Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
File: qGBXhZ0WYOjYcpee5tamssQzowU.mft (raw, json)
Hash identifier: RsDEPsWTwrsRIHsZG4X+Bbc7RaIBKoAfTN4WIb3dWZY=
Subject key identifier: D8:83:58:6E:4A:65:91:24:E8:33:5C:F6:72:5A:16:10:32:AF:E9:F3
Authority key identifier: A8:60:57:85:9D:16:60:E8:D8:72:97:9E:E6:D6:A6:B2:C4:33:A3:05
Certificate issuer: /CN=a86057859d1660e8d872979ee6d6a6b2c433a305
Certificate serial: 0196B7EC89F0F236FF411942416EFD6C2CE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
Manifest number: 1534
Signing time: Sat 10 May 2025 02:00:54 +0000
Manifest this update: Sat 10 May 2025 02:00:54 +0000
Manifest next update: Sun 11 May 2025 02:00:54 +0000
Files and hashes: 1: PW17_Y421OHbEdWMpqGOAItDAMQ.roa (hash: L2gpot5aAwJ9/O+fD4LlOhf1tqLhMij+IcuFZyDR7dA=)
2: qGBXhZ0WYOjYcpee5tamssQzowU.crl (hash: gJx0Qhwb7LcYwKfkwxKIjJ4HopurJsin/evoANjEyAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 02:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:ec:89:f0:f2:36:ff:41:19:42:41:6e:fd:6c:2c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a86057859d1660e8d872979ee6d6a6b2c433a305
Validity
Not Before: May 10 02:00:54 2025 GMT
Not After : May 11 02:00:54 2025 GMT
Subject: CN=d883586e4a659124e8335cf6725a161032afe9f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:59:a5:22:9e:84:d3:30:40:f0:7a:5f:ca:32:
de:b6:f1:5d:ba:ab:b0:da:78:cd:8c:7a:4e:ff:eb:
a6:2b:78:93:23:f0:07:f9:35:7c:1d:8c:1e:a2:3b:
70:a7:77:cc:0b:01:72:bc:be:ae:73:e7:ec:13:61:
9b:e9:f6:45:ac:38:d2:d8:22:01:26:cb:5c:ce:0d:
d4:0e:56:52:84:a5:b2:62:26:ea:a5:50:e7:bd:83:
fe:0c:78:e6:ba:aa:93:28:06:fb:c0:c3:36:3f:78:
10:01:d6:7a:21:1f:88:de:d5:db:e4:6e:16:55:e1:
30:0c:0d:57:39:ee:00:6a:35:3e:41:70:77:4d:d9:
d7:a6:c3:41:96:33:d2:69:01:e7:b5:6e:f2:15:ec:
3d:52:30:ad:b1:15:fb:5e:1e:c4:5f:41:61:2c:66:
47:7a:fa:99:e1:49:aa:7a:cc:f9:fc:5e:86:bf:a9:
a1:78:6b:bf:be:f2:ca:94:3f:1a:e8:7a:52:dd:82:
3d:28:ff:c8:61:dd:35:87:5c:96:88:ed:bb:dd:47:
92:0b:79:77:f1:fa:54:7b:a0:e9:90:74:9d:50:eb:
fb:f5:17:dd:5e:f9:d3:4a:b6:7c:4a:44:3d:6b:b6:
07:76:99:b8:9e:8e:c3:af:85:e8:45:e5:5e:94:92:
92:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:83:58:6E:4A:65:91:24:E8:33:5C:F6:72:5A:16:10:32:AF:E9:F3
X509v3 Authority Key Identifier:
keyid:A8:60:57:85:9D:16:60:E8:D8:72:97:9E:E6:D6:A6:B2:C4:33:A3:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:9f:b3:48:e1:42:5a:e9:3d:a4:45:c1:91:e1:cb:2a:3e:7d:
