Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
File: qlPNLFhKPcFiCLqTsNt0dzs_I74.mft (raw, json)
Hash identifier: oqiHxNP+2oQkfQ2WnriSAnkn5rtvDFMSwrj4DcRVSjg=
Subject key identifier: 95:D8:0B:AD:FF:AA:94:E8:50:5B:E6:67:D0:6F:2D:9F:F4:35:0C:7B
Authority key identifier: AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
Certificate issuer: /CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Certificate serial: 0196CACE5F20A165F62C4FD6B0942FD7A88F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
Manifest number: 153B
Signing time: Tue 13 May 2025 18:00:44 +0000
Manifest this update: Tue 13 May 2025 18:00:44 +0000
Manifest next update: Wed 14 May 2025 18:00:44 +0000
Files and hashes: 1: eIuvCKiUKqnjxChjtjEAvL7JvnI.roa (hash: wyV3lMaUUP7vVQqM6FlcaWTPKvU8kW+p1xMsgVv6OJA=)
2: qlPNLFhKPcFiCLqTsNt0dzs_I74.crl (hash: M3EglP7lQQ4BxOhg8exf1yixoSEAUSFwYl02KCJmj/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:ce:5f:20:a1:65:f6:2c:4f:d6:b0:94:2f:d7:a8:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Validity
Not Before: May 13 18:00:44 2025 GMT
Not After : May 14 18:00:44 2025 GMT
Subject: CN=95d80badffaa94e8505be667d06f2d9ff4350c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f2:46:cd:e3:0b:47:64:20:20:9f:91:28:1e:
10:2c:a9:1b:6a:8e:b3:16:76:4b:b1:41:f2:3d:08:
32:6e:ce:3d:b2:68:cf:33:b4:3c:87:1b:f2:b2:37:
37:f7:b5:a1:39:11:47:c8:b7:af:dd:47:17:eb:c3:
aa:d4:c9:b0:d5:5f:59:a6:31:17:38:18:01:cf:69:
3a:58:71:fc:21:7a:ef:20:93:ee:7a:ab:6e:7a:11:
5c:7a:c8:0e:57:7f:79:11:7d:44:ee:96:d5:42:a8:
5d:71:69:dd:ce:ac:52:02:ad:17:57:ec:eb:56:d5:
36:66:57:42:0a:3b:39:d2:f6:2a:47:e0:a7:8a:e8:
05:0c:79:06:a2:31:25:6b:c8:84:f5:7f:95:33:8d:
c1:67:df:16:5b:76:85:68:9c:8b:7c:8d:3c:5a:a6:
13:4e:77:ea:a0:e1:09:52:4e:45:ad:7b:e1:d4:87:
b9:5e:d0:db:ab:ab:2c:52:3d:7d:59:da:94:e9:7b:
df:f1:0f:1a:41:4e:08:d8:eb:b5:9e:c5:23:4e:cd:
ca:5c:32:7e:0a:31:42:b3:de:20:20:08:2b:40:58:
b9:d4:bb:03:e7:21:74:82:53:2f:ff:a8:dd:0f:8c:
b1:3c:2e:6d:0b:36:9b:f9:4a:e9:5c:70:dc:ca:29:
5d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D8:0B:AD:FF:AA:94:E8:50:5B:E6:67:D0:6F:2D:9F:F4:35:0C:7B
X509v3 Authority Key Identifier:
keyid:AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f3:0a:6b:b5:9b:50:55:f6:18:40:f3:2f:74:42:1c:fd:65:
dd:4c:c0:a2:e9:ba:f9:12:d0:58:28:5c:9b:e7:6b:0e:c3:a2:
2c:e1:d8:fd:ed:c6:b7:68:f8:36:b6:da:c0:ea:4c:34:c5:e2:
a4:32:cc:0b:3d:75:7d:91:29:68:06:3c:bc:5c:53:b4:2d:81:
8a:c3:01:69:e6:fb:5e:18:60:5c:cb:3d:62:62:ba:68:1f:4c:
63:b9:70:39:b6:77:1d:ef:02:12:f0:f5:85:5d:a2:0f:46:91:
21:d3:10:98:9e:1c:71:59:95:ad:2d:42:38:7c:e5:1a:a6:e8:
4b:0f:3b:84:72:36:54:85:1e:fd:32:0c:d7:02:be:56:49:c8:
19:3f:04:90:81:99:c7:99:16:b0:04:5f:8a:2f:cc:2c:f3:22:
25:e6:f5:7c:05:87:18:7b:ed:a5:b7:32:20:d7:d6:00:db:da:
0b:4b:17:a0:1c:a2:f4:89:60:58:cc:36:15:5f:c4:b7:62:08:
f1:5c:78:cb:3b:c2:07:b3:a1:ac:90:3a:65:6d:da:5e:dc:21:
ab:e0:1c:68:eb:71:c2:7d:b0:33:53:8f:ce:9a:c0:e7:fa:76:
a0:ed:fa:ce:2b:aa:30:54:02:a9:66:ff:01:b5:69:1e:f2:f2:
91:ff:35:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbKzl8goWX2LE/WsJQv16iPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNTNjZDJjNTg0YTNkYzE2MjA4YmE5M2IwZGI3NDc3M2Iz
ZjIzYmUwHhcNMjUwNTEzMTgwMDQ0WhcNMjUwNTE0MTgwMDQ0WjAzMTEwLwYDVQQD
Eyg5NWQ4MGJhZGZmYWE5NGU4NTA1YmU2NjdkMDZmMmQ5ZmY0MzUwYzdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfJGzeMLR2QgIJ+RKB4QLKkbao6z
FnZLsUHyPQgybs49smjPM7Q8hxvysjc397WhORFHyLev3UcX68Oq1Mmw1V9ZpjEX
OBgBz2k6WHH8IXrvIJPueqtuehFcesgOV395EX1E7pbVQqhdcWndzqxSAq0XV+zr
VtU2ZldCCjs50vYqR+CniugFDHkGojEla8iE9X+VM43BZ98WW3aFaJyLfI08WqYT
TnfqoOEJUk5FrXvh1Ie5XtDbq6ssUj19WdqU6Xvf8Q8aQU4I2Ou1nsUjTs3KXDJ+
CjFCs94gIAgrQFi51LsD5yF0glMv/6jdD4yxPC5tCzab+UrpXHDcyildEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJXYC63/qpToUFvmZ9BvLZ/0NQx7MB8GA1UdIwQY
MBaAFKpTzSxYSj3BYgi6k7DbdHc7PyO+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWxQTkxGaEtQY0ZpQ0xxVHNOdDBkenNfSTc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9lNjcwYTctYWQ3OC00NTdlLWFkODAt
MDA3OTc4YmRiMDUyLzEvcWxQTkxGaEtQY0ZpQ0xxVHNOdDBkenNfSTc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9lNjcwYTctYWQ3OC00NTdlLWFkODAtMDA3OTc4YmRiMDUy
LzEvcWxQTkxGaEtQY0ZpQ0xxVHNOdDBkenNfSTc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL/MKa7Wb
UFX2GEDzL3RCHP1l3UzAoum6+RLQWChcm+drDsOiLOHY/e3Gt2j4NrbawOpMNMXi
pDLMCz11fZEpaAY8vFxTtC2BisMBaeb7XhhgXMs9YmK6aB9MY7lwObZ3He8CEvD1
hV2iD0aRIdMQmJ4ccVmVrS1COHzlGqboSw87hHI2VIUe/TIM1wK+VknIGT8EkIGZ
x5kWsARfii/MLPMiJeb1fAWHGHvtpbcyINfWANvaC0sXoByi9IlgWMw2FV/Et2II
8Vx4yzvCB7OhrJA6ZW3aXtwhq+AcaOtxwn2wM1OPzprA5/p2oO36ziuqMFQCqWb/
AbVpHvLykf81JA==
-----END CERTIFICATE-----
Generated at Tue May 13 21:07:05 2025 by rpki-client