Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
File: qklDGDthG-Ogd1OCUJSQBIsK1zg.mft (raw, json)
Hash identifier: B62ZSC8wmTTPGFVKnwJ6ObyHqcInRb10Bn28oCFwHc4=
Subject key identifier: 96:5B:5A:9C:57:DE:39:B2:00:F1:30:99:6D:C4:CD:CD:DA:27:16:06
Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738
Certificate serial: 019682B5350EBF78A5FFEC3B657DC1A3CEF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
Manifest number: 1518
Signing time: Tue 29 Apr 2025 18:00:35 +0000
Manifest this update: Tue 29 Apr 2025 18:00:35 +0000
Manifest next update: Wed 30 Apr 2025 18:00:35 +0000
Files and hashes: 1: _b9uzDBnaBhrr4RiKYd-HrjhIyY.roa (hash: zuVo5YCjE6oxIWEPlMV6dA4fTWapSfHiFlgPsUG/qhk=)
2: qklDGDthG-Ogd1OCUJSQBIsK1zg.crl (hash: CDfBAMI69zaRDvdsz/iwdnmO52/EZxmSeTtNYmAeLI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:b5:35:0e:bf:78:a5:ff:ec:3b:65:7d:c1:a3:ce:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4943183b611be3a0775382509490048b0ad738
Validity
Not Before: Apr 29 18:00:35 2025 GMT
Not After : Apr 30 18:00:35 2025 GMT
Subject: CN=965b5a9c57de39b200f130996dc4cdcdda271606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:39:2e:54:91:c6:22:96:3e:2c:9b:15:27:67:
93:88:14:c2:75:c9:13:37:cc:5e:2a:ca:5a:82:ac:
e1:5f:01:07:e7:9b:92:c7:61:85:32:08:cd:8d:3c:
d4:da:cc:f2:e2:32:2f:b7:3b:df:57:0e:64:37:c8:
82:5e:8a:07:fe:77:55:48:fb:ce:9d:b3:db:74:43:
c4:10:35:33:86:23:fb:ce:3b:c6:a9:2d:eb:74:fc:
3c:c9:f6:c5:d0:de:df:f9:0f:02:72:be:65:54:85:
d6:fa:c1:30:07:1b:f0:2f:37:c4:d3:ac:80:c8:12:
be:39:44:2d:92:5f:d5:a1:32:47:07:63:ce:3c:4e:
d2:77:bc:c7:e4:e8:69:4a:65:0f:23:4e:02:5c:18:
92:4e:a8:9e:eb:a3:fe:50:5a:b5:ed:0f:c6:f4:72:
e6:74:87:7c:d7:f6:39:fa:9f:98:4a:3a:00:be:4c:
58:15:0f:44:1d:6c:39:2f:a7:af:4a:1b:94:7a:6e:
94:5c:5c:05:5c:40:ba:8e:e5:53:d5:7c:e2:83:04:
30:04:b3:ec:4c:71:b0:21:be:58:cc:9f:47:e1:5b:
b7:a2:48:5b:e4:0f:24:1b:cf:59:00:89:c4:b8:7c:
f1:23:2b:1e:46:45:93:15:41:5f:47:d5:71:17:c5:
b2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:5B:5A:9C:57:DE:39:B2:00:F1:30:99:6D:C4:CD:CD:DA:27:16:06
X509v3 Authority Key Identifier:
keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:37:3d:88:7e:5f:c7:50:0f:74:45:84:db:19:37:21:34:dd:
34:7f:a0:fc:63:4e:6f:d5:15:83:09:57:45:5a:ce:68:b3:1b:
1b:23:61:f0:2e:48:6f:36:16:d3:e4:3f:20:bf:9b:28:bf:17:
58:ae:8e:7d:87:39:87:fa:3b:de:20:07:3e:59:a0:57:59:64:
f8:2a:ce:f9:28:9b:12:9c:57:4a:f3:38:ca:f8:72:d1:91:43:
da:ad:96:a2:0a:41:19:5a:e2:9f:ed:c1:0e:cc:30:24:0c:f3:
9b:a1:0e:41:09:f9:2c:cd:80:58:0b:42:dd:be:7a:18:7c:7a:
54:d1:29:d2:d4:d6:b7:03:73:a5:94:9e:bf:76:0d:8a:28:12:
4d:96:48:76:ac:f9:8c:7d:83:ec:95:09:b5:b2:b2:bc:b1:b7:
d3:48:55:db:2a:37:e9:f5:9c:06:dc:6a:b3:4d:cb:36:f9:3f:
7c:10:14:68:3f:b6:fd:77:7c:e4:97:31:dc:b4:0d:6a:c3:46:
ed:f0:1f:b1:e8:3c:46:7a:97:1c:a8:70:6d:ea:6f:88:c0:07:
e5:7d:92:70:6d:ce:44:80:29:b7:27:0b:2a:1b:15:1a:05:2b:
15:ae:a4:c6:24:91:d8:09:e2:bb:a8:6a:d7:cd:0f:f7:0e:48:
5e:2f:07:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaCtTUOv3il/+w7ZX3Bo87yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNDk0MzE4M2I2MTFiZTNhMDc3NTM4MjUwOTQ5MDA0OGIw
YWQ3MzgwHhcNMjUwNDI5MTgwMDM1WhcNMjUwNDMwMTgwMDM1WjAzMTEwLwYDVQQD
Eyg5NjViNWE5YzU3ZGUzOWIyMDBmMTMwOTk2ZGM0Y2RjZGRhMjcxNjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjkuVJHGIpY+LJsVJ2eTiBTCdckT
N8xeKspagqzhXwEH55uSx2GFMgjNjTzU2szy4jIvtzvfVw5kN8iCXooH/ndVSPvO
nbPbdEPEEDUzhiP7zjvGqS3rdPw8yfbF0N7f+Q8Ccr5lVIXW+sEwBxvwLzfE06yA
yBK+OUQtkl/VoTJHB2POPE7Sd7zH5OhpSmUPI04CXBiSTqie66P+UFq17Q/G9HLm
dId81/Y5+p+YSjoAvkxYFQ9EHWw5L6evShuUem6UXFwFXEC6juVT1XzigwQwBLPs
THGwIb5YzJ9H4Vu3okhb5A8kG89ZAInEuHzxIyseRkWTFUFfR9VxF8WyQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJZbWpxX3jmyAPEwmW3Ezc3aJxYGMB8GA1UdIwQY
MBaAFKpJQxg7YRvjoHdTglCUkASLCtc4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS83YmIwMzgtMDFiYy00ZDg1LTlmMDQt
ZDIyMjc0YmJhNzEzLzEvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS83YmIwMzgtMDFiYy00ZDg1LTlmMDQtZDIyMjc0YmJhNzEz
LzEvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGTc9iH5f
x1APdEWE2xk3ITTdNH+g/GNOb9UVgwlXRVrOaLMbGyNh8C5IbzYW0+Q/IL+bKL8X
WK6OfYc5h/o73iAHPlmgV1lk+CrO+SibEpxXSvM4yvhy0ZFD2q2WogpBGVrin+3B
DswwJAzzm6EOQQn5LM2AWAtC3b56GHx6VNEp0tTWtwNzpZSev3YNiigSTZZIdqz5
jH2D7JUJtbKyvLG300hV2yo36fWcBtxqs03LNvk/fBAUaD+2/Xd85Jcx3LQNasNG
7fAfseg8RnqXHKhwbepviMAH5X2ScG3ORIAptycLKhsVGgUrFa6kxiSR2Aniu6hq
180P9w5IXi8HJg==
-----END CERTIFICATE-----
Generated at Wed Apr 30 00:15:37 2025 by rpki-client