Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
File: Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft (raw, json)
Hash identifier: 8LjHawv3JNm5WR3u0pkvzOmzgie8FXOPQVnBdAJRIcA=
Subject key identifier: 54:14:DB:68:48:69:9B:38:59:AA:E4:FE:CA:2C:0B:41:CE:65:CD:74
Authority key identifier: 43:8F:8E:D1:21:BA:30:81:CF:B2:15:FA:AB:50:AE:14:5B:59:0D:D2
Certificate issuer: /CN=438f8ed121ba3081cfb215faab50ae145b590dd2
Certificate serial: 019696E1B5B77B78A80008F640BD79A4F990
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
Manifest number: 0E07
Signing time: Sat 03 May 2025 16:01:36 +0000
Manifest this update: Sat 03 May 2025 16:01:36 +0000
Manifest next update: Sun 04 May 2025 16:01:36 +0000
Files and hashes: 1: Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl (hash: Od5KqYvMENYIFhp37kjIAHGE8+tbvCAXIjnDK+p2F5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:96:e1:b5:b7:7b:78:a8:00:08:f6:40:bd:79:a4:f9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=438f8ed121ba3081cfb215faab50ae145b590dd2
Validity
Not Before: May 3 16:01:36 2025 GMT
Not After : May 4 16:01:36 2025 GMT
Subject: CN=5414db6848699b3859aae4feca2c0b41ce65cd74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b7:59:97:31:14:0a:f1:c3:b5:b0:0c:89:1e:
eb:f6:cd:30:6f:44:e9:4d:41:1b:db:4b:2c:59:5b:
e7:c4:65:63:38:aa:f4:32:75:e2:9c:e6:5e:74:9d:
18:f3:09:15:2e:81:b3:ca:42:e5:24:50:e9:f0:f4:
64:ec:d5:dd:f6:85:60:97:b1:3b:e9:72:fb:7f:6c:
88:55:69:8e:17:f6:b7:85:42:49:f5:c1:1e:0f:19:
39:45:89:85:74:9b:b2:ad:01:03:fa:ea:82:26:eb:
df:5c:b6:d1:eb:e8:b3:f9:1a:b5:83:82:8b:12:b4:
83:9e:03:ce:e8:2d:5e:d6:aa:38:fe:bb:44:ad:5b:
06:0a:61:12:d7:ff:68:f1:e1:f7:c0:22:35:3d:82:
a3:b0:ec:aa:f8:31:6a:79:99:83:63:54:ba:61:27:
95:ab:b8:f4:4f:42:60:d5:fe:e0:53:f4:05:1a:02:
f1:02:4c:0f:70:c3:0f:6d:75:83:2e:ec:2f:a2:ae:
c2:ee:07:92:9c:72:ad:cf:ef:e7:4a:b5:50:39:2c:
b2:b0:e8:31:0f:00:d3:d2:44:d4:63:ea:82:8c:7b:
9e:00:33:9b:80:7b:95:17:42:70:41:7e:d5:a9:38:
47:1a:13:09:59:d8:8d:b1:66:e8:12:73:95:06:b7:
38:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:14:DB:68:48:69:9B:38:59:AA:E4:FE:CA:2C:0B:41:CE:65:CD:74
X509v3 Authority Key Identifier:
keyid:43:8F:8E:D1:21:BA:30:81:CF:B2:15:FA:AB:50:AE:14:5B:59:0D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:55:a2:8f:4d:4c:76:6c:af:b5:e2:4b:3a:17:18:67:0f:73:
1f:91:0f:b4:32:bc:18:b0:f1:1f:fb:81:ca:16:0e:cf:2e:f8:
23:0e:96:8e:b1:e0:3f:d0:ba:98:17:41:de:d8:c0:3d:17:29:
5e:d5:0d:c5:cb:d1:e5:08:64:90:81:90:ac:e5:64:25:c2:8f:
aa:f9:81:d1:90:29:a8:3b:ff:38:00:76:61:a3:27:3f:7e:23:
01:9b:f9:b8:1d:b3:1b:43:7f:24:2f:9f:2a:bc:47:e3:86:ec:
2e:31:06:d1:20:5d:e9:f5:58:d6:ba:39:ee:70:c9:8b:86:32:
3f:3b:fc:ba:67:d9:23:49:56:6e:e1:56:b3:20:59:e2:d6:db:
78:16:50:7f:0a:80:c3:d5:69:0b:3d:6e:d9:45:8e:06:7d:62:
73:11:5d:f6:ab:4f:3b:e3:bf:de:99:49:49:97:b8:e0:97:1a:
e9:da:67:85:a8:c5:01:12:4f:4f:37:e5:0a:c8:92:e3:df:3c:
37:f8:8f:f7:84:03:0e:d4:a3:fa:40:aa:3d:43:7a:68:08:4b:
cc:08:e5:9e:0c:e6:d1:01:9d:4f:39:7a:48:95:5e:ff:12:d1:
7e:47:9c:b7:c1:df:63:4d:8d:f0:08:38:1a:15:99:b2:5e:70:
20:55:f0:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaW4bW3e3ioAAj2QL15pPmQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzOGY4ZWQxMjFiYTMwODFjZmIyMTVmYWFiNTBhZTE0NWI1
OTBkZDIwHhcNMjUwNTAzMTYwMTM2WhcNMjUwNTA0MTYwMTM2WjAzMTEwLwYDVQQD
Eyg1NDE0ZGI2ODQ4Njk5YjM4NTlhYWU0ZmVjYTJjMGI0MWNlNjVjZDc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbdZlzEUCvHDtbAMiR7r9s0wb0Tp
TUEb20ssWVvnxGVjOKr0MnXinOZedJ0Y8wkVLoGzykLlJFDp8PRk7NXd9oVgl7E7
6XL7f2yIVWmOF/a3hUJJ9cEeDxk5RYmFdJuyrQED+uqCJuvfXLbR6+iz+Rq1g4KL
ErSDngPO6C1e1qo4/rtErVsGCmES1/9o8eH3wCI1PYKjsOyq+DFqeZmDY1S6YSeV
q7j0T0Jg1f7gU/QFGgLxAkwPcMMPbXWDLuwvoq7C7geSnHKtz+/nSrVQOSyysOgx
DwDT0kTUY+qCjHueADObgHuVF0JwQX7VqThHGhMJWdiNsWboEnOVBrc43QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFQU22hIaZs4Wark/sosC0HOZc10MB8GA1UdIwQY
MBaAFEOPjtEhujCBz7IV+qtQrhRbWQ3SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTQtTzBTRzZNSUhQc2hYNnExQ3VGRnRaRGRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS85MzUwNDQtMWFmNS00NWQwLWFjZWIt
ZDA0MDY3NjdlNmNjLzEvUTQtTzBTRzZNSUhQc2hYNnExQ3VGRnRaRGRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS85MzUwNDQtMWFmNS00NWQwLWFjZWItZDA0MDY3NjdlNmNj
LzEvUTQtTzBTRzZNSUhQc2hYNnExQ3VGRnRaRGRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARFWij01M
dmyvteJLOhcYZw9zH5EPtDK8GLDxH/uByhYOzy74Iw6WjrHgP9C6mBdB3tjAPRcp
XtUNxcvR5QhkkIGQrOVkJcKPqvmB0ZApqDv/OAB2YaMnP34jAZv5uB2zG0N/JC+f
KrxH44bsLjEG0SBd6fVY1ro57nDJi4YyPzv8umfZI0lWbuFWsyBZ4tbbeBZQfwqA
w9VpCz1u2UWOBn1icxFd9qtPO+O/3plJSZe44Jca6dpnhajFARJPTzflCsiS4988
N/iP94QDDtSj+kCqPUN6aAhLzAjlngzm0QGdTzl6SJVe/xLRfkect8HfY02N8Ag4
GhWZsl5wIFXwqg==
-----END CERTIFICATE-----
Generated at Sat May 3 22:53:10 2025 by rpki-client