Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: TqqrQC8MK/Jwa5HXTHcBXkQQVQzCQYJNIdTi8yCNfUI=
Subject key identifier: 7F:A4:CE:63:6C:14:6F:A0:C6:9E:0B:B3:3F:18:CF:30:D2:B4:B3:90
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 0196BB91CD2F60A542432C50F4D85242A22E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0C54
Signing time: Sat 10 May 2025 19:00:16 +0000
Manifest this update: Sat 10 May 2025 19:00:16 +0000
Manifest next update: Sun 11 May 2025 19:00:16 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: 6om2ElXQDPjW0J+7ldDVgcClT/J9WLk23akUA/PZWO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 19:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:91:cd:2f:60:a5:42:43:2c:50:f4:d8:52:42:a2:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: May 10 19:00:16 2025 GMT
Not After : May 11 19:00:16 2025 GMT
Subject: CN=7fa4ce636c146fa0c69e0bb33f18cf30d2b4b390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:05:ec:53:0d:84:e1:4d:8d:eb:89:36:6f:2f:
e5:62:0b:45:86:cd:f7:ee:a8:ee:5f:bd:a6:c7:e1:
09:e8:d7:af:2c:d9:00:de:0f:88:1e:d9:76:58:87:
a6:58:fc:8d:9b:a1:3e:1b:43:ac:f3:a1:36:0f:f8:
fb:80:68:40:a2:d8:62:b0:a7:f9:f0:21:b1:04:e3:
ff:da:76:c7:19:8e:5e:d5:0a:97:b3:60:ac:fc:06:
35:ea:15:d2:85:b1:bb:27:7a:5d:55:98:22:6b:b7:
78:1f:41:4f:48:97:fe:f2:fe:2f:94:70:c8:72:b9:
31:0d:7b:7c:cb:98:2c:83:46:9d:11:38:20:3c:41:
10:01:46:21:ed:35:b5:8b:33:f4:06:1e:4a:54:65:
4f:ed:5e:15:76:39:8e:3d:69:ea:f9:66:2f:45:0e:
80:bf:fd:81:e0:0f:70:0c:e6:24:e9:f5:3b:32:2a:
05:ec:c9:2d:78:01:c4:92:a2:c5:9d:4e:b0:62:16:
0f:02:33:bc:b2:1a:53:d6:3e:0e:ee:aa:b6:4d:b9:
cc:7d:0e:f8:08:1e:e3:4e:0e:31:08:e0:51:cf:05:
3d:e7:c3:77:ba:1a:21:0a:38:92:3a:a5:c1:d7:93:
19:f6:7e:2d:c3:09:4d:28:2b:2b:df:95:16:41:cc:
12:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A4:CE:63:6C:14:6F:A0:C6:9E:0B:B3:3F:18:CF:30:D2:B4:B3:90
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:14:6a:c8:86:f7:d8:54:00:eb:55:77:c4:8d:a5:34:2f:1c:
b5:63:8e:55:f3:f0:ad:16:c3:85:2d:39:9e:29:bd:55:bf:24:
8d:2b:16:d5:bc:bc:ba:f1:be:66:12:f1:61:05:1e:b1:e7:a8:
e7:ed:4d:4c:bf:14:c1:c4:b2:5d:1b:03:73:99:df:5f:e8:52:
69:87:23:9a:4b:76:eb:a1:9c:d5:2a:e1:1b:e4:d8:8d:31:b1:
88:ad:2f:cb:51:67:71:2b:12:a8:93:17:3f:b4:36:cd:2b:f2:
61:3a:a3:ba:3f:38:60:8b:03:27:5a:02:52:0d:67:55:0e:0e:
c6:dc:e3:d5:4c:de:d5:e6:61:9d:24:7d:bf:d9:06:8e:b9:71:
82:85:7b:8b:bc:a9:e0:a1:7b:40:94:a9:ad:59:d1:c8:a7:5c:
25:2e:65:f3:01:a3:ab:c9:e0:f5:6e:59:1a:21:54:ec:09:27:
ce:c8:b9:fe:40:64:e4:cf:58:2c:d3:22:ba:be:83:c4:d9:e6:
b2:8b:83:67:ea:88:37:9a:b3:b2:2a:66:06:7d:78:52:69:12:
82:22:6c:d1:01:4c:f2:5d:61:9d:82:1d:2c:e4:c2:97:19:37:
c8:4a:cd:f4:44:4f:a0:59:d6:fa:3c:61:d5:bd:fe:e3:a1:62:
47:07:9e:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa7kc0vYKVCQyxQ9NhSQqIuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYWE5NDlkMzFjNjY4ODhjYjQ3NThmMjNkZDVmMzEyMTQx
ZGVjNGEwHhcNMjUwNTEwMTkwMDE2WhcNMjUwNTExMTkwMDE2WjAzMTEwLwYDVQQD
Eyg3ZmE0Y2U2MzZjMTQ2ZmEwYzY5ZTBiYjMzZjE4Y2YzMGQyYjRiMzkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5wXsUw2E4U2N64k2by/lYgtFhs33
7qjuX72mx+EJ6NevLNkA3g+IHtl2WIemWPyNm6E+G0Os86E2D/j7gGhAothisKf5
8CGxBOP/2nbHGY5e1QqXs2Cs/AY16hXShbG7J3pdVZgia7d4H0FPSJf+8v4vlHDI
crkxDXt8y5gsg0adETggPEEQAUYh7TW1izP0Bh5KVGVP7V4VdjmOPWnq+WYvRQ6A
v/2B4A9wDOYk6fU7MioF7MkteAHEkqLFnU6wYhYPAjO8shpT1j4O7qq2TbnMfQ74
CB7jTg4xCOBRzwU958N3uhohCjiSOqXB15MZ9n4twwlNKCsr35UWQcwSiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH+kzmNsFG+gxp4Lsz8YzzDStLOQMB8GA1UdIwQY
MBaAFECqlJ0xxmiIy0dY8j3V8xIUHexKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgt
ZmQxMWJiMWNjODJkLzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgtZmQxMWJiMWNjODJk
LzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFxRqyIb3
2FQA61V3xI2lNC8ctWOOVfPwrRbDhS05nim9Vb8kjSsW1by8uvG+ZhLxYQUeseeo
5+1NTL8UwcSyXRsDc5nfX+hSaYcjmkt266Gc1SrhG+TYjTGxiK0vy1FncSsSqJMX
P7Q2zSvyYTqjuj84YIsDJ1oCUg1nVQ4Oxtzj1Uze1eZhnSR9v9kGjrlxgoV7i7yp
4KF7QJSprVnRyKdcJS5l8wGjq8ng9W5ZGiFU7Aknzsi5/kBk5M9YLNMiur6DxNnm
souDZ+qIN5qzsipmBn14UmkSgiJs0QFM8l1hnYIdLOTClxk3yErN9ERPoFnW+jxh
1b3+46FiRweegg==
-----END CERTIFICATE-----
Generated at Sun May 11 01:16:34 2025 by rpki-client