Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
File: QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft (raw, json)
Hash identifier: B3C0bzK3zj2AlxTF/usz2coMaTE3mqEwXxnfcUu2B8Y=
Subject key identifier: 97:DB:9B:51:52:5E:0B:A2:B8:54:0E:EC:D4:17:24:B8:49:98:0F:08
Authority key identifier: 40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
Certificate issuer: /CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Certificate serial: 0196A5E60C72569189F90677CC0FADB0727B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
Manifest number: 0B45
Signing time: Tue 06 May 2025 14:00:39 +0000
Manifest this update: Tue 06 May 2025 14:00:39 +0000
Manifest next update: Wed 07 May 2025 14:00:39 +0000
Files and hashes: 1: QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl (hash: V9cyn+QcedfzdCIPe6xhW+CoFO0pUqAScNQOKP10dyU=)
2: vfjUIsx7CDVuZMrXZKkgTFoznUI.roa (hash: kc2fyWr6FJL7rTi0mPaMQj4eZbP6Y0dyJoouX+alOvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:e6:0c:72:56:91:89:f9:06:77:cc:0f:ad:b0:72:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Validity
Not Before: May 6 14:00:39 2025 GMT
Not After : May 7 14:00:39 2025 GMT
Subject: CN=97db9b51525e0ba2b8540eecd41724b849980f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:96:ce:de:fb:69:f8:c1:fa:53:d9:99:c9:5f:
39:ea:6f:f7:b2:27:3e:0e:f6:b1:67:f6:71:00:96:
54:35:15:98:17:47:4d:f0:e7:65:74:09:1e:93:80:
ec:56:a7:34:fe:78:8a:0c:3e:f5:36:4b:a6:10:ba:
26:bc:e4:dc:c4:97:a5:b6:bc:41:11:0d:99:cc:5e:
9e:a4:db:34:dc:19:8a:85:ec:e2:99:54:34:cb:df:
7a:25:ff:b9:c9:40:c9:b4:e7:5e:c7:36:c2:30:5e:
75:f1:d7:79:e8:b6:f6:6f:54:d7:44:2f:4a:5d:00:
2c:0f:1d:1a:9d:42:3d:9b:49:77:c9:b4:32:7c:d4:
58:8a:3a:a6:fd:d7:75:33:a7:e4:53:36:00:86:d7:
d1:24:f5:f8:01:f2:8a:ac:fd:58:be:96:03:88:f6:
70:83:b3:17:1a:bc:4c:f3:5c:e7:e8:89:6d:93:36:
5d:50:a7:0a:cc:5d:6c:74:21:8f:3f:dd:19:a3:d0:
3e:1e:c1:67:aa:e5:67:99:e9:fe:06:91:03:19:6a:
21:4a:bd:be:e4:12:13:ee:3f:d4:5a:f7:0d:55:9a:
ee:5e:4e:0d:11:b3:69:4e:80:4c:e5:5f:f8:a6:b3:
1b:f6:20:89:a3:e0:e7:ef:ac:50:a9:a1:5d:6c:3e:
8d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DB:9B:51:52:5E:0B:A2:B8:54:0E:EC:D4:17:24:B8:49:98:0F:08
X509v3 Authority Key Identifier:
keyid:40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:30:f8:38:57:01:0d:05:af:f2:5c:91:b1:c2:6b:15:92:6d:
a3:77:4c:62:54:b4:b5:7e:c9:3a:ae:f1:9a:3a:ab:0f:13:f0:
f7:9f:62:79:6d:18:78:03:cd:ca:8d:b0:46:ed:2e:a7:0f:bb:
ef:42:97:d9:41:41:09:4e:27:06:e9:15:73:95:6e:39:70:2d:
da:cd:f8:c7:2d:76:7c:05:fa:71:32:a3:a7:57:fd:fb:e3:e7:
bc:fa:38:fb:74:80:cf:e7:91:e7:cd:a3:af:c0:2c:34:de:e0:
19:85:1b:0c:79:3e:9c:15:47:28:e2:a3:b5:9d:69:48:91:6b:
2d:c5:d6:8f:c3:06:cc:ad:6e:54:c3:14:bd:bc:07:6d:9f:3a:
ee:8e:d8:39:37:d3:93:6f:9d:c3:2e:66:90:d2:86:6a:f4:d1:
43:e2:d5:d2:cf:5b:a4:1a:7d:b8:54:88:c9:4b:a3:fd:7c:d1:
e2:c1:02:fb:a5:65:93:21:16:1c:55:f6:24:5c:86:98:53:74:
1e:68:8c:46:88:26:bc:99:db:5c:1e:25:4f:99:a0:d9:9e:70:
47:85:74:78:6c:bd:f5:f2:13:c4:e8:49:39:3b:9a:29:c2:87:
a1:31:15:d0:6f:91:db:00:63:94:51:43:43:f2:41:a9:a0:df:
6b:d2:30:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZal5gxyVpGJ+QZ3zA+tsHJ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwY2Y2OWNjYTJjODZlMTk0NzU0Nzg4ZWRjZDg4ZTM1MmVk
NGUxMWMwHhcNMjUwNTA2MTQwMDM5WhcNMjUwNTA3MTQwMDM5WjAzMTEwLwYDVQQD
Eyg5N2RiOWI1MTUyNWUwYmEyYjg1NDBlZWNkNDE3MjRiODQ5OTgwZjA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJbO3vtp+MH6U9mZyV856m/3sic+
DvaxZ/ZxAJZUNRWYF0dN8OdldAkek4DsVqc0/niKDD71NkumELomvOTcxJeltrxB
EQ2ZzF6epNs03BmKhezimVQ0y996Jf+5yUDJtOdexzbCMF518dd56Lb2b1TXRC9K
XQAsDx0anUI9m0l3ybQyfNRYijqm/dd1M6fkUzYAhtfRJPX4AfKKrP1YvpYDiPZw
g7MXGrxM81zn6IltkzZdUKcKzF1sdCGPP90Zo9A+HsFnquVnmen+BpEDGWohSr2+
5BIT7j/UWvcNVZruXk4NEbNpToBM5V/4prMb9iCJo+Dn76xQqaFdbD6NeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJfbm1FSXguiuFQO7NQXJLhJmA8IMB8GA1UdIwQY
MBaAFEDPacyiyG4ZR1R4jtzYjjUu1OEcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUU05cHpLTEliaGxIVkhpTzNOaU9OUzdVNFJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9iOGI2MDYtYzY1YS00MDlhLWJhOGQt
Y2YxYTVkOGU1ZjZkLzEvUU05cHpLTEliaGxIVkhpTzNOaU9OUzdVNFJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9iOGI2MDYtYzY1YS00MDlhLWJhOGQtY2YxYTVkOGU1ZjZk
LzEvUU05cHpLTEliaGxIVkhpTzNOaU9OUzdVNFJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPDD4OFcB
DQWv8lyRscJrFZJto3dMYlS0tX7JOq7xmjqrDxPw959ieW0YeAPNyo2wRu0upw+7
70KX2UFBCU4nBukVc5VuOXAt2s34xy12fAX6cTKjp1f9++PnvPo4+3SAz+eR582j
r8AsNN7gGYUbDHk+nBVHKOKjtZ1pSJFrLcXWj8MGzK1uVMMUvbwHbZ867o7YOTfT
k2+dwy5mkNKGavTRQ+LV0s9bpBp9uFSIyUuj/XzR4sEC+6VlkyEWHFX2JFyGmFN0
HmiMRogmvJnbXB4lT5mg2Z5wR4V0eGy99fITxOhJOTuaKcKHoTEV0G+R2wBjlFFD
Q/JBqaDfa9IwZA==
-----END CERTIFICATE-----
Generated at Tue May 6 20:31:19 2025 by rpki-client