Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
File: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft (raw, json)
Hash identifier: +EAn3k9Sh/XlOnPi50gSNEnU30OKxR61Dhfd/AHWdFM=
Subject key identifier: 41:17:7E:5C:8C:2C:4E:EE:C4:F0:19:13:6A:60:DC:46:0A:9C:72:3F
Authority key identifier: D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
Certificate issuer: /CN=d90482763070955e7ea87e2ca37b891b864b2577
Certificate serial: 019674C2B30EF2689296B1E8A2EC72E5D917
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
Manifest number: 0319
Signing time: Sun 27 Apr 2025 01:00:38 +0000
Manifest this update: Sun 27 Apr 2025 01:00:38 +0000
Manifest next update: Mon 28 Apr 2025 01:00:38 +0000
Files and hashes: 1: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl (hash: ZUCQMbIjaObHZ7HBbVCSsbaO8VDAUV+HwZJnkdpN4Js=)
2: JNEydf2lKXnao8GrKqno19jXP6w.roa (hash: +0xX0M+yF7B+qU3xPS7RZz2tcDVRNPquvsVNbfH8B2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 01:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:c2:b3:0e:f2:68:92:96:b1:e8:a2:ec:72:e5:d9:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90482763070955e7ea87e2ca37b891b864b2577
Validity
Not Before: Apr 27 01:00:38 2025 GMT
Not After : Apr 28 01:00:38 2025 GMT
Subject: CN=41177e5c8c2c4eeec4f019136a60dc460a9c723f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1a:7c:6d:83:f4:c7:5e:fb:27:85:77:7d:48:
d4:5e:c0:94:22:82:85:64:98:cc:05:eb:5f:2f:e8:
a1:ae:9d:50:e8:0c:94:79:bb:6d:85:64:17:7f:31:
57:9a:94:90:e1:b0:ca:b0:10:8d:2d:40:86:18:b3:
37:1b:80:d2:74:2d:4e:ef:ab:6c:02:33:ab:5b:6a:
5d:ce:fd:d4:91:cf:e7:1d:8c:a7:d3:da:fe:d1:6b:
0c:60:af:b7:44:16:33:18:e2:73:0b:b9:38:02:ce:
c3:97:50:4c:22:ee:16:f5:3d:47:c7:4e:b0:68:2a:
13:33:af:c5:af:1e:51:a5:21:6d:4b:7c:78:a0:2d:
28:6d:b0:d3:92:e4:fe:f4:96:45:10:57:3f:75:b8:
4f:88:85:92:84:63:bf:9e:ad:43:ba:6e:db:e1:d4:
a4:fa:cd:f3:d9:e8:80:5f:b7:4d:c1:af:52:a2:ec:
0f:0c:11:ae:ac:a7:3d:16:48:ce:0d:3c:1f:4a:b5:
29:0e:66:3f:18:f4:6a:bc:bb:02:40:ae:d7:f1:e3:
14:38:08:ab:46:c6:10:5c:e4:c9:4f:59:59:72:6b:
05:36:71:42:61:dc:54:a1:25:e7:ea:dd:a2:ae:89:
d9:4e:2c:3e:40:88:98:54:5c:72:c5:f3:88:3b:98:
30:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:17:7E:5C:8C:2C:4E:EE:C4:F0:19:13:6A:60:DC:46:0A:9C:72:3F
X509v3 Authority Key Identifier:
keyid:D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:10:fa:33:61:ff:6e:e4:de:79:69:8d:22:13:ef:a9:1d:32:
