Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
File: Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft (raw, json)
Hash identifier: Sfs84OzX5c2VnnYd71uDgUHGLr4vP/BGXqG5uQ4ThWY=
Subject key identifier: D5:64:E4:AA:98:73:08:96:DB:C7:3D:2F:07:18:15:EF:B0:BF:BA:C6
Authority key identifier: 42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
Certificate issuer: /CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Certificate serial: 0196A088E86D007C08014A57450DBC8AB92B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
Manifest number: 057C
Signing time: Mon 05 May 2025 13:00:48 +0000
Manifest this update: Mon 05 May 2025 13:00:48 +0000
Manifest next update: Tue 06 May 2025 13:00:48 +0000
Files and hashes: 1: BR-wwst0Mwoj4cW4aMMLkST0T08.roa (hash: KhuoTa1EwW+NDwJopflLn+SOxpsU8qTU0jm6Bsplu/Y=)
2: Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl (hash: xMJ/jdGkobRnR5PcE4/qKlTzKbNSJLMtYUJ995nbo9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:88:e8:6d:00:7c:08:01:4a:57:45:0d:bc:8a:b9:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Validity
Not Before: May 5 13:00:48 2025 GMT
Not After : May 6 13:00:48 2025 GMT
Subject: CN=d564e4aa98730896dbc73d2f071815efb0bfbac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:07:37:76:25:4a:ad:94:42:03:4f:eb:cd:41:
fe:ac:2c:f4:bc:db:90:31:00:0a:97:15:6f:ca:ae:
00:54:8c:89:62:21:fa:5f:3b:f9:46:7b:e9:48:22:
81:b5:0d:37:db:a8:4e:b5:8e:bb:57:cb:d5:81:9c:
d0:75:74:31:87:b5:66:7d:1f:5a:e0:13:57:4f:8f:
1f:8f:93:ed:d4:a6:5d:3a:3a:e6:e0:0a:9b:d5:02:
1a:38:67:96:7d:1c:0b:cd:63:fc:8b:53:5c:b1:bf:
3f:58:e6:94:69:77:24:5c:95:a4:1c:83:df:22:81:
c1:d4:44:d2:0e:ed:53:49:b7:fb:3e:f4:c7:c1:2f:
37:ba:58:e3:d8:14:60:9e:8c:0e:a7:1f:6c:2e:4a:
26:26:25:3a:3a:83:e3:0b:d3:4e:b2:91:2c:1d:46:
6f:6a:70:e1:55:7b:18:ec:a4:9f:95:c1:02:7e:f1:
3e:d0:47:25:ba:52:05:93:6d:4f:c1:fe:11:b0:ab:
62:ae:e5:da:78:31:d1:67:2e:9a:7f:31:eb:ab:90:
ed:84:92:bc:81:e0:94:95:7d:5a:bd:36:7a:d2:13:
ec:55:f0:38:de:30:cb:e0:f8:64:54:20:36:66:2d:
a2:9f:97:d7:a5:83:31:0d:9d:fa:4c:a3:a9:cf:de:
8a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:64:E4:AA:98:73:08:96:DB:C7:3D:2F:07:18:15:EF:B0:BF:BA:C6
X509v3 Authority Key Identifier:
keyid:42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:11:af:94:b6:2c:82:f1:09:67:06:51:53:7e:0e:22:d8:58:
e6:c9:5d:d0:c9:9e:12:ab:94:47:22:b0:f3:06:45:80:d6:a2:
e5:7a:58:bf:fc:15:c9:87:b7:34:29:10:3c:46:65:f6:d5:bd:
12:12:0b:87:29:f2:90:47:d4:79:ac:71:dd:fd:81:dc:0b:dc:
9b:bd:da:70:60:7d:a3:f1:ed:cf:03:7f:fe:e5:07:04:d8:9c:
d8:80:1e:ef:7a:0d:2d:f3:17:5f:f9:32:95:61:15:50:ce:05:
d7:85:8b:37:d1:43:e0:f4:88:27:73:4d:40:bb:00:f1:53:d0:
0f:76:5e:d3:31:d8:20:70:7c:5a:f3:98:e1:ff:da:af:b6:cd:
f0:6c:52:d2:a5:a2:c0:56:ab:0e:77:0d:e7:06:29:ba:66:22:
33:7c:36:a8:35:dc:bd:85:be:15:f3:74:3b:6c:fa:2c:63:d1:
f1:63:4f:c6:77:16:50:6c:55:20:44:bb:ff:5a:c4:3d:bf:bf:
78:9f:23:38:cb:f0:92:44:88:b5:c9:3d:6c:4a:54:4e:b1:70:
c9:0e:04:8a:db:d5:58:49:fc:73:90:d2:e4:2b:cb:65:a4:ae:
b5:26:0d:41:97:3a:25:ab:06:d4:f9:75:97:cc:40:c3:ba:f0:
fc:a6:70:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZagiOhtAHwIAUpXRQ28irkrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyN2RmOTVlZTEwYTJhZDRlYWYwODJkZmFjMTU5ODM4YjM3
ZDM0NTAwHhcNMjUwNTA1MTMwMDQ4WhcNMjUwNTA2MTMwMDQ4WjAzMTEwLwYDVQQD
EyhkNTY0ZTRhYTk4NzMwODk2ZGJjNzNkMmYwNzE4MTVlZmIwYmZiYWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAc3diVKrZRCA0/rzUH+rCz0vNuQ
MQAKlxVvyq4AVIyJYiH6Xzv5RnvpSCKBtQ0326hOtY67V8vVgZzQdXQxh7VmfR9a
4BNXT48fj5Pt1KZdOjrm4Aqb1QIaOGeWfRwLzWP8i1Ncsb8/WOaUaXckXJWkHIPf
IoHB1ETSDu1TSbf7PvTHwS83uljj2BRgnowOpx9sLkomJiU6OoPjC9NOspEsHUZv
anDhVXsY7KSflcECfvE+0EclulIFk21Pwf4RsKtiruXaeDHRZy6afzHrq5DthJK8
geCUlX1avTZ60hPsVfA43jDL4PhkVCA2Zi2in5fXpYMxDZ36TKOpz96KvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNVk5KqYcwiW28c9LwcYFe+wv7rGMB8GA1UdIwQY
MBaAFEJ9+V7hCirU6vCC36wVmDizfTRQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUt
Nzk0M2Q5YTc5YmQyLzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUtNzk0M2Q5YTc5YmQy
LzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKhGvlLYs
gvEJZwZRU34OIthY5sld0MmeEquURyKw8wZFgNai5XpYv/wVyYe3NCkQPEZl9tW9
EhILhynykEfUeaxx3f2B3Avcm73acGB9o/HtzwN//uUHBNic2IAe73oNLfMXX/ky
lWEVUM4F14WLN9FD4PSIJ3NNQLsA8VPQD3Ze0zHYIHB8WvOY4f/ar7bN8GxS0qWi
wFarDncN5wYpumYiM3w2qDXcvYW+FfN0O2z6LGPR8WNPxncWUGxVIES7/1rEPb+/
eJ8jOMvwkkSItck9bEpUTrFwyQ4EitvVWEn8c5DS5CvLZaSutSYNQZc6JasG1Pl1
l8xAw7rw/KZwFA==
-----END CERTIFICATE-----
Generated at Mon May 5 22:15:01 2025 by rpki-client