Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
File: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft (raw, json)
Hash identifier: KtqfJeNB08NrS3KM7YnYPFHNzwZchPQahFD/7krAcNM=
Subject key identifier: 10:0D:2C:31:64:78:66:39:3B:57:85:1F:C4:8F:58:41:33:38:07:89
Authority key identifier: 42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57
Certificate issuer: /CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57
Certificate serial: 0196C202017B5DA6D0CBCB75F44B215698E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
Manifest number: 045A
Signing time: Mon 12 May 2025 01:00:33 +0000
Manifest this update: Mon 12 May 2025 01:00:33 +0000
Manifest next update: Tue 13 May 2025 01:00:33 +0000
Files and hashes: 1: QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl (hash: HgGcIsLegWRNamSoZOrzmSK+IkyIXEGY+LgKFAvHea4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:02:01:7b:5d:a6:d0:cb:cb:75:f4:4b:21:56:98:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4213b5471966c25610d95a5a2fa5cc06fc93ff57
Validity
Not Before: May 12 01:00:33 2025 GMT
Not After : May 13 01:00:33 2025 GMT
Subject: CN=100d2c31647866393b57851fc48f584133380789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:13:2f:b4:73:5b:de:ec:d9:7e:31:6c:52:a4:
71:a4:0f:a6:ee:62:fe:40:99:e8:44:60:a2:0f:05:
9a:b1:ed:60:3c:17:42:e8:87:e7:c3:18:92:b3:d4:
59:a5:41:e7:b8:39:49:9b:e3:21:1a:97:b2:ef:6a:
97:0d:16:21:36:ff:5a:d4:12:e5:f7:f8:b7:e7:91:
a7:33:0b:09:43:df:90:8e:9c:21:75:ac:32:15:48:
6e:fc:d4:74:0d:db:19:90:4e:4c:28:90:9b:5c:36:
7c:97:50:2d:46:33:54:5e:4b:6a:59:a8:fc:6b:25:
fe:aa:4c:6c:2f:4f:68:37:f7:3c:c4:e4:13:78:d7:
49:ac:12:ce:c6:16:7b:ad:b7:8d:be:8e:57:91:73:
0e:fe:dd:d0:ec:c9:98:aa:8d:05:85:b8:88:f6:35:
36:fb:97:df:89:e3:f9:16:27:b0:49:71:35:a5:9a:
47:0f:e8:44:74:8b:9e:30:44:35:53:18:ab:32:31:
a6:f1:69:08:5d:30:cc:38:a8:f2:6c:d9:c2:e2:81:
13:aa:35:2e:18:3c:27:51:87:48:70:04:7f:a6:fd:
3f:ff:f0:34:56:bc:4c:fc:9e:ad:47:56:c1:5a:3b:
06:77:34:cc:46:89:35:4e:3e:db:b4:e2:fd:ab:6e:
49:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0D:2C:31:64:78:66:39:3B:57:85:1F:C4:8F:58:41:33:38:07:89
X509v3 Authority Key Identifier:
keyid:42:13:B5:47:19:66:C2:56:10:D9:5A:5A:2F:A5:CC:06:FC:93:FF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/000485-721f-4d97-a0f2-5bdb2c60102d/1/QhO1RxlmwlYQ2VpaL6XMBvyT_1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:7c:e0:d9:6a:90:7c:58:c3:28:8e:69:0a:06:cc:8b:c0:04:
