Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
File: qvNQYhzAHooe03KB3zKwlxy95Vc.mft (raw, json)
Hash identifier: fcZToX1b8wYyeB8IMp+7TRnMLsVmCmHXqJF/6rv9KGE=
Subject key identifier: 91:0E:8B:D7:2A:CD:86:98:A6:C2:2E:DC:89:52:CD:63:E1:61:78:5E
Authority key identifier: AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
Certificate issuer: /CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Certificate serial: 01969F08139074BBB0DE2CCB9C9638210A0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
Manifest number: 1521
Signing time: Mon 05 May 2025 06:00:28 +0000
Manifest this update: Mon 05 May 2025 06:00:28 +0000
Manifest next update: Tue 06 May 2025 06:00:28 +0000
Files and hashes: 1: qvNQYhzAHooe03KB3zKwlxy95Vc.crl (hash: 7FNa32/g1Q7KE3TXe8/G/T85o/2uXHG+UGL2nTe50Co=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 06:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:08:13:90:74:bb:b0:de:2c:cb:9c:96:38:21:0a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf350621cc01e8a1ed37281df32b0971cbde557
Validity
Not Before: May 5 06:00:28 2025 GMT
Not After : May 6 06:00:28 2025 GMT
Subject: CN=910e8bd72acd8698a6c22edc8952cd63e161785e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8c:3c:14:02:4b:96:65:cf:34:84:de:f7:49:
38:b1:29:9c:9c:e1:5a:8f:23:d0:40:e4:9c:31:2d:
71:76:59:19:0f:a5:11:54:b4:74:a2:7d:f3:17:3b:
c6:24:e5:95:2f:e3:d6:2e:f9:47:a6:30:ab:0a:56:
a7:09:7b:85:1c:6c:d0:1d:16:b3:ed:fb:e0:aa:94:
b0:35:4f:4d:0d:76:b5:60:18:3e:18:b5:b4:31:5b:
a3:c7:35:ea:f1:85:23:04:15:f7:e0:bb:b7:54:91:
42:7e:7d:0a:f8:32:d3:0c:ec:fd:9e:c3:b8:4e:2e:
7f:5f:77:c4:70:8b:70:56:0b:c2:1b:62:ed:f6:23:
bd:ff:63:06:df:3e:6e:fd:58:43:18:22:48:41:a6:
87:43:7d:f3:a5:8d:e0:bb:47:20:f3:04:66:d1:e7:
04:5a:78:5c:db:61:40:1f:eb:26:90:66:4d:c3:46:
e5:d7:a7:6a:d7:6f:ce:8d:93:38:db:4b:c7:24:de:
60:00:66:e5:ce:76:f9:0c:9a:b7:4d:8c:65:a1:08:
99:70:0f:00:f3:85:1a:0a:79:44:d0:14:b3:53:7e:
ce:f6:16:4e:51:84:45:7f:3b:49:a0:68:fe:78:83:
4d:28:0d:2e:e4:7c:a0:a7:6a:e4:12:3c:fc:bd:13:
75:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:0E:8B:D7:2A:CD:86:98:A6:C2:2E:DC:89:52:CD:63:E1:61:78:5E
X509v3 Authority Key Identifier:
keyid:AA:F3:50:62:1C:C0:1E:8A:1E:D3:72:81:DF:32:B0:97:1C:BD:E5:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvNQYhzAHooe03KB3zKwlxy95Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f812c7-a85d-4040-8b99-75a8b0974e20/1/qvNQYhzAHooe03KB3zKwlxy95Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:7e:b5:ce:55:43:a9:e5:58:0e:21:b4:67:12:c7:3b:1e:9f:
72:67:57:69:71:fa:d8:47:af:d6:93:56:6b:56:92:4f:ba:fe:
8d:bc:21:8c:a5:75:7c:26:9c:c2:bb:d7:a2:1b:95:14:3d:c4:
d8:08:89:eb:8b:81:a5:ec:4f:5d:e1:6d:67:44:70:f5:39:83:
fe:21:1d:1d:b6:99:41:1d:1d:7c:3d:89:7f:44:e9:f6:80:26:
34:3b:26:62:bf:a2:1c:70:23:12:23:7d:16:33:24:e0:f5:22:
11:21:e8:db:e4:ad:61:fa:55:59:e1:48:7b:55:89:4a:73:d2:
13:89:01:16:1f:85:01:24:d8:d6:24:cc:ca:14:46:53:aa:64:
bb:f9:4b:ca:28:14:45:03:97:2c:c4:10:f0:4f:08:4a:70:5f:
51:51:2a:54:b4:ad:ca:99:6e:af:f8:ea:3f:64:21:4f:6a:45:
25:49:bb:bb:9b:8a:f5:cb:29:fb:e1:7d:48:bf:ec:9d:a6:35:
1d:0f:e9:12:a5:bf:3d:b0:bb:27:58:46:6d:e3:b2:16:08:9a:
c3:92:79:ad:8c:a5:7d:47:7a:ce:4f:90:2f:c1:9e:60:3a:9b:
88:69:94:15:b4:33:33:ef:6c:ec:ac:70:ec:d0:ea:d7:9e:77:
73:6c:30:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZafCBOQdLuw3izLnJY4IQoMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhZjM1MDYyMWNjMDFlOGExZWQzNzI4MWRmMzJiMDk3MWNi
ZGU1NTcwHhcNMjUwNTA1MDYwMDI4WhcNMjUwNTA2MDYwMDI4WjAzMTEwLwYDVQQD
Eyg5MTBlOGJkNzJhY2Q4Njk4YTZjMjJlZGM4OTUyY2Q2M2UxNjE3ODVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4w8FAJLlmXPNITe90k4sSmcnOFa
jyPQQOScMS1xdlkZD6URVLR0on3zFzvGJOWVL+PWLvlHpjCrClanCXuFHGzQHRaz
7fvgqpSwNU9NDXa1YBg+GLW0MVujxzXq8YUjBBX34Lu3VJFCfn0K+DLTDOz9nsO4
Ti5/X3fEcItwVgvCG2Lt9iO9/2MG3z5u/VhDGCJIQaaHQ33zpY3gu0cg8wRm0ecE
Wnhc22FAH+smkGZNw0bl16dq12/OjZM420vHJN5gAGblznb5DJq3TYxloQiZcA8A
84UaCnlE0BSzU37O9hZOUYRFfztJoGj+eINNKA0u5Hygp2rkEjz8vRN1NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJEOi9cqzYaYpsIu3IlSzWPhYXheMB8GA1UdIwQY
MBaAFKrzUGIcwB6KHtNygd8ysJccveVXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTkt
NzVhOGIwOTc0ZTIwLzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9mODEyYzctYTg1ZC00MDQwLThiOTktNzVhOGIwOTc0ZTIw
LzEvcXZOUVloekFIb29lMDNLQjN6S3dseHk5NVZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmX61zlVD
qeVYDiG0ZxLHOx6fcmdXaXH62Eev1pNWa1aST7r+jbwhjKV1fCacwrvXohuVFD3E
2AiJ64uBpexPXeFtZ0Rw9TmD/iEdHbaZQR0dfD2Jf0Tp9oAmNDsmYr+iHHAjEiN9
FjMk4PUiESHo2+StYfpVWeFIe1WJSnPSE4kBFh+FASTY1iTMyhRGU6pku/lLyigU
RQOXLMQQ8E8ISnBfUVEqVLStyplur/jqP2QhT2pFJUm7u5uK9csp++F9SL/snaY1
HQ/pEqW/PbC7J1hGbeOyFgiaw5J5rYylfUd6zk+QL8GeYDqbiGmUFbQzM+9s7Kxw
7NDq1553c2ww/A==
-----END CERTIFICATE-----
Generated at Mon May 5 14:55:20 2025 by rpki-client