUycmxYYmlGODBOLUZkeUJMSXdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi83ZmU1YzUtOWJhMi00ZTY2LWJhMmUtYTQ0MzI2YTM5Zjk3
LzEvUTlKem5ScVUycmxYYmlGODBOLUZkeUJMSXdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHl40qD+j
HgfkGX4kLRS4e15OzYKTxo7Ro3sc0y0bPufok1TUUUzf9B2tXukxZxOSOu2gS3q9
ZHNsmSmAoQsga/8PVcanmsb8bXfOZZeVREL2gSLWwT2uY+jr37RlVQGQLwKNTtvb
OXSEx2Mgh+gh6YyOeOSRa9X8ND29mePqAqnpuKA0acNx0piwjvB4heEvH/5AzI+B
GmUj2rBk6lEDaeBM3sZs27p0UXKp/sn6hGxpeq3qkxmiutiybQ7yC2JNDG9ng3Mu
XFuX+rI96jRQw0JFBhZswB0nPlhTmhqtFL8OBePDK1jqM726NYDAzpoltLoT5EzA
DPrWoBl6aYWfTw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:10:31 2025 by rpki-client