Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json)
Hash identifier: g7LDv6b9CCr/V7l/SR2HN2TZbtrIG/NMOw8omD3y+zQ=
Subject key identifier: B8:27:0A:2C:48:D1:D0:E1:77:2D:CC:22:3C:9F:29:27:02:59:1D:55
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 0196816BAC2CAC0A8E4F63924A3A4CC9922E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 12:00:39 +0000
Manifest this update: Tue 29 Apr 2025 12:00:39 +0000
Manifest next update: Wed 30 Apr 2025 12:00:39 +0000
Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: CL0jo6AQyhQnOic4uqUuQFJrga6YERxqda6UAUgsJDo=)
2: nqDbjTD7-4bF8APAmv3q39AmNtk.roa (hash: zWbRV6cXuufmhpJUA1tayT8JP8s9Ez0NcmTuvgMXFF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:6b:ac:2c:ac:0a:8e:4f:63:92:4a:3a:4c:c9:92:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Apr 29 12:00:39 2025 GMT
Not After : Apr 30 12:00:39 2025 GMT
Subject: CN=b8270a2c48d1d0e1772dcc223c9f292702591d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:03:09:fe:bc:dc:bf:80:69:c0:3c:30:6d:28:
55:16:0a:78:8c:c8:c3:c7:bd:15:df:fd:27:2e:46:
ec:5e:61:7d:a6:bf:87:ac:89:43:39:89:0b:6a:4c:
99:c1:71:99:b5:37:30:20:33:e1:40:97:57:97:28:
19:85:4b:bd:60:f0:c6:5d:26:06:19:0e:12:59:83:
83:1d:0b:ba:10:05:3e:c4:f2:0b:c4:75:a1:38:2d:
ec:21:bf:04:1e:a1:8d:8a:53:ad:2f:4f:4d:79:e0:
dc:04:fa:61:e6:24:96:3a:5b:89:47:d0:37:ee:39:
a9:c1:e0:2a:9b:1a:9c:55:8a:7a:06:bc:79:ce:1f:
69:2c:44:c2:70:01:7e:56:f0:b7:91:af:fa:1f:5b:
f7:ca:29:3d:f9:c4:a8:34:9d:58:d5:d5:51:21:3c:
34:a1:e1:b2:9e:36:d1:9d:8f:23:b5:ca:04:bc:ea:
cf:e1:ec:3f:10:59:3b:e9:f2:63:1f:7d:f3:9d:0a:
76:56:31:85:d1:bf:60:fb:80:0b:26:9c:e1:ba:b5:
bb:be:25:43:f0:10:04:d7:f3:d5:49:b7:8f:3d:37:
d6:aa:5a:a4:29:5e:9b:72:9d:c5:c2:b8:73:59:a1:
0e:f1:5d:06:61:e3:04:69:7f:87:56:6b:04:e3:5f:
ac:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:27:0A:2C:48:D1:D0:E1:77:2D:CC:22:3C:9F:29:27:02:59:1D:55
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:71:68:71:fd:83:75:d7:b1:d7:a6:c9:b1:ed:24:ec:a7:e0:
0d:7b:a4:56:ef:23:10:6a:16:9a:70:2d:b2:42:cd:81:9f:8d:
44:2f:11:ba:6a:82:44:cf:3e:89:ff:49:e4:7f:87:74:a8:4c:
81:79:4d:48:0c:1d:46:e3:d5:a6:a2:a6:e0:2c:c5:8b:ef:97:
64:6e:b6:83:28:49:01:82:ad:ca:ef:e4:65:11:dd:a2:24:57:
95:cc:f7:8a:d5:cb:3a:af:1c:4e:bc:1b:e6:7c:23:aa:e1:bb:
ea:98:6a:f7:28:11:93:e2:cb:a0:28:52:9f:7a:62:31:46:9c:
97:4c:9f:84:0c:9a:da:43:00:2a:39:23:29:06:4f:d3:57:05:
86:6c:93:5a:09:2e:7b:e3:d5:2f:53:c3:4e:8a:ec:5f:b2:d4:
5a:1e:32:74:5b:e4:21:23:36:18:7e:b8:61:e6:b0:46:39:2d:
ed:95:7e:8c:bd:75:27:5d:cd:d4:b5:69:4b:dc:8d:5f:d4:18:
14:14:67:e2:69:ae:cc:4f:27:6d:34:e6:37:93:4f:44:34:1b:
14:e6:d4:e3:72:cb:56:d9:31:16:dc:ee:75:ba:1f:d9:41:e3:
b0:33:d6:8d:ab:9e:b8:b8:76:ab:90:52:fc:d4:86:2a:72:8b:
51:b4:de:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaBa6wsrAqOT2OSSjpMyZIuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyYzA5NTkwMTE2MjdkZGQwZDA1N2Q3MzFlOGZhNWE1MTAy
OTY1OTIwHhcNMjUwNDI5MTIwMDM5WhcNMjUwNDMwMTIwMDM5WjAzMTEwLwYDVQQD
EyhiODI3MGEyYzQ4ZDFkMGUxNzcyZGNjMjIzYzlmMjkyNzAyNTkxZDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgMJ/rzcv4BpwDwwbShVFgp4jMjD
x70V3/0nLkbsXmF9pr+HrIlDOYkLakyZwXGZtTcwIDPhQJdXlygZhUu9YPDGXSYG
GQ4SWYODHQu6EAU+xPILxHWhOC3sIb8EHqGNilOtL09NeeDcBPph5iSWOluJR9A3
7jmpweAqmxqcVYp6Brx5zh9pLETCcAF+VvC3ka/6H1v3yik9+cSoNJ1Y1dVRITw0
oeGynjbRnY8jtcoEvOrP4ew/EFk76fJjH33znQp2VjGF0b9g+4ALJpzhurW7viVD
8BAE1/PVSbePPTfWqlqkKV6bcp3FwrhzWaEO8V0GYeMEaX+HVmsE41+sSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLgnCixI0dDhdy3MIjyfKScCWR1VMB8GA1UdIwQY
MBaAFELAlZARYn3dDQV9cx6PpaUQKWWSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iYTEyY2QtMmU3ZS00MGRjLWFlODgt
MjQ4YjU5YzM2OTZiLzEvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iYTEyY2QtMmU3ZS00MGRjLWFlODgtMjQ4YjU5YzM2OTZi
LzEvUXNDVmtCRmlmZDBOQlgxekhvLWxwUkFwWlpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJnFocf2D
ddex16bJse0k7KfgDXukVu8jEGoWmnAtskLNgZ+NRC8RumqCRM8+if9J5H+HdKhM
gXlNSAwdRuPVpqKm4CzFi++XZG62gyhJAYKtyu/kZRHdoiRXlcz3itXLOq8cTrwb
5nwjquG76phq9ygRk+LLoChSn3piMUacl0yfhAya2kMAKjkjKQZP01cFhmyTWgku
e+PVL1PDTorsX7LUWh4ydFvkISM2GH64YeawRjkt7ZV+jL11J13N1LVpS9yNX9QY
FBRn4mmuzE8nbTTmN5NPRDQbFObU43LLVtkxFtzudbof2UHjsDPWjaueuLh2q5BS
/NSGKnKLUbTeaA==
-----END CERTIFICATE-----
Generated at Tue Apr 29 14:33:39 2025 by rpki-client