Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: ngp7NnkE1iUF+6KQR0z8+xKMEti56VTPIFU/yiyjZbM=
Subject key identifier: 38:59:35:57:90:66:1E:E9:21:3F:D9:78:A3:5D:27:60:98:6F:6C:69
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 019745C24295D8BC3C6706422E52520336BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0B49
Signing time: Fri 06 Jun 2025 15:00:48 +0000
Manifest this update: Fri 06 Jun 2025 15:00:48 +0000
Manifest next update: Sat 07 Jun 2025 15:00:48 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: jcfJWOFi+HzL2Bh5Ho2jWzE3k0OpUt8M8yHbrox0p8s=)
2: nyss7FejNtDGTUXRBz8EpK-bUtQ.roa (hash: 1YbJTbv2jhWedSFo8tfV4w9Efzyk/as9DY0FQwn+kas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:42:95:d8:bc:3c:67:06:42:2e:52:52:03:36:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: Jun 6 15:00:48 2025 GMT
Not After : Jun 7 15:00:48 2025 GMT
Subject: CN=3859355790661ee9213fd978a35d2760986f6c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:01:2b:ea:17:e6:c6:63:39:fc:8c:7c:13:92:
54:d7:ed:1b:b3:57:53:25:fe:30:42:06:ec:04:9d:
10:35:c2:41:58:a4:68:6c:1a:90:55:81:8f:11:ab:
42:ee:fa:48:de:0b:c6:e4:a8:9c:07:7d:6e:82:a8:
5e:51:37:f5:d6:4b:71:fe:4a:d7:75:28:06:75:34:
ff:5c:91:77:2b:23:bb:d8:b0:ff:6c:e2:a5:1e:ba:
4e:d4:ee:50:67:0b:26:84:26:c2:5e:b1:f4:24:70:
2d:74:04:ec:1c:ea:5c:4f:71:6c:37:18:fc:ba:89:
df:21:d6:f7:b8:c3:1a:3b:11:dd:17:a6:9d:5d:d7:
c0:d1:ff:8b:66:da:d4:a4:d8:e5:9f:50:06:34:73:
65:33:a4:34:e4:41:4e:42:c9:01:fd:66:df:ba:0e:
f3:bf:6e:a8:3b:1d:e6:02:e8:03:0d:a3:37:8f:ff:
a8:f4:15:ed:24:8b:02:3e:a6:ec:71:1d:e3:ea:1d:
1f:fe:fc:85:52:7f:ed:88:b9:b5:64:76:a8:fa:9b:
b4:3f:f8:b6:07:a4:a2:17:be:0a:d5:c4:13:c3:48:
72:3b:93:ec:df:e0:85:72:28:b9:26:83:2c:4d:4b:
a8:3c:3a:a4:f1:c4:17:53:5f:57:9b:54:29:69:4a:
7f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:59:35:57:90:66:1E:E9:21:3F:D9:78:A3:5D:27:60:98:6F:6C:69
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:1a:94:8c:35:7c:9a:87:1f:4d:f3:1e:b4:03:65:04:84:3b:
95:91:2f:40:60:76:c8:9d:4e:69:33:c7:d9:39:fa:6e:f3:14:
c2:89:ae:70:fb:b7:5a:26:81:67:2d:3b:66:02:9d:b0:5c:3e:
61:f3:b8:22:28:76:26:c1:03:41:f5:1e:d2:15:0a:33:39:3f:
fa:58:8c:33:f4:f1:3a:df:12:74:0f:a9:62:3f:5c:ac:fe:a2:
13:16:c0:d1:10:67:ac:48:c3:53:89:11:32:24:50:b4:3b:0d:
50:1f:7f:27:6b:9d:db:95:54:9c:0c:9f:a8:20:2f:95:9d:7d:
30:a7:45:53:ee:b7:61:d0:77:ba:5a:f3:05:3a:07:34:3e:73:
d8:fe:d9:21:0b:3a:30:13:50:e4:89:4a:98:d8:86:15:fd:8d:
37:05:02:09:01:12:dd:33:5b:c1:92:af:3d:49:b9:cd:c4:69:
e2:a7:1a:f2:1e:75:3e:4f:21:2b:a1:70:13:f0:79:2c:13:00:
f9:e3:0e:58:00:01:e7:77:e8:df:46:f4:9d:47:8a:de:82:04:
70:b5:ab:21:36:b5:1a:9e:11:a1:54:82:73:cd:ad:2d:43:11:
1f:21:d3:0d:1d:52:1a:72:71:9b:1c:23:b9:45:15:aa:4f:8e:
7c:e1:e5:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdFwkKV2Lw8ZwZCLlJSAza7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZmY4N2Y1MmUzN2I3NjZlY2JmNGIzZjljYjI2NTU4ZGQz
MDg4MjAwHhcNMjUwNjA2MTUwMDQ4WhcNMjUwNjA3MTUwMDQ4WjAzMTEwLwYDVQQD
EygzODU5MzU1NzkwNjYxZWU5MjEzZmQ5NzhhMzVkMjc2MDk4NmY2YzY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAEr6hfmxmM5/Ix8E5JU1+0bs1dT
Jf4wQgbsBJ0QNcJBWKRobBqQVYGPEatC7vpI3gvG5KicB31ugqheUTf11ktx/krX
dSgGdTT/XJF3KyO72LD/bOKlHrpO1O5QZwsmhCbCXrH0JHAtdATsHOpcT3FsNxj8
uonfIdb3uMMaOxHdF6adXdfA0f+LZtrUpNjln1AGNHNlM6Q05EFOQskB/Wbfug7z
v26oOx3mAugDDaM3j/+o9BXtJIsCPqbscR3j6h0f/vyFUn/tiLm1ZHao+pu0P/i2
B6SiF74K1cQTw0hyO5Ps3+CFcii5JoMsTUuoPDqk8cQXU19Xm1QpaUp/+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDhZNVeQZh7pIT/ZeKNdJ2CYb2xpMB8GA1UdIwQY
MBaAFNn/h/UuN7dm7L9LP5yyZVjdMIggMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmYtSDlTNDN0MmJzdjBzX25MSmxXTjB3aUNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9lMmFhZDgtZTIxMi00ODI4LWE1ZmMt
MWU3MzAwY2NkYTM2LzEvMmYtSDlTNDN0MmJzdjBzX25MSmxXTjB3aUNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi9lMmFhZDgtZTIxMi00ODI4LWE1ZmMtMWU3MzAwY2NkYTM2
LzEvMmYtSDlTNDN0MmJzdjBzX25MSmxXTjB3aUNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjxqUjDV8
mocfTfMetANlBIQ7lZEvQGB2yJ1OaTPH2Tn6bvMUwomucPu3WiaBZy07ZgKdsFw+
YfO4Iih2JsEDQfUe0hUKMzk/+liMM/TxOt8SdA+pYj9crP6iExbA0RBnrEjDU4kR
MiRQtDsNUB9/J2ud25VUnAyfqCAvlZ19MKdFU+63YdB3ulrzBToHND5z2P7ZIQs6
MBNQ5IlKmNiGFf2NNwUCCQES3TNbwZKvPUm5zcRp4qca8h51Pk8hK6FwE/B5LBMA
+eMOWAAB53fo30b0nUeK3oIEcLWrITa1Gp4RoVSCc82tLUMRHyHTDR1SGnJxmxwj
uUUVqk+OfOHlAQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 00:55:51 2025 by rpki-client