Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: 5meJzNUl+KUcO4LSTcCTxxGT6LITZdpGttq0+IrRtRU=
Subject key identifier: 19:9B:95:0F:CB:0C:B4:BC:D4:76:53:E3:E5:C3:70:61:38:C6:02:49
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 01969E2C3EDB9863D3C36ADE6789061909D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 08A8
Signing time: Mon 05 May 2025 02:00:21 +0000
Manifest this update: Mon 05 May 2025 02:00:21 +0000
Manifest next update: Tue 06 May 2025 02:00:21 +0000
Files and hashes: 1: PTvQgS1qnjLwo9s4LdFb_Ohs-14.roa (hash: ISrdGe09G63GrIhvFHUR6KGbQ/gtnJbbuoeTtm56a1E=)
2: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: YbM/IdA11+IuywuAt7wW+6jqJkb1PEAjUksClD2qwUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 02:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:3e:db:98:63:d3:c3:6a:de:67:89:06:19:09:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: May 5 02:00:21 2025 GMT
Not After : May 6 02:00:21 2025 GMT
Subject: CN=199b950fcb0cb4bcd47653e3e5c3706138c60249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:61:03:bf:ea:86:6c:83:ba:78:48:c0:4f:80:
08:40:59:20:14:94:6c:3c:ab:cc:dd:41:a9:9b:ba:
d8:ab:d7:ed:70:70:3d:a2:2d:8f:48:e9:14:ff:09:
8a:70:07:b6:8b:8e:35:3d:1c:92:62:12:2d:25:f0:
2d:43:7b:6a:c0:a9:76:a9:6c:20:f0:a1:ea:97:34:
06:9e:7f:42:93:2e:f1:b2:cd:c3:09:9f:b5:eb:6f:
85:8b:2e:07:26:c7:3a:b0:51:50:41:f6:08:ad:26:
ee:64:64:a3:c3:75:ed:10:14:47:4d:46:47:56:b1:
fe:fd:0a:75:2f:30:82:c7:36:04:e1:9e:ee:a2:6e:
b9:5e:a2:54:cb:76:5b:f8:3c:27:24:b8:cf:57:31:
ae:69:7b:d4:47:2a:74:9a:ec:88:52:38:d0:a7:f1:
14:0c:93:99:fc:82:e5:d7:5b:fe:08:7d:6b:4c:db:
c9:7e:e3:6a:1a:05:ea:f3:c4:86:75:49:59:08:20:
c7:36:7e:4b:72:74:58:8c:1d:e1:83:2f:ae:93:28:
9d:fc:b9:ea:1b:94:63:75:14:0c:fe:7b:fc:9e:3e:
12:8b:4e:b5:53:15:8b:bf:1e:c1:d3:14:4a:f6:df:
7b:5f:ca:7b:01:ab:c9:3e:f5:e7:49:33:1d:79:86:
52:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9B:95:0F:CB:0C:B4:BC:D4:76:53:E3:E5:C3:70:61:38:C6:02:49
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:58:67:fe:27:29:dd:83:8d:d3:df:71:05:72:ec:a0:4a:09:
94:a0:35:f4:db:30:72:f8:fe:7d:d1:65:6b:4e:00:1e:f2:a1:
10:7e:68:10:32:81:e5:bb:34:2a:28:cd:5f:08:75:ca:30:1f:
f8:2d:7a:49:aa:7d:d1:3a:0c:09:d7:bf:66:d3:fb:8d:8e:8e:
a9:c1:d5:b8:b5:52:be:8a:5d:83:77:8d:39:67:6b:17:c0:b1:
56:8b:94:37:38:b3:96:b1:c6:72:96:d9:f7:10:4d:44:20:2e:
69:bf:4e:4f:d2:f3:e8:74:57:4a:a7:8c:a9:eb:4d:c3:b8:20:
5f:67:68:99:d8:5d:a6:49:fe:c6:14:10:69:79:da:3d:0b:c7:
64:43:50:db:63:6a:a1:30:ef:27:32:b2:a6:b4:ef:54:bb:78:
2f:60:13:43:7c:0e:14:2c:63:a4:f4:d1:b0:86:c3:5b:0e:6b:
f5:b3:de:be:e7:a4:51:7d:b8:ed:bc:ba:cc:ec:63:1d:23:bd:
38:85:e3:81:e9:2e:fe:85:50:72:a1:79:0f:2b:f4:64:06:54:
6e:19:84:6a:83:18:93:14:54:bc:7b:cb:04:c9:06:f9:ae:41:
b1:94:56:06:8b:43:1c:6f:39:ef:7e:b4:1d:6d:05:ae:ab:ba:
9d:b2:c4:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaeLD7bmGPTw2reZ4kGGQnUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxOGQ1NGI1NWIxOTJhMjQ4Yjg0NzIzNGRiYTUxMmY5NzYw
Y2FiZmEwHhcNMjUwNTA1MDIwMDIxWhcNMjUwNTA2MDIwMDIxWjAzMTEwLwYDVQQD
EygxOTliOTUwZmNiMGNiNGJjZDQ3NjUzZTNlNWMzNzA2MTM4YzYwMjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqmEDv+qGbIO6eEjAT4AIQFkgFJRs
PKvM3UGpm7rYq9ftcHA9oi2PSOkU/wmKcAe2i441PRySYhItJfAtQ3tqwKl2qWwg
8KHqlzQGnn9Cky7xss3DCZ+162+Fiy4HJsc6sFFQQfYIrSbuZGSjw3XtEBRHTUZH
VrH+/Qp1LzCCxzYE4Z7uom65XqJUy3Zb+DwnJLjPVzGuaXvURyp0muyIUjjQp/EU
DJOZ/ILl11v+CH1rTNvJfuNqGgXq88SGdUlZCCDHNn5LcnRYjB3hgy+ukyid/Lnq
G5RjdRQM/nv8nj4Si061UxWLvx7B0xRK9t97X8p7AavJPvXnSTMdeYZSPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBmblQ/LDLS81HZT4+XDcGE4xgJJMB8GA1UdIwQY
MBaAFEGNVLVbGSoki4RyNNulEvl2DKv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9iNDM4NTctMDIxYy00MjYyLWIxODMt
MWQ3N2NmMmE3MTAwLzEvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9iNDM4NTctMDIxYy00MjYyLWIxODMtMWQ3N2NmMmE3MTAw
LzEvUVkxVXRWc1pLaVNMaEhJMDI2VVMtWFlNcV9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIlhn/icp
3YON099xBXLsoEoJlKA19Nswcvj+fdFla04AHvKhEH5oEDKB5bs0KijNXwh1yjAf
+C16Sap90ToMCde/ZtP7jY6OqcHVuLVSvopdg3eNOWdrF8CxVouUNzizlrHGcpbZ
9xBNRCAuab9OT9Lz6HRXSqeMqetNw7ggX2domdhdpkn+xhQQaXnaPQvHZENQ22Nq
oTDvJzKyprTvVLt4L2ATQ3wOFCxjpPTRsIbDWw5r9bPevuekUX247by6zOxjHSO9
OIXjgeku/oVQcqF5Dyv0ZAZUbhmEaoMYkxRUvHvLBMkG+a5BsZRWBotDHG857360
HW0Frqu6nbLEOw==
-----END CERTIFICATE-----
Generated at Mon May 5 11:38:33 2025 by rpki-client