ca:ef:d6:90:6a:67:a2:80:13:e6:11:de:c5:41:2b:3b:96:70:
36:6f:98:f6:d0:64:5c:c2:a8:f8:7e:7c:19:a1:f3:de:fc:10:
b5:de:5f:bb:40:42:10:2e:7f:08:f6:db:1e:28:df:c5:53:ea:
5b:96:43:ca:ed:01:1d:06:c9:0d:94:c3:ea:f2:66:8b:80:86:
8d:71:23:a3:49:61:00:97:35:d5:73:39:ce:ba:f9:cd:6e:c6:
83:c5:58:89:b0:2f:29:bc:f3:e8:d6:88:fa:de:bd:69:16:73:
12:7c:e1:83:cd:2b:d6:1c:bf:ce:9d:99:4a:85:d0:c7:e0:31:
d8:c2:c5:69:39:5d:41:c1:a4:92:18:2a:9b:8b:02:83:dc:7d:
2e:df:9e:a1:1c:c6:69:04:d8:86:c8:48:75:9d:98:cc:05:6c:
f2:85:81:9c:ce:28:97:1a:79:1a:fa:7a:2e:df:5a:d0:6d:6b:
fa:e8:17:3a:20:5c:84:ed:01:f4:bd:f2:1a:7c:00:ba:47:f3:
43:8e:05:99:54:0e:b8:b6:eb:34:c0:54:7a:98:fa:d4:f4:c6:
5a:af:f4:c8:fd:31:46:9e:5c:1f:7a:7f:93:0f:90:92:04:9a:
41:43:48:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa37Inw8jb/QRlCQW79bCzmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4NjA1Nzg1OWQxNjYwZThkODcyOTc5ZWU2ZDZhNmIyYzQz
M2EzMDUwHhcNMjUwNTEwMDIwMDU0WhcNMjUwNTExMDIwMDU0WjAzMTEwLwYDVQQD
EyhkODgzNTg2ZTRhNjU5MTI0ZTgzMzVjZjY3MjVhMTYxMDMyYWZlOWYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVmlIp6E0zBA8HpfyjLetvFduquw
2njNjHpO/+umK3iTI/AH+TV8HYweojtwp3fMCwFyvL6uc+fsE2Gb6fZFrDjS2CIB
Jstczg3UDlZShKWyYibqpVDnvYP+DHjmuqqTKAb7wMM2P3gQAdZ6IR+I3tXb5G4W
VeEwDA1XOe4AajU+QXB3TdnXpsNBljPSaQHntW7yFew9UjCtsRX7Xh7EX0FhLGZH
evqZ4Umqesz5/F6Gv6mheGu/vvLKlD8a6HpS3YI9KP/IYd01h1yWiO273UeSC3l3
8fpUe6DpkHSdUOv79RfdXvnTSrZ8SkQ9a7YHdpm4no7Dr4XoReVelJKSWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNiDWG5KZZEk6DNc9nJaFhAyr+nzMB8GA1UdIwQY
MBaAFKhgV4WdFmDo2HKXnubWprLEM6MFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUdCWGhaMFdZT2pZY3BlZTV0YW1zc1F6b3dVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8yMTM0NWItNGRlNy00MDg2LTlhYmYt
ZDRlZGMyMGNjMWFjLzEvcUdCWGhaMFdZT2pZY3BlZTV0YW1zc1F6b3dVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8yMTM0NWItNGRlNy00MDg2LTlhYmYtZDRlZGMyMGNjMWFj
LzEvcUdCWGhaMFdZT2pZY3BlZTV0YW1zc1F6b3dVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcZ+zSOFC
Wuk9pEXBkeHLKj59yu/WkGpnooAT5hHexUErO5ZwNm+Y9tBkXMKo+H58GaHz3vwQ
td5fu0BCEC5/CPbbHijfxVPqW5ZDyu0BHQbJDZTD6vJmi4CGjXEjo0lhAJc11XM5
zrr5zW7Gg8VYibAvKbzz6NaI+t69aRZzEnzhg80r1hy/zp2ZSoXQx+Ax2MLFaTld
QcGkkhgqm4sCg9x9Lt+eoRzGaQTYhshIdZ2YzAVs8oWBnM4olxp5Gvp6Lt9a0G1r
+ugXOiBchO0B9L3yGnwAukfzQ44FmVQOuLbrNMBUepj61PTGWq/0yP0xRp5cH3p/
kw+QkgSaQUNIGA==
-----END CERTIFICATE-----
Generated at Sat May 10 09:58:12 2025 by rpki-client