Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
File: qLq2HDYOoQjNGSx856ftVWW9--A.mft (raw, json)
Hash identifier: Mbd1GxNKlzP45X7Hd3In2VUzSRXJdaBVqEyzemjK/tU=
Subject key identifier: 13:2A:7E:7E:76:7A:ED:9E:0C:69:2A:3A:92:06:B9:15:02:0E:DC:F7
Authority key identifier: A8:BA:B6:1C:36:0E:A1:08:CD:19:2C:7C:E7:A7:ED:55:65:BD:FB:E0
Certificate issuer: /CN=a8bab61c360ea108cd192c7ce7a7ed5565bdfbe0
Certificate serial: 0196B446821BAB9EBE4AEFFB8F666E6B51D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
Manifest number: 0CA5
Signing time: Fri 09 May 2025 09:00:41 +0000
Manifest this update: Fri 09 May 2025 09:00:41 +0000
Manifest next update: Sat 10 May 2025 09:00:41 +0000
Files and hashes: 1: llKmEV0JVzIG0_MZWPlP8ygpeC0.roa (hash: jPaOJ8ND+JyHLtdhEIszWBX4EhT8804ihxPfOvX+M6g=)
2: qLq2HDYOoQjNGSx856ftVWW9--A.crl (hash: kRAwAJxwSK+/qZn3q+TCdBC9WrpeghRcVyiiDio8v6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 09:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:46:82:1b:ab:9e:be:4a:ef:fb:8f:66:6e:6b:51:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8bab61c360ea108cd192c7ce7a7ed5565bdfbe0
Validity
Not Before: May 9 09:00:41 2025 GMT
Not After : May 10 09:00:41 2025 GMT
Subject: CN=132a7e7e767aed9e0c692a3a9206b915020edcf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:69:1f:04:57:46:44:6b:99:3c:c4:c6:a6:c5:
d8:e3:ba:e8:94:7d:7d:72:cb:70:05:65:28:7b:d1:
8d:47:ff:4b:2b:e2:71:3b:ab:89:1a:37:e7:c4:5b:
a1:73:42:d5:b7:67:64:ea:2c:f5:c7:a3:bf:35:e9:
15:99:61:00:d0:2e:80:62:72:e9:59:dc:a4:12:65:
82:11:1d:2a:aa:a9:1a:44:a4:6b:65:32:05:68:21:
c5:e0:29:fd:59:e7:8b:5d:72:c1:60:18:37:f8:c4:
d1:17:41:ea:2f:8f:6e:4f:83:d1:f7:de:e4:99:d5:
d4:d0:a6:b8:7b:fc:16:9f:4c:dc:0c:df:60:34:49:
f1:f0:f4:8e:22:10:15:78:32:b9:96:22:7d:8a:89:
7c:dc:f4:22:09:5d:6b:3f:99:bd:11:c6:4b:fa:b1:
d5:c2:44:28:c1:01:54:a4:8f:a5:29:23:cf:4d:1a:
a7:68:8e:82:b1:ce:99:0e:11:7e:8a:05:9f:7a:d7:
15:15:92:62:14:81:8f:ee:69:04:af:83:56:c5:f4:
bd:7b:7a:54:73:2d:a4:8a:d3:42:f9:67:63:93:33:
d1:97:4f:bc:76:d2:73:fe:26:94:0d:72:21:9d:a6:
02:e7:73:2a:a9:5a:aa:2f:fb:30:b4:ff:95:f2:52:
a9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:2A:7E:7E:76:7A:ED:9E:0C:69:2A:3A:92:06:B9:15:02:0E:DC:F7
X509v3 Authority Key Identifier:
keyid:A8:BA:B6:1C:36:0E:A1:08:CD:19:2C:7C:E7:A7:ED:55:65:BD:FB:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLq2HDYOoQjNGSx856ftVWW9--A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9b39b9-82c8-4c7d-b268-766e546057a7/1/qLq2HDYOoQjNGSx856ftVWW9--A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:cd:ef:68:24:e8:65:7d:30:ed:bb:30:6a:9e:4d:5f:3b:58:
3c:ab:f6:09:69:c1:6b:8c:2a:fa:bb:7b:76:3a:9f:d6:35:6e:
b9:37:ea:6c:30:1b:81:81:85:b0:e6:a3:21:53:f6:54:9e:0f:
22:7a:c6:49:e9:39:64:f4:28:a5:81:36:53:70:d7:d5:7b:0b:
65:57:20:40:a7:bc:b7:5e:ef:1b:1e:a2:03:72:0f:a5:f2:f0:
c0:e3:13:ec:ee:bb:2a:ce:75:24:2e:c8:4c:35:aa:48:c0:00:
b5:53:c6:80:cc:b3:dd:cb:4e:b7:1a:8d:68:08:9a:73:28:01:
ab:77:6f:29:f0:f5:66:a8:09:18:69:a6:3a:e7:73:2c:cc:88:
1e:f3:0c:f4:af:e7:b0:ba:8f:21:a6:78:cc:6c:11:98:ae:e1:
70:c8:0f:e4:fc:b6:88:7b:1c:6c:a2:06:b4:2e:b2:05:fc:a1:
ba:27:81:2f:3c:91:7d:91:66:84:50:cc:81:38:7e:07:e3:70:
1c:ca:05:f8:38:9e:2b:e5:a6:f0:17:f8:06:62:35:71:40:7c:
17:ea:40:6b:74:3c:59:33:92:98:ce:56:60:43:70:fb:e5:64:
80:b2:b4:7a:a7:4d:c0:d2:49:3a:77:11:b4:f2:e6:8f:2f:9c:
8e:5b:51:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa0RoIbq56+Su/7j2Zua1HYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4YmFiNjFjMzYwZWExMDhjZDE5MmM3Y2U3YTdlZDU1NjVi
ZGZiZTAwHhcNMjUwNTA5MDkwMDQxWhcNMjUwNTEwMDkwMDQxWjAzMTEwLwYDVQQD
EygxMzJhN2U3ZTc2N2FlZDllMGM2OTJhM2E5MjA2YjkxNTAyMGVkY2Y3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGkfBFdGRGuZPMTGpsXY47rolH19
cstwBWUoe9GNR/9LK+JxO6uJGjfnxFuhc0LVt2dk6iz1x6O/NekVmWEA0C6AYnLp
WdykEmWCER0qqqkaRKRrZTIFaCHF4Cn9WeeLXXLBYBg3+MTRF0HqL49uT4PR997k
mdXU0Ka4e/wWn0zcDN9gNEnx8PSOIhAVeDK5liJ9iol83PQiCV1rP5m9EcZL+rHV
wkQowQFUpI+lKSPPTRqnaI6Csc6ZDhF+igWfetcVFZJiFIGP7mkEr4NWxfS9e3pU
cy2kitNC+WdjkzPRl0+8dtJz/iaUDXIhnaYC53MqqVqqL/swtP+V8lKpvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBMqfn52eu2eDGkqOpIGuRUCDtz3MB8GA1UdIwQY
MBaAFKi6thw2DqEIzRksfOen7VVlvfvgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUxxMkhEWU9vUWpOR1N4ODU2ZnRWV1c5LS1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC85YjM5YjktODJjOC00YzdkLWIyNjgt
NzY2ZTU0NjA1N2E3LzEvcUxxMkhEWU9vUWpOR1N4ODU2ZnRWV1c5LS1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC85YjM5YjktODJjOC00YzdkLWIyNjgtNzY2ZTU0NjA1N2E3
LzEvcUxxMkhEWU9vUWpOR1N4ODU2ZnRWV1c5LS1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHc3vaCTo
ZX0w7bswap5NXztYPKv2CWnBa4wq+rt7djqf1jVuuTfqbDAbgYGFsOajIVP2VJ4P
InrGSek5ZPQopYE2U3DX1XsLZVcgQKe8t17vGx6iA3IPpfLwwOMT7O67Ks51JC7I
TDWqSMAAtVPGgMyz3ctOtxqNaAiacygBq3dvKfD1ZqgJGGmmOudzLMyIHvMM9K/n
sLqPIaZ4zGwRmK7hcMgP5Py2iHscbKIGtC6yBfyhuieBLzyRfZFmhFDMgTh+B+Nw
HMoF+DieK+Wm8Bf4BmI1cUB8F+pAa3Q8WTOSmM5WYENw++VkgLK0eqdNwNJJOncR
tPLmjy+cjltRqg==
-----END CERTIFICATE-----
Generated at Fri May 9 17:01:59 2025 by rpki-client