Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
File: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft (raw, json)
Hash identifier: BFz3w9g0PiiZPGzCBpJzLEccqE/dhG5U0H//rTHmoQE=
Subject key identifier: 39:7C:4A:B0:6D:69:EB:55:A5:50:56:4A:54:00:A0:FC:80:44:12:CE
Authority key identifier: AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
Certificate issuer: /CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Certificate serial: 019678681D9C2081AB97C7E88D60811C6C58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
Manifest number: 0F0B
Signing time: Sun 27 Apr 2025 18:00:11 +0000
Manifest this update: Sun 27 Apr 2025 18:00:11 +0000
Manifest next update: Mon 28 Apr 2025 18:00:11 +0000
Files and hashes: 1: 1Z36oEX0lkx8ndMTGV0SwL3pu6s.roa (hash: oLjRdDjCa874D2Ohi+4lYwxZSVZ663VZAUA47G0Sbic=)
2: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl (hash: DJRaaPM/BMsYP2MW0/YbDqp5mz04W0zNkJ6ju+6VBPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:1d:9c:20:81:ab:97:c7:e8:8d:60:81:1c:6c:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Validity
Not Before: Apr 27 18:00:11 2025 GMT
Not After : Apr 28 18:00:11 2025 GMT
Subject: CN=397c4ab06d69eb55a550564a5400a0fc804412ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0c:2b:16:46:43:c3:77:9c:8c:8d:57:25:52:
e6:e6:92:9a:da:86:2b:cb:27:e1:94:c3:c9:ac:84:
95:f2:6a:9f:59:7f:47:ca:f7:35:f5:fd:7f:dc:00:
35:70:5f:66:b5:d2:97:75:1c:af:b8:6d:51:95:8f:
c5:c1:84:4c:51:22:01:12:d4:fa:ea:26:6c:18:45:
0b:d7:6c:95:ec:58:c0:27:c7:16:bc:6c:63:7e:88:
68:88:67:21:fa:42:3d:b8:e5:bd:1d:ad:d2:32:44:
53:2c:bb:ed:91:a1:da:75:f5:8f:ed:4b:a0:c8:9f:
3a:c7:05:35:ff:4e:e6:d9:a5:97:83:a7:94:a3:2f:
1c:f9:ba:e8:0a:8f:2b:8f:b7:89:a5:1c:86:c4:ea:
a7:7e:55:38:fa:ca:0c:de:bc:cc:31:7e:e0:da:34:
10:05:58:c5:86:d8:7e:33:72:c6:f0:6d:08:df:90:
fc:a8:2d:43:3a:50:1d:c0:10:02:28:5a:ad:8e:dd:
fc:81:dc:e1:5f:d1:d5:e0:04:7a:19:76:85:49:1b:
d1:6a:8f:2f:0e:eb:0c:3c:30:bc:b9:67:dd:9d:02:
0b:63:ff:8f:85:70:28:43:22:68:0c:d5:8a:48:c0:
89:4c:33:9b:f6:bd:68:ef:8e:d8:61:8f:47:52:0d:
99:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:7C:4A:B0:6D:69:EB:55:A5:50:56:4A:54:00:A0:FC:80:44:12:CE
X509v3 Authority Key Identifier:
keyid:AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:46:ba:6e:36:75:2b:1c:3a:c9:d8:0e:0c:19:77:1d:84:84:
8e:a3:b6:cc:98:a5:47:27:cc:c3:19:48:1a:d1:36:04:35:ad:
