Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: aFIa9lfn4Saft3h7xP2yBnWg4k3E4SgNS1JyC2tcpaA=
Subject key identifier: 5D:66:8F:A5:5B:A8:9B:E3:4D:FA:9D:48:50:2F:23:13:E0:04:8D:3C
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 019653B7494CD78D93D80F20F73A3D42A80F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 15:00:42 +0000
Manifest this update: Sun 20 Apr 2025 15:00:42 +0000
Manifest next update: Mon 21 Apr 2025 15:00:42 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: HCNYyLaCIm2RV6ge7R7MSgHoi1DdTa+jOn5zKkigvlE=)
2: gYnUiXQeHZXoU2ZAN-fbsd-Pbx0.roa (hash: V+jQPfwx3Xoa/wL9PzJ6rz+juFyDwb1B2F2Hpp1ngN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b7:49:4c:d7:8d:93:d8:0f:20:f7:3a:3d:42:a8:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Apr 20 15:00:42 2025 GMT
Not After : Apr 21 15:00:42 2025 GMT
Subject: CN=5d668fa55ba89be34dfa9d48502f2313e0048d3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:16:d8:0c:23:7c:f3:03:54:3d:c4:38:b4:b1:
15:60:06:be:ae:6e:8c:8d:32:dd:8e:79:fb:84:ac:
e5:03:82:b8:85:40:90:6b:c2:2e:4d:68:84:57:d1:
fb:bd:c2:1a:9e:05:7d:99:ba:2f:93:ae:e4:fe:ea:
2e:c7:11:a2:c0:13:4e:79:8e:da:7e:f2:09:7f:fc:
9b:0f:3e:6e:0d:59:36:00:75:fd:b5:28:e7:64:bf:
fb:6d:5b:43:a7:00:de:7b:81:fa:7e:c2:8b:91:2d:
3e:2a:09:da:ce:7e:cc:13:ed:19:85:ea:55:8d:bf:
ef:a4:8a:80:cc:52:c2:0a:41:1b:85:64:a7:a2:51:
8b:e5:e0:9e:67:93:32:89:34:47:a0:d9:71:42:bd:
f1:ac:c7:32:cc:24:a6:81:b1:e3:5b:b6:9e:a5:9c:
54:96:c9:c2:39:1f:01:1e:d3:a8:72:18:48:d3:7e:
26:13:63:04:28:42:20:32:0a:c0:5b:42:29:4d:a8:
2f:c3:7d:69:55:89:97:ac:c3:45:80:a1:ae:18:be:
e4:44:cb:fc:3d:d1:d1:c8:a5:85:05:00:b3:62:72:
6a:08:6d:47:d0:47:25:43:49:fe:f0:12:c0:23:3e:
72:1c:b2:5c:69:ab:61:26:96:ab:fc:f0:77:fb:99:
98:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:66:8F:A5:5B:A8:9B:E3:4D:FA:9D:48:50:2F:23:13:E0:04:8D:3C
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:75:6b:41:cf:99:3b:48:33:8b:cd:0b:61:95:9f:38:76:c3:
92:32:4f:82:72:da:4b:dc:3a:18:ef:bc:1d:3d:24:29:17:df:
26:1e:b7:04:1f:a3:33:df:28:67:05:b3:f4:95:62:d6:b1:38:
9d:4f:27:2a:ec:45:f3:1c:df:fd:e7:0d:9f:ce:b0:5a:ca:60:
40:e8:1c:b8:ea:a5:96:4f:70:1d:de:87:6f:f8:48:6a:44:07:
b0:0d:f9:17:32:60:57:c5:01:29:59:77:57:b3:8a:dd:cd:99:
e9:85:ac:4e:da:3b:48:e4:e8:64:e2:db:80:5e:fe:78:95:3d:
e3:2d:a7:e8:87:68:01:ff:7e:44:22:d3:ed:69:25:5f:1c:b8:
0f:21:a4:bd:f4:ea:28:d7:6a:a2:0f:55:35:fd:26:c1:75:7a:
40:1b:83:0c:81:15:79:99:70:13:10:5d:52:a1:bf:4a:8b:7b:
d2:6c:2b:13:fe:a9:d8:1d:3d:97:6c:19:5e:e5:af:db:d1:31:
b4:db:51:2b:76:3c:9d:50:68:2c:0c:d5:cd:4b:bf:33:e4:79:
cb:33:bc:3a:d5:29:a5:92:57:04:8c:f3:35:15:59:a3:6a:89:
75:33:af:67:68:a1:e8:fd:d3:24:61:00:a3:92:e4:1a:00:0b:
b8:f8:49:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZTt0lM142T2A8g9zo9QqgPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMTYzZGQ0NDE0ZWYzZTc5MmUwMDUwMWYzNGVmY2U5NDQw
YTljNGUwHhcNMjUwNDIwMTUwMDQyWhcNMjUwNDIxMTUwMDQyWjAzMTEwLwYDVQQD
Eyg1ZDY2OGZhNTViYTg5YmUzNGRmYTlkNDg1MDJmMjMxM2UwMDQ4ZDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthbYDCN88wNUPcQ4tLEVYAa+rm6M
jTLdjnn7hKzlA4K4hUCQa8IuTWiEV9H7vcIangV9mbovk67k/uouxxGiwBNOeY7a
fvIJf/ybDz5uDVk2AHX9tSjnZL/7bVtDpwDee4H6fsKLkS0+Kgnazn7ME+0ZhepV
jb/vpIqAzFLCCkEbhWSnolGL5eCeZ5MyiTRHoNlxQr3xrMcyzCSmgbHjW7aepZxU
lsnCOR8BHtOochhI034mE2MEKEIgMgrAW0IpTagvw31pVYmXrMNFgKGuGL7kRMv8
PdHRyKWFBQCzYnJqCG1H0EclQ0n+8BLAIz5yHLJcaathJpar/PB3+5mY7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF1mj6VbqJvjTfqdSFAvIxPgBI08MB8GA1UdIwQY
MBaAFEAWPdRBTvPnkuAFAfNO/OlECpxOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy81MjE0MzgtM2UwNC00ZDcyLTg4ZGUt
MzYyMmFjN2Q2NWNjLzEvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy81MjE0MzgtM2UwNC00ZDcyLTg4ZGUtMzYyMmFjN2Q2NWNj
LzEvUUJZOTFFRk84LWVTNEFVQjgwNzg2VVFLbkU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARHVrQc+Z
O0gzi80LYZWfOHbDkjJPgnLaS9w6GO+8HT0kKRffJh63BB+jM98oZwWz9JVi1rE4
nU8nKuxF8xzf/ecNn86wWspgQOgcuOqllk9wHd6Hb/hIakQHsA35FzJgV8UBKVl3
V7OK3c2Z6YWsTto7SOToZOLbgF7+eJU94y2n6IdoAf9+RCLT7WklXxy4DyGkvfTq
KNdqog9VNf0mwXV6QBuDDIEVeZlwExBdUqG/Sot70mwrE/6p2B09l2wZXuWv29Ex
tNtRK3Y8nVBoLAzVzUu/M+R5yzO8OtUppZJXBIzzNRVZo2qJdTOvZ2ih6P3TJGEA
o5LkGgALuPhJVw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 19:59:27 2025 by rpki-client