Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: S4gRXOrEf2ikj4AEGgoRzT6hYQuUdiUeGpRPfpdjDb8=
Subject key identifier: A7:09:80:0F:46:FC:B0:2D:61:E6:EF:05:7A:0E:2D:36:1C:60:42:86
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 01964A465F0B9082A4E1792A0865E24632E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 11F7
Signing time: Fri 18 Apr 2025 19:00:47 +0000
Manifest this update: Fri 18 Apr 2025 19:00:47 +0000
Manifest next update: Sat 19 Apr 2025 19:00:47 +0000
Files and hashes: 1: H0bQgySRSVEBMsUFWG1LFpsoHvo.roa (hash: xkMnmqfm74JviA1Eb+MeDPeuGBKpBqJAXaeRNQIX3FU=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: rvtn86nSGl+cGsIeOqmboSRlk6drorSCosXmP+YBLks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:46:5f:0b:90:82:a4:e1:79:2a:08:65:e2:46:32:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: Apr 18 19:00:47 2025 GMT
Not After : Apr 19 19:00:47 2025 GMT
Subject: CN=a709800f46fcb02d61e6ef057a0e2d361c604286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:93:80:0e:bd:d3:8f:0d:42:87:d7:d6:9f:cd:
0e:13:89:f5:b0:46:ea:14:3d:09:a6:37:b3:e0:02:
9a:a5:46:a9:cb:5f:3a:b7:58:d6:8a:9e:9f:1b:00:
9f:2c:24:70:66:d0:a1:a1:30:27:7f:41:4d:8f:89:
aa:10:67:ba:7c:aa:7b:af:e8:4d:19:35:2b:0c:7e:
82:f3:4b:5b:1d:63:93:75:29:16:81:8b:c7:c1:06:
4d:b3:81:35:49:75:77:dc:31:ee:14:f0:6c:62:86:
18:2f:7f:92:51:8f:b5:50:4d:07:90:d8:6f:39:9d:
5f:1c:b1:40:13:08:d9:be:97:25:50:81:0e:46:ec:
c0:91:99:1b:5c:2b:e9:19:03:06:83:eb:07:ae:94:
9b:7c:ca:d9:22:78:fb:95:85:2d:19:1d:ec:cb:4a:
28:8f:ff:a3:05:52:f9:5e:5c:2f:40:50:95:2d:22:
30:a6:58:50:48:df:88:2f:fc:5d:cc:46:37:7f:98:
4c:36:b0:e9:75:cd:84:ca:c1:f3:51:24:21:9d:1b:
33:17:f7:77:ab:2a:46:2e:80:1b:e3:5a:33:29:56:
a2:0e:56:33:5b:f2:df:26:ae:bd:75:41:32:63:12:
2d:7e:95:30:56:99:e8:28:2a:02:bb:88:e5:36:9a:
3b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:09:80:0F:46:FC:B0:2D:61:E6:EF:05:7A:0E:2D:36:1C:60:42:86
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:6e:c8:63:e7:e8:c5:f2:d7:1b:db:69:1f:77:10:ba:2c:1d:
53:a4:72:b4:f8:ab:c6:6a:b4:17:d6:10:32:50:ca:74:17:b8:
ab:f5:26:56:ee:0e:81:7b:af:eb:af:05:b5:43:43:61:f5:b1:
f5:17:36:89:19:91:7d:5c:50:11:03:ad:54:ac:f0:89:ad:0f:
f6:9a:85:e4:5b:eb:ce:04:1f:71:d4:af:4b:5a:0c:a6:29:5a:
ca:22:83:4b:13:89:8c:28:1b:d7:e3:ed:6d:26:1e:d4:5d:91:
ce:57:e5:a4:4f:7f:1c:67:31:5d:fc:2d:bc:5f:f0:27:3c:df:
57:7e:b4:9a:0c:af:ea:18:f6:65:20:d9:e6:02:c4:50:39:39:
b1:04:fb:89:f5:f3:56:b9:63:a8:2b:83:16:e6:41:25:49:b9:
84:6b:98:37:d0:ff:08:51:20:3f:9b:d1:f7:eb:51:57:70:a3:
40:5c:ff:04:d5:c7:bc:dc:cc:dc:cc:40:2e:30:ba:ea:e6:56:
ea:df:21:3f:97:4d:c8:5b:28:d9:5f:2e:99:0e:44:e5:dc:cd:
0b:ee:6a:d1:a7:c3:6a:8d:fc:2e:91:62:ee:8c:29:2e:12:aa:
87:19:5a:ba:2a:ba:a2:5f:48:a4:81:db:d6:7f:4b:16:1d:7c:
13:c9:18:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZKRl8LkIKk4XkqCGXiRjLjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwN2QyZGMxMGMwMmY1ZWMyNGY2OTBmOWY2NjA1NTU0ODY1
NjJlNTkwHhcNMjUwNDE4MTkwMDQ3WhcNMjUwNDE5MTkwMDQ3WjAzMTEwLwYDVQQD
EyhhNzA5ODAwZjQ2ZmNiMDJkNjFlNmVmMDU3YTBlMmQzNjFjNjA0Mjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJOADr3Tjw1Ch9fWn80OE4n1sEbq
FD0Jpjez4AKapUapy186t1jWip6fGwCfLCRwZtChoTAnf0FNj4mqEGe6fKp7r+hN
GTUrDH6C80tbHWOTdSkWgYvHwQZNs4E1SXV33DHuFPBsYoYYL3+SUY+1UE0HkNhv
OZ1fHLFAEwjZvpclUIEORuzAkZkbXCvpGQMGg+sHrpSbfMrZInj7lYUtGR3sy0oo
j/+jBVL5XlwvQFCVLSIwplhQSN+IL/xdzEY3f5hMNrDpdc2EysHzUSQhnRszF/d3
qypGLoAb41ozKVaiDlYzW/LfJq69dUEyYxItfpUwVpnoKCoCu4jlNpo7bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKcJgA9G/LAtYebvBXoOLTYcYEKGMB8GA1UdIwQY
MBaAFEB9LcEMAvXsJPaQ+fZgVVSGVi5ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUgwdHdRd0M5ZXdrOXBENTltQlZWSVpXTGxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9hNmZjYzktZDI1MS00MmRjLWFkMDIt
OTY3YzIyODVlYTYyLzEvUUgwdHdRd0M5ZXdrOXBENTltQlZWSVpXTGxrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC9hNmZjYzktZDI1MS00MmRjLWFkMDItOTY3YzIyODVlYTYy
LzEvUUgwdHdRd0M5ZXdrOXBENTltQlZWSVpXTGxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvG7IY+fo
xfLXG9tpH3cQuiwdU6RytPirxmq0F9YQMlDKdBe4q/UmVu4OgXuv668FtUNDYfWx
9Rc2iRmRfVxQEQOtVKzwia0P9pqF5FvrzgQfcdSvS1oMpilayiKDSxOJjCgb1+Pt
bSYe1F2RzlflpE9/HGcxXfwtvF/wJzzfV360mgyv6hj2ZSDZ5gLEUDk5sQT7ifXz
VrljqCuDFuZBJUm5hGuYN9D/CFEgP5vR9+tRV3CjQFz/BNXHvNzM3MxALjC66uZW
6t8hP5dNyFso2V8umQ5E5dzNC+5q0afDao38LpFi7owpLhKqhxlauiq6ol9IpIHb
1n9LFh18E8kYtw==
-----END CERTIFICATE-----
Generated at Sat Apr 19 05:07:07 2025 by rpki-client