5f:42:92:ce:5c:c5:8c:c6:53:60:de:b3:91:c7:50:89:18:8f:
83:44:be:b9:32:8b:8c:7c:58:0f:46:2a:a1:a5:e0:f9:91:5f:
d5:c8:fc:9f:b9:10:39:ee:cd:71:21:67:84:e6:1d:ed:78:61:
80:4b:3b:70:34:67:b2:3a:89:38:0e:1d:d0:e9:1f:a7:88:f8:
91:73:43:46:c6:66:5b:d4:05:08:56:d4:78:e3:a3:6b:eb:9d:
90:f3:4c:c1:be:c1:e4:90:43:e5:12:fb:86:c5:89:5c:0b:c1:
e2:15:05:7a:e8:09:7d:6f:09:71:92:0a:2d:20:14:02:b6:4b:
0a:20:71:06:93:2d:8e:1f:16:35:8b:3e:ed:93:1b:38:39:81:
e6:ed:88:55:6c:70:90:ce:06:8c:da:0c:7e:8a:e6:05:5b:ff:
63:6d:0c:6b:94:04:6a:07:d4:6a:27:87:50:ae:c4:bd:cb:eb:
a4:75:5a:63:af:b4:99:f0:df:53:7d:a0:6a:df:03:67:f7:11:
f1:e8:3a:30:9a:f2:c7:0a:17:07:55:dc:73:31:82:c6:bb:21:
be:c4:40:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ4aB2cIIGrl8fojWCBHGxYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlYTg0ZDdlNjRiYTNlODViNTcwMzZjNzMxOGY5M2NjM2Q5
NGQxODcwHhcNMjUwNDI3MTgwMDExWhcNMjUwNDI4MTgwMDExWjAzMTEwLwYDVQQD
EygzOTdjNGFiMDZkNjllYjU1YTU1MDU2NGE1NDAwYTBmYzgwNDQxMmNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgwrFkZDw3ecjI1XJVLm5pKa2oYr
yyfhlMPJrISV8mqfWX9Hyvc19f1/3AA1cF9mtdKXdRyvuG1RlY/FwYRMUSIBEtT6
6iZsGEUL12yV7FjAJ8cWvGxjfohoiGch+kI9uOW9Ha3SMkRTLLvtkaHadfWP7Uug
yJ86xwU1/07m2aWXg6eUoy8c+broCo8rj7eJpRyGxOqnflU4+soM3rzMMX7g2jQQ
BVjFhth+M3LG8G0I35D8qC1DOlAdwBACKFqtjt38gdzhX9HV4AR6GXaFSRvRao8v
DusMPDC8uWfdnQILY/+PhXAoQyJoDNWKSMCJTDOb9r1o747YYY9HUg2ZsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDl8SrBtaetVpVBWSlQAoPyARBLOMB8GA1UdIwQY
MBaAFK6oTX5kuj6FtXA2xzGPk8w9lNGHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnFoTmZtUzZQb1cxY0RiSE1ZLVR6RDJVMFljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8xNTdmMWUtN2NmOC00ZDk4LWE5MjQt
OTdjMzMyZjcyMzlkLzEvcnFoTmZtUzZQb1cxY0RiSE1ZLVR6RDJVMFljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8xNTdmMWUtN2NmOC00ZDk4LWE5MjQtOTdjMzMyZjcyMzlk
LzEvcnFoTmZtUzZQb1cxY0RiSE1ZLVR6RDJVMFljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeka6bjZ1
Kxw6ydgODBl3HYSEjqO2zJilRyfMwxlIGtE2BDWtX0KSzlzFjMZTYN6zkcdQiRiP
g0S+uTKLjHxYD0YqoaXg+ZFf1cj8n7kQOe7NcSFnhOYd7XhhgEs7cDRnsjqJOA4d
0Okfp4j4kXNDRsZmW9QFCFbUeOOja+udkPNMwb7B5JBD5RL7hsWJXAvB4hUFeugJ
fW8JcZIKLSAUArZLCiBxBpMtjh8WNYs+7ZMbODmB5u2IVWxwkM4GjNoMformBVv/
Y20Ma5QEagfUaieHUK7EvcvrpHVaY6+0mfDfU32gat8DZ/cR8eg6MJryxwoXB1Xc
czGCxrshvsRAcQ==
-----END CERTIFICATE-----
Generated at Mon Apr 28 00:57:58 2025 by rpki-client