Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft
File: qfCQLHsw_sPg3PXyO_7fUBgjQps.mft (raw, json)
Hash identifier: sWZZ9+0uP3bjTxARRzlfY5wmqWrRjsPcZn8beS2Ir+g=
Subject key identifier: D8:57:A3:29:5D:1A:D1:BC:39:A1:E7:0E:A7:8D:97:1A:DF:03:5A:78
Authority key identifier: A9:F0:90:2C:7B:30:FE:C3:E0:DC:F5:F2:3B:FE:DF:50:18:23:42:9B
Certificate issuer: /CN=a9f0902c7b30fec3e0dcf5f23bfedf501823429b
Certificate serial: 0197B933B068A96D8B147F8FDD65E0B9BD30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qfCQLHsw_sPg3PXyO_7fUBgjQps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft
Manifest number: 0445
Signing time: Sun 29 Jun 2025 01:01:01 +0000
Manifest this update: Sun 29 Jun 2025 01:01:01 +0000
Manifest next update: Mon 30 Jun 2025 01:01:01 +0000
Files and hashes: 1: qfCQLHsw_sPg3PXyO_7fUBgjQps.crl (hash: t6ckj+/2s8MlFcbPpsAD7pZ7/yx9OsZYsCuLI8PSkdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft
rsync://rpki.ripe.net/repository/DEFAULT/qfCQLHsw_sPg3PXyO_7fUBgjQps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:b0:68:a9:6d:8b:14:7f:8f:dd:65:e0:b9:bd:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9f0902c7b30fec3e0dcf5f23bfedf501823429b
Validity
Not Before: Jun 29 01:01:01 2025 GMT
Not After : Jun 30 01:01:01 2025 GMT
Subject: CN=d857a3295d1ad1bc39a1e70ea78d971adf035a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fb:97:71:e9:5f:e4:6a:63:e1:c6:d1:b9:2d:
d7:86:0e:b2:ea:50:90:2b:f2:22:0f:44:66:e9:ff:
39:c6:98:1d:08:dc:94:ab:94:0f:d9:bc:2d:95:7c:
54:a2:2c:9e:2c:41:5f:91:3b:9c:ea:f4:aa:95:7c:
ed:92:71:c0:ce:7a:99:30:98:06:d4:e2:a0:1c:98:
2b:a0:0a:89:06:7e:ae:e5:4b:bc:a5:8c:6f:3c:bf:
d2:d6:b8:ee:34:e7:02:d6:f0:cf:91:72:6f:e1:81:
24:50:54:b5:5d:06:e8:43:32:01:bc:3e:da:71:e1:
26:60:79:6f:bb:4c:07:5a:34:a1:58:c3:6c:b7:b2:
c9:e5:04:15:d4:a4:9f:0a:d9:5e:4d:a1:e3:20:b4:
21:3d:55:7e:1f:62:5d:1f:3c:68:96:79:fc:88:29:
7e:71:2e:3c:b0:5e:a9:15:d8:5d:33:4b:27:ad:c1:
65:0f:07:69:57:65:28:9e:29:c6:9a:ec:d7:0e:cd:
d0:fc:b9:e1:54:3e:0f:c0:ab:35:95:41:75:bb:28:
97:e7:d3:c2:47:42:22:3d:7b:71:54:37:06:66:73:
a6:a9:8a:98:e5:19:7b:89:15:95:34:41:74:5b:59:
05:5f:66:dc:06:07:a3:26:ed:5c:eb:af:90:7e:7e:
82:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:57:A3:29:5D:1A:D1:BC:39:A1:E7:0E:A7:8D:97:1A:DF:03:5A:78
X509v3 Authority Key Identifier:
keyid:A9:F0:90:2C:7B:30:FE:C3:E0:DC:F5:F2:3B:FE:DF:50:18:23:42:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qfCQLHsw_sPg3PXyO_7fUBgjQps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d66ff3-b607-476e-8d5e-8968565df63a/1/qfCQLHsw_sPg3PXyO_7fUBgjQps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:b8:31:a2:c4:a1:6b:5f:00:ae:73:1f:9b:fb:e5:28:cb:07:
08:3f:75:f8:2d:83:0d:e8:35:b6:88:7a:4f:3a:a7:8e:79:7a:
a7:b4:ee:63:83:77:60:cc:a2:42:08:11:4c:1a:fe:d3:c2:44:
cc:20:03:52:ef:eb:11:4e:50:d6:97:f0:b0:18:7a:64:22:18:
7f:c0:1e:65:1a:80:88:39:2c:4e:c8:68:46:90:49:85:d0:4b:
02:68:e3:9f:d4:90:b9:74:02:da:56:74:77:c2:df:99:f8:5a:
4b:9d:75:23:e3:c2:d3:ec:dc:98:47:06:01:e8:74:0e:8e:ac:
fc:d5:2e:c6:ed:b2:b6:bf:0c:f2:93:f4:b7:7b:1c:62:4d:6f:
0c:ff:39:7d:f9:d4:7c:c9:07:7a:dc:df:04:cc:ef:d8:ba:05:
7a:24:43:ff:5f:5e:7c:18:3e:52:0f:d4:e2:6d:bb:41:db:40:
07:1d:5c:e1:71:ba:08:80:56:34:08:ee:3c:94:bf:df:bb:68:
4a:67:12:43:fe:ad:79:25:c6:9f:54:f8:22:44:5e:3d:09:c9:
a1:76:65:a9:b4:69:90:eb:5f:dd:11:9f:f4:bf:88:a8:9b:cf:
d6:97:15:02:b9:6c:2f:95:b3:91:a9:0a:32:ef:e0:2f:5d:c3:
3b:7f:17:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe5M7BoqW2LFH+P3WXgub0wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5ZjA5MDJjN2IzMGZlYzNlMGRjZjVmMjNiZmVkZjUwMTgy
MzQyOWIwHhcNMjUwNjI5MDEwMTAxWhcNMjUwNjMwMDEwMTAxWjAzMTEwLwYDVQQD
EyhkODU3YTMyOTVkMWFkMWJjMzlhMWU3MGVhNzhkOTcxYWRmMDM1YTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/uXcelf5Gpj4cbRuS3Xhg6y6lCQ
K/IiD0Rm6f85xpgdCNyUq5QP2bwtlXxUoiyeLEFfkTuc6vSqlXztknHAznqZMJgG
1OKgHJgroAqJBn6u5Uu8pYxvPL/S1rjuNOcC1vDPkXJv4YEkUFS1XQboQzIBvD7a
ceEmYHlvu0wHWjShWMNst7LJ5QQV1KSfCtleTaHjILQhPVV+H2JdHzxolnn8iCl+
cS48sF6pFdhdM0snrcFlDwdpV2UoninGmuzXDs3Q/LnhVD4PwKs1lUF1uyiX59PC
R0IiPXtxVDcGZnOmqYqY5Rl7iRWVNEF0W1kFX2bcBgejJu1c66+Qfn6CjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNhXoyldGtG8OaHnDqeNlxrfA1p4MB8GA1UdIwQY
MBaAFKnwkCx7MP7D4Nz18jv+31AYI0KbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWZDUUxIc3dfc1BnM1BYeU9fN2ZVQmdqUXBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9kNjZmZjMtYjYwNy00NzZlLThkNWUt
ODk2ODU2NWRmNjNhLzEvcWZDUUxIc3dfc1BnM1BYeU9fN2ZVQmdqUXBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9kNjZmZjMtYjYwNy00NzZlLThkNWUtODk2ODU2NWRmNjNh
LzEvcWZDUUxIc3dfc1BnM1BYeU9fN2ZVQmdqUXBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN7gxosSh
a18ArnMfm/vlKMsHCD91+C2DDeg1toh6Tzqnjnl6p7TuY4N3YMyiQggRTBr+08JE
zCADUu/rEU5Q1pfwsBh6ZCIYf8AeZRqAiDksTshoRpBJhdBLAmjjn9SQuXQC2lZ0
d8LfmfhaS511I+PC0+zcmEcGAeh0Do6s/NUuxu2ytr8M8pP0t3scYk1vDP85ffnU
fMkHetzfBMzv2LoFeiRD/19efBg+Ug/U4m27QdtABx1c4XG6CIBWNAjuPJS/37to
SmcSQ/6teSXGn1T4IkRePQnJoXZlqbRpkOtf3RGf9L+IqJvP1pcVArlsL5WzkakK
Mu/gL13DO38X7g==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:40:34 2025 by rpki-client