Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: XQdsAxtKexrno62TBUB4VxcvEP0NUPPmiu7mn0FHBjE=
Subject key identifier: A4:D6:33:A2:10:8E:85:8A:F8:90:79:96:4D:EF:33:B5:92:CC:9B:EE
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 0196759E6D33A4F32767A5D23B71995993CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 150E
Signing time: Sun 27 Apr 2025 05:00:39 +0000
Manifest this update: Sun 27 Apr 2025 05:00:39 +0000
Manifest next update: Mon 28 Apr 2025 05:00:39 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: OsIxtvsM+MMO2jl76AqgFxLSd6WGBueYRouj890IoC4=)
2: rjvci4lVGCr57ADE7C3M4Mib4mk.roa (hash: yRKI8JSBUthmJegOInkpPYFyfDjZ1t7SRsTNJhUbFjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:6d:33:a4:f3:27:67:a5:d2:3b:71:99:59:93:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Apr 27 05:00:39 2025 GMT
Not After : Apr 28 05:00:39 2025 GMT
Subject: CN=a4d633a2108e858af89079964def33b592cc9bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8a:42:1b:8f:03:c2:74:bd:71:cc:c1:25:6c:
74:e7:9d:ab:c2:5c:99:96:36:30:2e:b1:38:29:33:
d2:59:e4:1b:fa:32:d4:f7:da:71:ce:08:c3:4a:aa:
ed:59:40:12:6b:fd:44:29:55:93:f0:9c:62:04:fc:
b1:aa:5f:90:75:a8:bc:2e:70:8c:1c:f7:5f:d1:0c:
75:4e:3c:ae:cb:a9:f8:ef:f0:e2:01:56:2a:02:67:
ba:5d:43:f5:d0:96:5f:28:d7:b8:bb:ba:71:aa:1d:
e3:c6:c9:bb:a7:b4:78:1a:34:df:e9:08:b0:ea:d6:
7b:42:c9:65:09:01:0d:7d:0c:1b:94:63:14:dc:dc:
67:46:5e:e7:af:3a:38:5d:3e:33:38:77:a3:31:9c:
79:4c:38:03:9a:66:20:68:7c:1f:b9:2b:d9:3c:fb:
3f:54:cc:80:0b:e7:ba:83:bb:fd:d9:94:d0:da:13:
25:a1:9d:e9:08:a7:5e:28:35:cf:aa:0d:83:43:fc:
73:04:f9:e0:ae:07:6a:61:fe:c9:78:be:98:67:eb:
d5:e9:e5:a1:61:48:c3:fc:bc:d2:a3:5f:8d:dc:b5:
3f:04:a7:f6:31:7f:52:e1:f2:b5:75:fd:bb:f9:f0:
55:d8:fe:2e:f0:56:a5:20:eb:04:1f:0a:c2:98:c3:
1d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D6:33:A2:10:8E:85:8A:F8:90:79:96:4D:EF:33:B5:92:CC:9B:EE
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:0d:a8:e8:16:d9:b6:24:4b:c8:74:8d:51:8c:38:96:bb:1b:
73:96:de:7d:98:81:15:33:b2:bc:48:42:41:5b:09:88:4a:1e:
be:ae:42:8c:ef:55:0a:78:dd:72:4b:dd:ec:dc:19:c4:43:cb:
45:91:93:8d:3f:cc:89:f1:55:49:47:5d:6a:b1:0a:e8:c7:5c:
51:5f:23:48:3e:13:f1:79:9e:48:f0:20:da:d6:0f:31:60:e3:
cd:2c:b2:ad:c6:b6:e0:7b:cd:43:0a:2d:c1:63:fc:5d:48:c2:
6b:63:9f:38:10:c9:13:31:83:be:6a:03:4f:5c:2a:fd:dc:b3:
fc:60:f8:0d:71:f2:30:ce:1e:5d:8b:2c:ef:9c:2f:e8:c5:f9:
d8:04:1e:6b:14:b7:86:c6:78:b7:0c:fb:f1:44:8a:c5:1e:97:
09:f8:f2:ac:30:2e:fd:1d:a3:12:df:4a:5b:21:ea:35:92:6f:
b6:85:57:b1:5f:bc:ec:d9:5b:ae:41:d0:7f:46:1c:a3:9f:00:
08:0c:ae:c9:28:f6:76:bb:2f:c1:39:71:38:9d:30:f1:98:1a:
8e:7f:c6:a0:74:09:b1:1c:b3:ff:e4:9f:68:2c:27:39:ed:2a:
94:66:07:e3:95:6a:7b:94:6e:ea:df:99:3e:8a:ca:8e:12:93:
bf:a2:52:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ1nm0zpPMnZ6XSO3GZWZPOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMWI0Y2Q0MGJhZTQ3ZDQ4ZjUxYzljY2NjNjA3Y2NlNTdj
ZTAwZjcwHhcNMjUwNDI3MDUwMDM5WhcNMjUwNDI4MDUwMDM5WjAzMTEwLwYDVQQD
EyhhNGQ2MzNhMjEwOGU4NThhZjg5MDc5OTY0ZGVmMzNiNTkyY2M5YmVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1opCG48DwnS9cczBJWx0552rwlyZ
ljYwLrE4KTPSWeQb+jLU99pxzgjDSqrtWUASa/1EKVWT8JxiBPyxql+Qdai8LnCM
HPdf0Qx1Tjyuy6n47/DiAVYqAme6XUP10JZfKNe4u7pxqh3jxsm7p7R4GjTf6Qiw
6tZ7QsllCQENfQwblGMU3NxnRl7nrzo4XT4zOHejMZx5TDgDmmYgaHwfuSvZPPs/
VMyAC+e6g7v92ZTQ2hMloZ3pCKdeKDXPqg2DQ/xzBPngrgdqYf7JeL6YZ+vV6eWh
YUjD/LzSo1+N3LU/BKf2MX9S4fK1df27+fBV2P4u8FalIOsEHwrCmMMdMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKTWM6IQjoWK+JB5lk3vM7WSzJvuMB8GA1UdIwQY
MBaAFEIbTNQLrkfUj1HJzMxgfM5XzgD3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEt
ODRjY2YzNDIwMjg2LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEtODRjY2YzNDIwMjg2
LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASA2o6BbZ
tiRLyHSNUYw4lrsbc5befZiBFTOyvEhCQVsJiEoevq5CjO9VCnjdckvd7NwZxEPL
RZGTjT/MifFVSUddarEK6MdcUV8jSD4T8XmeSPAg2tYPMWDjzSyyrca24HvNQwot
wWP8XUjCa2OfOBDJEzGDvmoDT1wq/dyz/GD4DXHyMM4eXYss75wv6MX52AQeaxS3
hsZ4twz78USKxR6XCfjyrDAu/R2jEt9KWyHqNZJvtoVXsV+87NlbrkHQf0Yco58A
CAyuySj2drsvwTlxOJ0w8Zgajn/GoHQJsRyz/+SfaCwnOe0qlGYH45Vqe5Ru6t+Z
PorKjhKTv6JSdg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 15:53:32 2025 by rpki-client