Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
File: qwJca7PczxsWUUnChzwEsabH2no.mft (raw, json)
Hash identifier: c4fVi+OlbTPTeJsbUkq+EkMr6Uu+9eyNve0My08oqf0=
Subject key identifier: A5:59:23:31:00:E4:52:E8:D7:50:37:E2:46:AD:FB:AE:E7:4F:7F:3E
Authority key identifier: AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A
Certificate issuer: /CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
Certificate serial: 019677FB57F912FBF3BCB12BFB753351FB89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
Manifest number: 09CC
Signing time: Sun 27 Apr 2025 16:01:22 +0000
Manifest this update: Sun 27 Apr 2025 16:01:22 +0000
Manifest next update: Mon 28 Apr 2025 16:01:22 +0000
Files and hashes: 1: qwJca7PczxsWUUnChzwEsabH2no.crl (hash: ko0NqWpv1PzHxSe/brtCArkn5WCXyEZRnde4SCekZPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fb:57:f9:12:fb:f3:bc:b1:2b:fb:75:33:51:fb:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
Validity
Not Before: Apr 27 16:01:22 2025 GMT
Not After : Apr 28 16:01:22 2025 GMT
Subject: CN=a559233100e452e8d75037e246adfbaee74f7f3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:58:a5:05:a6:22:80:46:73:ec:e9:28:5f:1e:
0b:85:07:13:a0:70:65:ac:39:d7:32:81:05:a6:ce:
aa:5b:a1:cb:94:0d:3c:23:1c:ac:e2:69:e6:4a:42:
d8:58:b7:9d:e0:f5:02:67:14:f9:9f:01:4c:3f:54:
7b:a2:cc:db:31:4d:f7:1c:70:7f:0f:c2:8a:fe:f1:
4d:14:1e:a9:d2:e4:f1:33:cc:d9:05:f7:87:e4:66:
1d:63:b5:7f:b6:cf:4a:ed:6d:63:60:62:a9:b5:8e:
1f:e4:c8:46:be:b2:ad:2d:49:7f:22:1f:6d:ca:ce:
63:c2:c5:14:3e:0b:7c:ba:86:fd:10:87:89:9c:28:
6f:48:b3:a5:fa:c1:bc:33:c2:ed:00:47:50:69:4c:
5d:35:2d:01:ca:3a:f1:b2:ef:01:24:36:89:b8:3f:
4f:e5:c6:a7:60:ac:2b:0d:30:20:25:02:a6:a8:80:
1b:ab:10:65:f1:29:c1:a0:06:9a:b4:bd:16:58:d8:
9d:0b:b6:81:d3:c7:fd:d2:2f:6e:7f:60:4d:cc:82:
48:75:32:a4:b5:ef:95:86:71:ce:4f:ff:c9:b7:8e:
2f:39:7e:6f:06:b9:bc:4f:6d:e0:ff:d7:19:99:ed:
de:5b:3f:1f:35:a5:f3:bc:37:89:3a:c2:d1:74:99:
77:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:59:23:31:00:E4:52:E8:D7:50:37:E2:46:AD:FB:AE:E7:4F:7F:3E
X509v3 Authority Key Identifier:
keyid:AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:a8:7c:19:64:b9:ab:32:d4:08:3f:e1:ca:5a:92:cc:d8:0c:
50:95:9d:8f:60:4b:11:ca:66:e8:af:af:46:d0:ba:28:6e:49:
23:cf:f4:5c:45:04:cb:c1:79:0d:13:e0:2a:78:d6:9e:71:c7:
40:90:88:17:11:11:98:2b:b5:b9:ab:4c:42:eb:99:1f:df:a5:
39:59:77:ea:1a:55:89:a6:c6:90:f4:69:d3:f5:55:bb:30:ce:
c4:b4:d0:c7:03:1c:57:7d:e5:34:e8:f4:f2:ea:64:d3:72:84:
4b:3a:54:1c:b4:0c:4e:48:57:0e:ae:ea:7f:ad:0b:7c:26:c0:
46:3b:43:60:1b:87:78:39:77:65:7f:91:ff:ec:36:77:f2:5f:
44:91:01:b8:1e:de:2d:d5:3f:2a:0c:39:5c:1f:64:97:43:c7:
5a:bf:68:63:da:e0:68:17:c1:10:38:15:7a:9f:47:59:7c:21:
07:22:0d:a7:34:0f:3b:99:dc:b8:39:07:d4:24:c4:4c:40:b0:
27:01:86:b2:85:ac:58:61:b9:b9:b4:ad:35:af:e6:00:88:b1:
4e:d5:a4:89:4b:6e:29:99:78:d3:dd:66:36:cf:8c:58:99:c6:
0c:cd:a9:b1:57:00:fb:52:72:02:a6:86:05:36:05:51:6b:13:
ee:e1:84:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3+1f5EvvzvLEr+3UzUfuJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMDI1YzZiYjNkY2NmMWIxNjUxNDljMjg3M2MwNGIxYTZj
N2RhN2EwHhcNMjUwNDI3MTYwMTIyWhcNMjUwNDI4MTYwMTIyWjAzMTEwLwYDVQQD
EyhhNTU5MjMzMTAwZTQ1MmU4ZDc1MDM3ZTI0NmFkZmJhZWU3NGY3ZjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVilBaYigEZz7OkoXx4LhQcToHBl
rDnXMoEFps6qW6HLlA08Ixys4mnmSkLYWLed4PUCZxT5nwFMP1R7oszbMU33HHB/
D8KK/vFNFB6p0uTxM8zZBfeH5GYdY7V/ts9K7W1jYGKptY4f5MhGvrKtLUl/Ih9t
ys5jwsUUPgt8uob9EIeJnChvSLOl+sG8M8LtAEdQaUxdNS0Byjrxsu8BJDaJuD9P
5canYKwrDTAgJQKmqIAbqxBl8SnBoAaatL0WWNidC7aB08f90i9uf2BNzIJIdTKk
te+VhnHOT//Jt44vOX5vBrm8T23g/9cZme3eWz8fNaXzvDeJOsLRdJl3LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKVZIzEA5FLo11A34kat+67nT38+MB8GA1UdIwQY
MBaAFKsCXGuz3M8bFlFJwoc8BLGmx9p6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXdKY2E3UGN6eHNXVVVuQ2h6d0VzYWJIMm5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8wNWIxZTMtMjRjMC00NjY4LTlmNDAt
ZmU3NzQ3M2UzZGNmLzEvcXdKY2E3UGN6eHNXVVVuQ2h6d0VzYWJIMm5vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8wNWIxZTMtMjRjMC00NjY4LTlmNDAtZmU3NzQ3M2UzZGNm
LzEvcXdKY2E3UGN6eHNXVVVuQ2h6d0VzYWJIMm5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsqh8GWS5
qzLUCD/hylqSzNgMUJWdj2BLEcpm6K+vRtC6KG5JI8/0XEUEy8F5DRPgKnjWnnHH
QJCIFxERmCu1uatMQuuZH9+lOVl36hpViabGkPRp0/VVuzDOxLTQxwMcV33lNOj0
8upk03KESzpUHLQMTkhXDq7qf60LfCbARjtDYBuHeDl3ZX+R/+w2d/JfRJEBuB7e
LdU/Kgw5XB9kl0PHWr9oY9rgaBfBEDgVep9HWXwhByINpzQPO5ncuDkH1CTETECw
JwGGsoWsWGG5ubStNa/mAIixTtWkiUtuKZl4091mNs+MWJnGDM2psVcA+1JyAqaG
BTYFUWsT7uGEkA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 23:13:42 2025 by rpki-client