Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: K1KUyD6FwrZYvnnpC9hqH0o4aN+rj0UtchnihAFbzm4=
Subject key identifier: 5E:CB:28:9A:6D:45:4B:74:1C:22:54:17:6A:41:DA:F1:1F:44:A9:7D
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 0196B3D8427F67D1434B4E6740FA15E76788
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 152C
Signing time: Fri 09 May 2025 07:00:16 +0000
Manifest this update: Fri 09 May 2025 07:00:16 +0000
Manifest next update: Sat 10 May 2025 07:00:16 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: 33WW7CS29mqwGEz5QFM4+qW/O0oaTBkxtbkahqRGbjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 07:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:d8:42:7f:67:d1:43:4b:4e:67:40:fa:15:e7:67:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: May 9 07:00:16 2025 GMT
Not After : May 10 07:00:16 2025 GMT
Subject: CN=5ecb289a6d454b741c2254176a41daf11f44a97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b7:db:d8:bb:18:e4:1f:e1:3f:24:f6:f8:85:
23:2c:aa:e6:83:4b:a8:cc:eb:2f:20:86:55:fd:a5:
b1:a1:1d:de:c4:18:32:89:5a:47:b7:f1:f9:9c:db:
e7:97:f4:d3:8a:2e:5c:d1:55:61:c4:c5:e8:7c:62:
64:8d:7e:ec:8f:13:57:f4:4c:b0:1f:71:ee:9e:1b:
e2:17:12:af:41:0d:31:be:96:96:e6:25:9b:ec:53:
ce:71:83:e2:a6:60:27:69:0c:fb:c4:96:e2:76:e6:
bc:8c:45:40:20:8c:be:af:08:e6:03:34:32:0a:fa:
b7:93:b2:cf:8d:2b:46:69:fa:6a:34:2c:bb:d2:fe:
12:83:59:f6:c4:29:6d:cc:b9:29:9a:ab:5d:db:4d:
ab:99:fc:82:25:f2:83:d4:35:10:37:f9:cc:e0:cd:
07:7b:c5:ed:8a:e4:06:ae:8f:b6:44:99:b0:31:bb:
9b:cb:60:c4:fc:bd:1f:b3:85:cb:26:ed:30:8a:71:
5e:f7:21:3d:65:50:49:b8:de:bf:05:09:e5:75:cd:
3f:35:bb:4e:c8:6c:2c:e0:6d:7d:a1:14:ce:8b:13:
76:97:ab:eb:90:02:37:91:b3:2f:b5:7c:97:3f:fe:
c9:9d:0e:97:df:08:f4:6b:ef:6e:22:e6:00:ed:68:
4f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CB:28:9A:6D:45:4B:74:1C:22:54:17:6A:41:DA:F1:1F:44:A9:7D
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:fd:a8:79:62:11:f9:dc:3d:b3:fc:b5:d0:e4:da:71:19:c7:
34:46:cb:bb:2d:1f:a5:93:fc:2a:f2:ad:4d:47:5c:40:1b:16:
33:8a:16:dc:ae:75:5c:3c:9d:3e:d0:6f:45:66:d6:1b:d1:89:
b3:c6:56:f3:88:58:21:2c:ca:bf:b5:34:75:02:a0:2b:95:ef:
c9:45:6c:33:be:eb:6f:22:6a:ca:73:a1:2c:91:11:c3:47:a7:
ab:c6:e0:75:49:a8:91:c3:d8:ff:81:c2:86:fd:04:dd:19:2d:
af:41:58:12:8b:a8:9d:c5:b6:03:ce:f6:ac:9d:54:9f:61:cc:
72:4a:55:c4:46:5f:4a:18:f2:ef:0c:b6:25:b8:0d:24:06:50:
c9:c3:a7:34:99:91:a0:8c:ac:0b:5d:a8:2b:0a:ef:17:4a:f6:
d7:b5:69:5c:1a:19:2a:20:05:e4:54:3a:66:7e:30:de:f8:24:
97:04:1b:34:77:35:57:41:0b:2a:0e:d4:60:d8:a5:1e:ab:9b:
77:7d:4e:6f:32:cd:e1:7d:e7:1d:e5:47:1e:67:65:72:9c:98:
64:31:25:65:4c:b7:2e:84:b1:b9:03:67:d0:4e:3d:e2:2f:34:
d3:cf:b8:de:b7:82:8a:8f:8d:48:17:18:7c:d0:3e:1c:49:17:
6b:7a:05:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaz2EJ/Z9FDS05nQPoV52eIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYWE3MTE1N2UyMGQ5ODAzNmJiZDY5M2I4ZWNiYjJiOTlm
MGYwM2MwHhcNMjUwNTA5MDcwMDE2WhcNMjUwNTEwMDcwMDE2WjAzMTEwLwYDVQQD
Eyg1ZWNiMjg5YTZkNDU0Yjc0MWMyMjU0MTc2YTQxZGFmMTFmNDRhOTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7fb2LsY5B/hPyT2+IUjLKrmg0uo
zOsvIIZV/aWxoR3exBgyiVpHt/H5nNvnl/TTii5c0VVhxMXofGJkjX7sjxNX9Eyw
H3HunhviFxKvQQ0xvpaW5iWb7FPOcYPipmAnaQz7xJbidua8jEVAIIy+rwjmAzQy
Cvq3k7LPjStGafpqNCy70v4Sg1n2xCltzLkpmqtd202rmfyCJfKD1DUQN/nM4M0H
e8XtiuQGro+2RJmwMbuby2DE/L0fs4XLJu0winFe9yE9ZVBJuN6/BQnldc0/NbtO
yGws4G19oRTOixN2l6vrkAI3kbMvtXyXP/7JnQ6X3wj0a+9uIuYA7WhPUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF7LKJptRUt0HCJUF2pB2vEfRKl9MB8GA1UdIwQY
MBaAFECqcRV+INmANrvWk7jsuyuZ8PA8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUt
MjM1YWJhMTlkOWY5LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUtMjM1YWJhMTlkOWY5
LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjf2oeWIR
+dw9s/y10OTacRnHNEbLuy0fpZP8KvKtTUdcQBsWM4oW3K51XDydPtBvRWbWG9GJ
s8ZW84hYISzKv7U0dQKgK5XvyUVsM77rbyJqynOhLJERw0enq8bgdUmokcPY/4HC
hv0E3Rktr0FYEouoncW2A872rJ1Un2HMckpVxEZfShjy7wy2JbgNJAZQycOnNJmR
oIysC12oKwrvF0r217VpXBoZKiAF5FQ6Zn4w3vgklwQbNHc1V0ELKg7UYNilHqub
d31ObzLN4X3nHeVHHmdlcpyYZDElZUy3LoSxuQNn0E494i8008+43reCio+NSBcY
fNA+HEkXa3oFkQ==
-----END CERTIFICATE-----
Generated at Fri May 9 14:32:06 2025 by rpki-client