Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
File: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft (raw, json)
Hash identifier: JAz3EJpbEHqgOwI/gwNfdUQ48rR4kPDqWhAp9snIiUs=
Subject key identifier: 20:EC:CA:2A:14:D4:73:12:FF:BD:43:23:CF:11:98:76:58:21:C6:E2
Authority key identifier: 42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16
Certificate issuer: /CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716
Certificate serial: 01968F959DC1F5212D985035FCF550EB1737
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
Manifest number: 151C
Signing time: Fri 02 May 2025 06:01:09 +0000
Manifest this update: Fri 02 May 2025 06:01:09 +0000
Manifest next update: Sat 03 May 2025 06:01:09 +0000
Files and hashes: 1: 83F_Jp7hhNkTyKzmQu0uAqQ-Hug.roa (hash: /GIKVjlq0TkCjqFIvHfnkG7+yghgu5kkQctxwrpV6qw=)
2: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl (hash: L0kCtxjSYp3qOIouHRIibwieoYxMGM7xsOvK6NHngH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 06:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:95:9d:c1:f5:21:2d:98:50:35:fc:f5:50:eb:17:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716
Validity
Not Before: May 2 06:01:09 2025 GMT
Not After : May 3 06:01:09 2025 GMT
Subject: CN=20ecca2a14d47312ffbd4323cf1198765821c6e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:30:24:88:89:f9:1a:47:1b:ab:d3:a6:7c:44:
a4:0e:91:1b:1b:65:80:0e:ec:a8:e7:20:af:e5:c4:
23:61:23:0b:a2:5b:ba:c1:a5:e0:cc:20:15:b6:80:
77:3f:ab:7f:81:d4:69:4c:db:e0:e9:7a:66:e7:83:
e2:47:0c:02:7c:64:69:e9:1a:93:03:31:77:74:d3:
1b:0f:30:4c:d6:8b:ac:b5:48:07:ab:88:e2:11:a6:
93:c5:13:af:e1:d3:68:ae:db:87:93:f5:ce:14:a4:
72:d5:13:89:b9:f0:f3:19:19:ca:54:15:a1:6d:b2:
0d:80:cb:8d:19:0b:0e:40:ba:4d:08:33:ba:77:d3:
65:d9:47:be:fd:8f:4d:32:07:2e:83:d6:96:d1:6a:
6c:8d:cb:ac:b4:95:45:ea:ba:6b:0b:8e:cd:da:79:
a7:dc:25:85:81:4e:29:df:50:68:a0:37:ef:9a:44:
bf:e6:5c:3b:5e:ae:b3:f7:ae:28:e6:95:ac:2c:dd:
e5:9e:44:ff:6a:a3:f9:7d:1c:a9:39:b8:7c:dd:ae:
bc:ba:4c:39:58:e3:8e:cd:e3:d9:3f:3f:71:23:97:
c5:03:12:26:c3:10:53:4d:dd:76:65:0e:1c:f8:18:
b9:eb:e7:f2:91:e1:80:d1:0f:65:62:b1:2a:a2:a7:
ec:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:EC:CA:2A:14:D4:73:12:FF:BD:43:23:CF:11:98:76:58:21:C6:E2
X509v3 Authority Key Identifier:
keyid:42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:fd:90:71:01:61:9c:63:be:15:34:73:17:fa:2c:0c:11:5f:
99:48:42:a6:55:ff:b5:ff:ce:93:ba:6c:0e:5c:e8:a1:db:ab:
f2:6d:8f:05:60:83:c0:19:10:3c:9a:27:ce:e7:8b:a3:78:60:
a6:fd:05:f3:be:9e:22:f3:7f:64:65:03:f5:d3:04:fd:86:92:
23:b5:4e:b0:d4:b6:87:47:27:52:77:bc:1c:12:fd:73:37:5d:
a8:20:3c:8a:6f:1b:b9:d2:a5:80:7b:28:c5:02:ce:cd:87:ac:
a3:f0:9b:ab:b5:4d:08:c4:cc:8a:52:01:22:45:27:27:e3:ab:
a9:c4:42:7f:24:30:8d:1a:b5:a6:9b:4e:01:17:21:c2:88:81:
89:7d:28:5a:9a:a6:5b:2b:fe:01:ad:bc:b9:34:fd:f4:23:fe:
73:6a:b1:76:57:0a:12:12:ab:cd:fa:93:c5:07:4a:22:6c:ec:
8b:be:c6:12:c6:e2:39:61:6b:68:d1:ba:a8:39:54:56:6a:a0:
76:7d:b1:71:13:43:e7:9b:d2:b3:0a:eb:bf:8b:8c:d3:3c:7f:
a5:58:90:f7:5b:a9:dd:04:8a:d6:fa:0f:90:10:2d:9b:df:d6:
7a:d1:dc:d0:34:97:c6:91:99:15:dd:7e:a0:05:b1:0b:e3:29:
70:74:57:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaPlZ3B9SEtmFA1/PVQ6xc3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyNGZkMWEzYTAyNThkY2NhNjdmYzlkZGRiZjRlMzYxNTdl
NmE3MTYwHhcNMjUwNTAyMDYwMTA5WhcNMjUwNTAzMDYwMTA5WjAzMTEwLwYDVQQD
EygyMGVjY2EyYTE0ZDQ3MzEyZmZiZDQzMjNjZjExOTg3NjU4MjFjNmUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlDAkiIn5Gkcbq9OmfESkDpEbG2WA
Duyo5yCv5cQjYSMLolu6waXgzCAVtoB3P6t/gdRpTNvg6Xpm54PiRwwCfGRp6RqT
AzF3dNMbDzBM1oustUgHq4jiEaaTxROv4dNortuHk/XOFKRy1ROJufDzGRnKVBWh
bbINgMuNGQsOQLpNCDO6d9Nl2Ue+/Y9NMgcug9aW0WpsjcustJVF6rprC47N2nmn
3CWFgU4p31BooDfvmkS/5lw7Xq6z964o5pWsLN3lnkT/aqP5fRypObh83a68ukw5
WOOOzePZPz9xI5fFAxImwxBTTd12ZQ4c+Bi56+fykeGA0Q9lYrEqoqfsKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCDsyioU1HMS/71DI88RmHZYIcbiMB8GA1UdIwQY
MBaAFEJP0aOgJY3Mpn/J3dv042FX5qcWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWtfUm82QWxqY3ltZjhuZDJfVGpZVmZtcHhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MTM3NTItYjhkYy00ZGZmLTg2Njct
NzQ3YjBlNTdhYjVlLzEvUWtfUm82QWxqY3ltZjhuZDJfVGpZVmZtcHhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS85MTM3NTItYjhkYy00ZGZmLTg2NjctNzQ3YjBlNTdhYjVl
LzEvUWtfUm82QWxqY3ltZjhuZDJfVGpZVmZtcHhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf/2QcQFh
nGO+FTRzF/osDBFfmUhCplX/tf/Ok7psDlzoodur8m2PBWCDwBkQPJonzueLo3hg
pv0F876eIvN/ZGUD9dME/YaSI7VOsNS2h0cnUne8HBL9czddqCA8im8budKlgHso
xQLOzYeso/Cbq7VNCMTMilIBIkUnJ+OrqcRCfyQwjRq1pptOARchwoiBiX0oWpqm
Wyv+Aa28uTT99CP+c2qxdlcKEhKrzfqTxQdKImzsi77GEsbiOWFraNG6qDlUVmqg
dn2xcRND55vSswrrv4uM0zx/pViQ91up3QSK1voPkBAtm9/WetHc0DSXxpGZFd1+
oAWxC+MpcHRXGg==
-----END CERTIFICATE-----
Generated at Fri May 2 15:51:56 2025 by rpki-client