5e:7a:86:62:6d:57:5f:33:40:1a:24:81:da:fa:f4:11:1b:17:
4a:e9:de:bf:51:dc:58:7d:9b:2d:d1:32:6c:56:4e:7e:53:72:
32:a0:22:ea:66:4c:86:1e:98:10:05:6a:1c:9f:d3:ec:bb:ad:
34:fd:ca:81:cd:95:58:cc:7b:a5:16:8e:46:06:58:b1:ec:a5:
48:2f:f9:f1:0c:0d:97:34:3b:18:e2:30:9d:7f:6e:a1:47:b3:
e8:63:42:70:c9:6f:54:aa:c5:2f:84:82:7c:c2:61:c9:86:d2:
25:fe:7b:ca:a9:c5:d5:bb:8f:26:7f:d8:92:15:22:e5:f2:72:
11:22:d6:84:47:f9:fe:44:c7:9e:e3:98:af:0a:1d:08:ca:59:
24:24:eb:6e:71:61:40:d5:ef:7d:e7:4d:1a:68:d1:fd:2a:81:
de:da:3b:df:6f:43:2e:b6:d8:28:19:37:0e:a0:c8:d1:83:2f:
5d:7b:4f:ec:19:2c:12:10:82:fb:1b:63:8b:3f:9b:08:79:03:
99:cf:dc:fa:2f:46:80:20:9d:47:97:e1:cf:12:9e:f1:ac:4a:
ab:ee:9a:08:6e:14:8a:ed:f5:3c:6f:91:28:e4:e6:d5:4a:6e:
19:79:e9:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbCAgF7XabQy8t19EshVpjpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMTNiNTQ3MTk2NmMyNTYxMGQ5NWE1YTJmYTVjYzA2ZmM5
M2ZmNTcwHhcNMjUwNTEyMDEwMDMzWhcNMjUwNTEzMDEwMDMzWjAzMTEwLwYDVQQD
EygxMDBkMmMzMTY0Nzg2NjM5M2I1Nzg1MWZjNDhmNTg0MTMzMzgwNzg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRMvtHNb3uzZfjFsUqRxpA+m7mL+
QJnoRGCiDwWase1gPBdC6IfnwxiSs9RZpUHnuDlJm+MhGpey72qXDRYhNv9a1BLl
9/i355GnMwsJQ9+QjpwhdawyFUhu/NR0DdsZkE5MKJCbXDZ8l1AtRjNUXktqWaj8
ayX+qkxsL09oN/c8xOQTeNdJrBLOxhZ7rbeNvo5XkXMO/t3Q7MmYqo0FhbiI9jU2
+5ffieP5FiewSXE1pZpHD+hEdIueMEQ1UxirMjGm8WkIXTDMOKjybNnC4oETqjUu
GDwnUYdIcAR/pv0///A0VrxM/J6tR1bBWjsGdzTMRok1Tj7btOL9q25JWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBANLDFkeGY5O1eFH8SPWEEzOAeJMB8GA1UdIwQY
MBaAFEITtUcZZsJWENlaWi+lzAb8k/9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWhPMVJ4bG13bFlRMlZwYUw2WE1CdnlUXzFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8wMDA0ODUtNzIxZi00ZDk3LWEwZjIt
NWJkYjJjNjAxMDJkLzEvUWhPMVJ4bG13bFlRMlZwYUw2WE1CdnlUXzFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy8wMDA0ODUtNzIxZi00ZDk3LWEwZjItNWJkYjJjNjAxMDJk
LzEvUWhPMVJ4bG13bFlRMlZwYUw2WE1CdnlUXzFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlXzg2WqQ
fFjDKI5pCgbMi8AEXnqGYm1XXzNAGiSB2vr0ERsXSunev1HcWH2bLdEybFZOflNy
MqAi6mZMhh6YEAVqHJ/T7LutNP3Kgc2VWMx7pRaORgZYseylSC/58QwNlzQ7GOIw
nX9uoUez6GNCcMlvVKrFL4SCfMJhyYbSJf57yqnF1buPJn/YkhUi5fJyESLWhEf5
/kTHnuOYrwodCMpZJCTrbnFhQNXvfedNGmjR/SqB3to7329DLrbYKBk3DqDI0YMv
XXtP7BksEhCC+xtjiz+bCHkDmc/c+i9GgCCdR5fhzxKe8axKq+6aCG4Uiu31PG+R
KOTm1UpuGXnpKQ==
-----END CERTIFICATE-----
Generated at Mon May 12 11:12:21 2025 by rpki-client