Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
File: q2TJrlviZApf1pRYanBMo0wgh78.mft (raw, json)
Hash identifier: kekFPL11uTQt3H+htJsyxkm9QstyiVezDKaDvX+pa9Y=
Subject key identifier: 34:B1:08:F6:54:FF:FC:53:A0:D3:8A:B5:2A:09:58:7D:03:BA:AE:49
Authority key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
Certificate issuer: /CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Certificate serial: 0196895BB6C0646A7AA2B2C30E746C6590AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
Manifest number: 151A
Signing time: Thu 01 May 2025 01:00:11 +0000
Manifest this update: Thu 01 May 2025 01:00:11 +0000
Manifest next update: Fri 02 May 2025 01:00:11 +0000
Files and hashes: 1: JLsWf4ypDqy3C3Vznf4c_jhkWzQ.roa (hash: W+Y7OMJT6eANPHdTBze3RK40F6OnPRrXmssah9nRki0=)
2: q2TJrlviZApf1pRYanBMo0wgh78.crl (hash: gY362iBdqnHxtjZkhlNjQuO8ZUuyPBp8SbH2zAn+Qh0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:5b:b6:c0:64:6a:7a:a2:b2:c3:0e:74:6c:65:90:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Validity
Not Before: May 1 01:00:11 2025 GMT
Not After : May 2 01:00:11 2025 GMT
Subject: CN=34b108f654fffc53a0d38ab52a09587d03baae49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0e:68:37:e5:34:75:03:7d:00:df:90:1c:bc:
fe:bb:4b:a4:d6:e6:9d:45:88:e3:15:11:43:5c:44:
5d:8e:c2:e1:4b:0c:4d:dc:e4:de:37:c3:af:5a:91:
91:80:20:3d:4c:98:c3:04:bd:32:e4:e0:c2:41:fa:
74:3a:c8:da:a2:30:99:71:f4:2d:d9:92:bb:c8:ff:
eb:b5:ab:83:4b:8a:ee:ff:a6:56:1a:8e:ce:e4:91:
fb:b6:39:01:74:7f:94:29:50:86:2a:06:3e:2f:a7:
c0:d1:4e:e8:cd:d0:1e:bd:d0:e1:7d:8b:15:d3:83:
a1:75:41:46:fd:2e:c5:9b:96:9d:a8:ad:c7:1a:12:
08:09:e3:1e:8c:fe:0c:4a:f1:41:87:17:8e:02:de:
8f:ec:54:67:96:58:d4:f5:06:8d:5f:bb:3d:0d:6e:
5b:6a:10:5a:d1:e3:47:a7:8d:81:75:08:9c:39:91:
e3:d3:b4:48:e6:69:aa:d4:af:ec:ec:3b:e4:f8:e8:
0a:b1:50:18:23:d9:03:cb:e7:bd:a0:58:fb:0b:47:
0f:cc:db:ec:40:b7:7e:96:26:18:3e:d9:6b:01:1b:
11:9f:52:89:64:33:71:60:b4:f8:05:db:92:54:83:
1b:7e:55:4f:8d:b9:3e:81:2c:68:d4:b8:db:83:f0:
d0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B1:08:F6:54:FF:FC:53:A0:D3:8A:B5:2A:09:58:7D:03:BA:AE:49
X509v3 Authority Key Identifier:
keyid:AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:03:ef:12:db:51:7b:d7:11:c9:01:6a:f6:e2:b1:71:84:8a:
28:ef:65:fc:48:fe:4a:3f:4a:b2:e0:8f:a7:99:62:4f:3f:ac:
8e:63:3c:e9:dc:1c:d1:83:64:44:4e:42:9a:d0:4d:0f:85:76:
39:98:12:27:e3:74:d9:5e:df:49:30:28:72:27:8f:c5:02:ad:
6f:cc:29:f6:ce:70:83:1b:50:e7:c1:b9:f6:33:64:3c:e7:c6:
66:a8:1c:37:ad:87:a8:4c:b5:36:82:01:f4:39:16:69:d7:98:
3c:c0:c6:4f:e9:a9:cb:3e:5c:3b:7c:ca:07:b6:82:74:41:83:
b1:1b:c2:34:2b:44:82:17:62:7b:0c:e7:68:b9:4e:b3:cd:32:
51:cf:a9:f2:da:3d:b3:ab:54:4a:a8:16:38:a0:f8:7d:b9:5e:
87:73:ad:5e:c5:1b:93:f0:52:13:ba:5f:fe:61:cb:90:8e:22:
b8:66:5e:34:20:e3:32:01:7c:e3:45:c6:9d:86:d5:d4:b4:b3:
fb:14:48:2a:95:86:a7:69:d6:00:00:34:16:7d:99:18:35:0b:
14:a4:2c:0a:e8:10:87:7c:9d:05:74:6e:68:72:9f:1a:a8:0b:
80:fc:9d:b6:0c:24:36:e4:c0:ff:e2:a9:53:d5:e0:80:a0:56:
44:b9:a5:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaJW7bAZGp6orLDDnRsZZCsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNjRjOWFlNWJlMjY0MGE1ZmQ2OTQ1ODZhNzA0Y2EzNGMy
MDg3YmYwHhcNMjUwNTAxMDEwMDExWhcNMjUwNTAyMDEwMDExWjAzMTEwLwYDVQQD
EygzNGIxMDhmNjU0ZmZmYzUzYTBkMzhhYjUyYTA5NTg3ZDAzYmFhZTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQ5oN+U0dQN9AN+QHLz+u0uk1uad
RYjjFRFDXERdjsLhSwxN3OTeN8OvWpGRgCA9TJjDBL0y5ODCQfp0OsjaojCZcfQt
2ZK7yP/rtauDS4ru/6ZWGo7O5JH7tjkBdH+UKVCGKgY+L6fA0U7ozdAevdDhfYsV
04OhdUFG/S7Fm5adqK3HGhIICeMejP4MSvFBhxeOAt6P7FRnlljU9QaNX7s9DW5b
ahBa0eNHp42BdQicOZHj07RI5mmq1K/s7Dvk+OgKsVAYI9kDy+e9oFj7C0cPzNvs
QLd+liYYPtlrARsRn1KJZDNxYLT4BduSVIMbflVPjbk+gSxo1Ljbg/DQnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDSxCPZU//xToNOKtSoJWH0Duq5JMB8GA1UdIwQY
MBaAFKtkya5b4mQKX9aUWGpwTKNMIIe/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9jNTVjYmMtZTQzZC00MGNiLTg0NGYt
MzFjNTEzN2VjMzhhLzEvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9jNTVjYmMtZTQzZC00MGNiLTg0NGYtMzFjNTEzN2VjMzhh
LzEvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOwPvEttR
e9cRyQFq9uKxcYSKKO9l/Ej+Sj9KsuCPp5liTz+sjmM86dwc0YNkRE5CmtBND4V2
OZgSJ+N02V7fSTAociePxQKtb8wp9s5wgxtQ58G59jNkPOfGZqgcN62HqEy1NoIB
9DkWadeYPMDGT+mpyz5cO3zKB7aCdEGDsRvCNCtEghdiewznaLlOs80yUc+p8to9
s6tUSqgWOKD4fbleh3OtXsUbk/BSE7pf/mHLkI4iuGZeNCDjMgF840XGnYbV1LSz
+xRIKpWGp2nWAAA0Fn2ZGDULFKQsCugQh3ydBXRuaHKfGqgLgPydtgwkNuTA/+Kp
U9XggKBWRLmlMg==
-----END CERTIFICATE-----
Generated at Thu May 1 11:16:52 2025 by rpki-client