Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: ojArNKViTdd/EThHjUvh+JuZ4sL5o/jhEhS+p+f5wv4=
Subject key identifier: 2C:36:BB:1C:00:6E:B6:73:BE:1F:80:6F:42:93:DF:6F:A2:9C:89:7C
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 01968390C111F134ED3FA9325D47789D6742
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 1516
Signing time: Tue 29 Apr 2025 22:00:23 +0000
Manifest this update: Tue 29 Apr 2025 22:00:23 +0000
Manifest next update: Wed 30 Apr 2025 22:00:23 +0000
Files and hashes: 1: 1q_nnAgndZaIqez5io_HHZB7TIg.roa (hash: fcE6bMGj83Q0hVMFOv0EAXM92bWkreUUh6T69N1a/Yo=)
2: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: HcaaERV25QOOFKL8p+DBuAJR7huCAGhyzazKiZCo0wc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 22:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:90:c1:11:f1:34:ed:3f:a9:32:5d:47:78:9d:67:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Apr 29 22:00:23 2025 GMT
Not After : Apr 30 22:00:23 2025 GMT
Subject: CN=2c36bb1c006eb673be1f806f4293df6fa29c897c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:bd:da:ed:d7:7f:90:f4:a4:ea:69:58:f7:f8:
ac:45:ab:9e:28:50:cb:78:d2:86:c0:16:a7:d7:d0:
5d:82:fe:5d:f5:fa:d8:bd:f5:0d:77:a0:77:c7:40:
70:3a:15:eb:e0:e0:f2:9e:44:f7:de:d8:1e:23:c8:
51:a6:0e:2d:13:85:c8:a8:91:ca:29:8b:08:a2:24:
0b:18:9f:ea:18:41:75:4f:4b:d9:f8:6d:e0:b4:24:
a7:50:b0:03:b0:2a:10:5f:59:ad:38:d3:ff:f1:71:
73:bd:36:a6:3e:96:af:c3:f7:0b:44:87:eb:54:cb:
e7:83:29:07:fc:06:d8:eb:8e:48:ea:9b:ee:3c:64:
03:51:9b:86:d4:29:28:88:7b:71:df:7e:a1:1f:e3:
ce:31:50:6f:59:67:04:14:af:e2:6a:f7:25:f4:ae:
92:47:3f:f0:14:c5:63:f6:a8:15:1c:39:6c:e8:6e:
e1:2c:47:e7:b9:19:e4:c2:d9:bf:80:87:24:4b:00:
fc:4c:08:13:bc:ff:9f:02:94:52:1c:fd:33:50:e8:
ce:c6:6c:59:8b:09:fe:e6:f7:b1:35:35:58:16:bb:
9b:5b:e7:6c:c4:e3:92:9b:34:21:74:92:dc:6b:5e:
3a:a0:23:ac:0b:2a:54:e4:ea:61:26:b1:1b:63:8a:
ca:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:36:BB:1C:00:6E:B6:73:BE:1F:80:6F:42:93:DF:6F:A2:9C:89:7C
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:e5:cc:9d:f4:a8:0f:bf:bd:46:8d:d1:2d:2f:53:b0:3b:52:
b4:f5:87:f1:ef:b7:a5:c3:76:39:2b:3e:59:e3:3c:08:68:ee:
6f:bf:78:b8:5a:c5:34:4d:80:69:99:b7:34:b1:11:71:9f:20:
d7:87:d7:2f:96:af:9d:5d:d5:70:92:3d:0b:df:5f:7c:f3:1f:
bf:8f:75:36:01:7b:1d:ae:48:a9:b8:54:44:87:c0:0a:6c:05:
98:31:63:23:3f:6c:85:76:af:fe:be:c3:6d:27:ce:84:ba:db:
b4:d7:7c:40:8f:bf:46:07:a6:51:91:ac:53:fc:3a:56:43:b5:
9a:39:a4:39:39:13:c6:74:33:40:0d:13:58:05:92:5b:b0:9d:
06:70:20:f3:30:dd:ff:6e:d3:19:20:ab:1f:5d:d1:29:67:96:
f3:8f:44:9f:43:5f:15:6b:22:3c:c0:f3:2b:c9:4b:25:35:f5:
9f:1a:c2:c8:25:9e:33:9d:ca:0c:c2:ff:59:13:e6:46:ee:a0:
7d:23:b0:59:81:b0:19:d6:6d:53:79:ac:db:6d:02:6b:3d:5f:
5e:fc:5b:19:2a:4e:0c:6b:11:af:96:ca:7c:ff:91:ac:e4:59:
62:8a:0a:ca:a2:53:a1:ac:05:86:72:d9:e4:76:c4:1c:38:22:
fd:92:ce:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaDkMER8TTtP6kyXUd4nWdCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYjljYWM5MzUzMTFlNzgwMzRiNDA3MzgzMGE4MWEzY2Y3
YjQ1ZDkwHhcNMjUwNDI5MjIwMDIzWhcNMjUwNDMwMjIwMDIzWjAzMTEwLwYDVQQD
EygyYzM2YmIxYzAwNmViNjczYmUxZjgwNmY0MjkzZGY2ZmEyOWM4OTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA973a7dd/kPSk6mlY9/isRaueKFDL
eNKGwBan19Bdgv5d9frYvfUNd6B3x0BwOhXr4ODynkT33tgeI8hRpg4tE4XIqJHK
KYsIoiQLGJ/qGEF1T0vZ+G3gtCSnULADsCoQX1mtONP/8XFzvTamPpavw/cLRIfr
VMvngykH/AbY645I6pvuPGQDUZuG1CkoiHtx336hH+POMVBvWWcEFK/iavcl9K6S
Rz/wFMVj9qgVHDls6G7hLEfnuRnkwtm/gIckSwD8TAgTvP+fApRSHP0zUOjOxmxZ
iwn+5vexNTVYFrubW+dsxOOSmzQhdJLca146oCOsCypU5OphJrEbY4rKOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCw2uxwAbrZzvh+Ab0KT32+inIl8MB8GA1UdIwQY
MBaAFEC5ysk1MR54A0tAc4MKgaPPe0XZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yODVhYjYtMDEwOS00NGUxLWJiMmIt
NzUzNGZlMGYxYjgzLzEvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi8yODVhYjYtMDEwOS00NGUxLWJiMmItNzUzNGZlMGYxYjgz
LzEvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe+XMnfSo
D7+9Ro3RLS9TsDtStPWH8e+3pcN2OSs+WeM8CGjub794uFrFNE2AaZm3NLERcZ8g
14fXL5avnV3VcJI9C99ffPMfv491NgF7Ha5IqbhURIfACmwFmDFjIz9shXav/r7D
bSfOhLrbtNd8QI+/RgemUZGsU/w6VkO1mjmkOTkTxnQzQA0TWAWSW7CdBnAg8zDd
/27TGSCrH13RKWeW849En0NfFWsiPMDzK8lLJTX1nxrCyCWeM53KDML/WRPmRu6g
fSOwWYGwGdZtU3ms220Caz1fXvxbGSpODGsRr5bKfP+RrORZYooKyqJToawFhnLZ
5HbEHDgi/ZLOSA==
-----END CERTIFICATE-----
Generated at Wed Apr 30 05:34:34 2025 by rpki-client