Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: nlecdO/hJbLWmvOOEQKZVTXNEukj7nC/SVSLQT6agFE=
Subject key identifier: 54:3D:0A:EB:7A:CF:F7:B2:F9:E1:15:AE:10:F8:A4:AE:BF:4A:76:D4
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 0196B8FEFFFD46278B40AA84E799B5D184DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 0B4E
Signing time: Sat 10 May 2025 07:00:41 +0000
Manifest this update: Sat 10 May 2025 07:00:41 +0000
Manifest next update: Sun 11 May 2025 07:00:41 +0000
Files and hashes: 1: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: 3gojzoLQJi9RaMK0Vo02AsBVOX/MFeaJ5qBQB5qLF2g=)
2: u25_l7rqpA4jc9Mn9X_nn6jE1D8.roa (hash: XxkiW8kKfa52GpQHHiGBtUNZJLczRvJy5PTfiodYsrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:fe:ff:fd:46:27:8b:40:aa:84:e7:99:b5:d1:84:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: May 10 07:00:41 2025 GMT
Not After : May 11 07:00:41 2025 GMT
Subject: CN=543d0aeb7acff7b2f9e115ae10f8a4aebf4a76d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:21:cd:20:54:f7:c2:29:53:80:bf:36:fb:37:
f7:ac:6c:2d:34:9b:ae:20:47:e6:7a:09:c5:3d:8f:
b7:84:d2:6b:cf:04:84:ad:7a:35:08:67:dc:85:97:
fd:f9:95:6a:8b:81:fc:0e:45:18:21:73:11:6b:7f:
03:21:6d:85:68:35:5f:f3:06:a1:e7:35:d4:cf:1d:
07:f5:8b:39:60:32:47:e0:aa:8e:ee:25:bc:79:36:
dc:ab:8b:22:25:d0:af:aa:67:a4:82:1f:af:0b:94:
af:ee:e2:12:38:e6:95:dc:ed:96:36:7e:a4:31:fa:
00:a6:85:58:f7:98:33:23:df:2f:f2:f2:c7:90:0b:
c4:85:73:ce:09:ec:9c:97:04:27:33:0e:29:43:b2:
96:c2:bf:42:ea:ff:f2:f1:4c:fa:83:ee:ef:11:49:
f6:c0:a5:88:23:1c:7f:1a:09:3c:1e:a1:53:25:2f:
3e:51:1a:3d:21:b4:d3:b9:1e:4f:6e:69:ba:51:8f:
07:77:4a:d7:98:58:b0:aa:8a:f4:61:51:89:1c:7d:
e8:04:84:b7:0b:0f:59:fe:33:56:0a:86:d5:3d:32:
e9:a2:ea:17:1d:82:2e:57:56:4f:b3:c7:c1:8b:55:
b4:15:dd:b3:e9:e7:d9:47:65:e6:2b:35:92:7e:43:
1b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3D:0A:EB:7A:CF:F7:B2:F9:E1:15:AE:10:F8:A4:AE:BF:4A:76:D4
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:2b:d5:6f:3c:6a:e9:69:35:f1:b8:ed:3e:ef:ce:53:9f:7a:
1c:c7:a6:e7:56:8e:44:7d:66:ce:dd:95:5b:09:f4:68:a0:52:
52:a5:8c:30:6c:38:6a:2d:14:39:ce:d7:10:73:33:3f:90:fc:
0c:30:54:8c:47:e1:5c:00:cd:ae:74:e1:b2:9d:17:27:dd:28:
a1:23:42:2e:52:f0:87:43:6d:20:63:6d:f3:49:66:88:05:ec:
51:a2:33:42:69:f6:11:06:36:77:84:71:80:16:77:ee:06:9d:
c4:c2:5e:1a:7b:5b:70:93:13:4a:62:68:25:08:cb:af:0f:86:
66:e7:65:48:e0:0f:e0:73:f6:25:91:14:04:81:7f:9b:7b:c6:
c0:61:48:12:30:a7:6f:08:02:8c:84:22:8b:9c:c6:1c:c4:48:
a1:38:54:6a:09:f3:f5:9f:64:a2:76:8d:10:a3:f9:05:04:37:
34:ca:35:a3:ec:42:8c:2f:2e:42:e2:31:35:07:6a:c8:39:db:
5b:b5:e3:e0:79:f6:fb:00:97:b3:51:03:40:b9:db:68:c9:52:
cd:12:b5:75:91:c5:7c:ab:f6:76:b4:3f:48:03:ff:e8:b0:f7:
d6:fc:8d:51:bd:d9:1d:61:b6:59:5d:bf:56:06:cc:c8:b4:cd:
ee:ff:55:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa4/v/9RieLQKqE55m10YTfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNjVhZjY5N2RmMWY2Y2RhZjRjYmJkNjZkZTNkNDNiZWQ4
NjllOTAwHhcNMjUwNTEwMDcwMDQxWhcNMjUwNTExMDcwMDQxWjAzMTEwLwYDVQQD
Eyg1NDNkMGFlYjdhY2ZmN2IyZjllMTE1YWUxMGY4YTRhZWJmNGE3NmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqyHNIFT3wilTgL82+zf3rGwtNJuu
IEfmegnFPY+3hNJrzwSErXo1CGfchZf9+ZVqi4H8DkUYIXMRa38DIW2FaDVf8wah
5zXUzx0H9Ys5YDJH4KqO7iW8eTbcq4siJdCvqmekgh+vC5Sv7uISOOaV3O2WNn6k
MfoApoVY95gzI98v8vLHkAvEhXPOCeyclwQnMw4pQ7KWwr9C6v/y8Uz6g+7vEUn2
wKWIIxx/Ggk8HqFTJS8+URo9IbTTuR5Pbmm6UY8Hd0rXmFiwqor0YVGJHH3oBIS3
Cw9Z/jNWCobVPTLpouoXHYIuV1ZPs8fBi1W0Fd2z6efZR2XmKzWSfkMbiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFQ9Cut6z/ey+eEVrhD4pK6/SnbUMB8GA1UdIwQY
MBaAFKplr2l98fbNr0y71m3j1Dvthp6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8wNDAxOWMtYWQxNy00MjhkLWIzYTIt
MWJlMTNiYThkNDU2LzEvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8wNDAxOWMtYWQxNy00MjhkLWIzYTItMWJlMTNiYThkNDU2
LzEvcW1XdmFYM3g5czJ2VEx2V2JlUFVPLTJHbnBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACCvVbzxq
6Wk18bjtPu/OU596HMem51aORH1mzt2VWwn0aKBSUqWMMGw4ai0UOc7XEHMzP5D8
DDBUjEfhXADNrnThsp0XJ90ooSNCLlLwh0NtIGNt80lmiAXsUaIzQmn2EQY2d4Rx
gBZ37gadxMJeGntbcJMTSmJoJQjLrw+GZudlSOAP4HP2JZEUBIF/m3vGwGFIEjCn
bwgCjIQii5zGHMRIoThUagnz9Z9konaNEKP5BQQ3NMo1o+xCjC8uQuIxNQdqyDnb
W7Xj4Hn2+wCXs1EDQLnbaMlSzRK1dZHFfKv2drQ/SAP/6LD31vyNUb3ZHWG2WV2/
VgbMyLTN7v9VWw==
-----END CERTIFICATE-----
Generated at Sat May 10 14:36:15 2025 by rpki-client