a7:dc:30:80:df:74:1d:9d:8c:c7:9f:59:46:88:07:6f:05:60:
fb:59:4b:bc:55:aa:b4:77:f7:7e:bb:8c:a0:20:ba:5a:f5:c7:
19:38:ec:ea:1c:1f:7c:55:be:66:77:02:fc:63:8e:df:21:ef:
06:29:46:3f:98:34:7c:f3:94:f4:f4:e0:68:41:98:52:0b:c8:
28:0b:83:1c:f7:ca:ee:cd:f3:00:00:2a:b8:1c:a6:55:28:d4:
2f:5c:59:46:31:9f:77:22:02:d1:bd:0a:d4:66:10:bd:40:51:
f6:f3:bf:59:ea:95:78:74:31:78:06:30:68:e6:67:5a:b6:97:
15:8c:7a:0b:e4:cf:d8:92:82:2e:09:e1:ab:36:74:c5:18:92:
fe:fd:dd:bf:fb:ad:ae:2a:76:c9:9c:e3:b7:d3:c3:80:40:eb:
cb:7e:52:59:68:1a:a9:05:95:51:35:66:a7:fa:44:6f:0c:eb:
a1:52:97:6e:4b:2d:ae:16:8b:1a:c6:9a:c9:03:ac:09:40:4d:
99:01:e8:a4:a9:cd:d2:5d:84:22:af:d4:f0:67:d1:cc:50:c5:
24:82:20:26:8a:19:c2:6e:7a:83:36:dd:3e:94:04:09:a1:ab:
49:ff:3c:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0wrMO8miSlrHoouxy5dkXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5MDQ4Mjc2MzA3MDk1NWU3ZWE4N2UyY2EzN2I4OTFiODY0
YjI1NzcwHhcNMjUwNDI3MDEwMDM4WhcNMjUwNDI4MDEwMDM4WjAzMTEwLwYDVQQD
Eyg0MTE3N2U1YzhjMmM0ZWVlYzRmMDE5MTM2YTYwZGM0NjBhOWM3MjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBp8bYP0x177J4V3fUjUXsCUIoKF
ZJjMBetfL+ihrp1Q6AyUebtthWQXfzFXmpSQ4bDKsBCNLUCGGLM3G4DSdC1O76ts
AjOrW2pdzv3Ukc/nHYyn09r+0WsMYK+3RBYzGOJzC7k4As7Dl1BMIu4W9T1Hx06w
aCoTM6/Frx5RpSFtS3x4oC0obbDTkuT+9JZFEFc/dbhPiIWShGO/nq1Dum7b4dSk
+s3z2eiAX7dNwa9SouwPDBGurKc9FkjODTwfSrUpDmY/GPRqvLsCQK7X8eMUOAir
RsYQXOTJT1lZcmsFNnFCYdxUoSXn6t2ironZTiw+QIiYVFxyxfOIO5gwwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEEXflyMLE7uxPAZE2pg3EYKnHI/MB8GA1UdIwQY
MBaAFNkEgnYwcJVefqh+LKN7iRuGSyV3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlFTQ2RqQndsVjUtcUg0c28zdUpHNFpMSlhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85NGMyYmItZTgwYS00ZjJjLTgyMDgt
YTliMjc2Njc3M2FhLzEvMlFTQ2RqQndsVjUtcUg0c28zdUpHNFpMSlhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85NGMyYmItZTgwYS00ZjJjLTgyMDgtYTliMjc2Njc3M2Fh
LzEvMlFTQ2RqQndsVjUtcUg0c28zdUpHNFpMSlhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmRD6M2H/
buTeeWmNIhPvqR0yp9wwgN90HZ2Mx59ZRogHbwVg+1lLvFWqtHf3fruMoCC6WvXH
GTjs6hwffFW+ZncC/GOO3yHvBilGP5g0fPOU9PTgaEGYUgvIKAuDHPfK7s3zAAAq
uBymVSjUL1xZRjGfdyIC0b0K1GYQvUBR9vO/WeqVeHQxeAYwaOZnWraXFYx6C+TP
2JKCLgnhqzZ0xRiS/v3dv/utrip2yZzjt9PDgEDry35SWWgaqQWVUTVmp/pEbwzr
oVKXbkstrhaLGsaayQOsCUBNmQHopKnN0l2EIq/U8GfRzFDFJIIgJooZwm56gzbd
PpQECaGrSf885A==
-----END CERTIFICATE-----
Generated at Sun Apr 27 07:41:21 2025 by rpki-client