Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json)
Hash identifier: ROMOyLDlbON1Cg0RUyjSyiSECLz2DFcJSvTsyGKfnqU=
Subject key identifier: EC:81:89:32:11:28:72:AD:18:78:6F:B5:49:7A:66:A1:6D:8A:4D:15
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial: 019590063B8067E7B11EC94124FFDC96420A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
Manifest number: 0993
Signing time: Thu 13 Mar 2025 15:01:22 +0000
Manifest this update: Thu 13 Mar 2025 15:01:22 +0000
Manifest next update: Fri 14 Mar 2025 15:01:22 +0000
Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: kX4AvT6Tzs3/8HHZgSdr61+CcLHEqnN3cUedp+2yjn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:06:3b:80:67:e7:b1:1e:c9:41:24:ff:dc:96:42:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
Validity
Not Before: Mar 13 15:01:22 2025 GMT
Not After : Mar 14 15:01:22 2025 GMT
Subject: CN=ec818932112872ad18786fb5497a66a16d8a4d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f8:52:39:54:74:32:72:83:c9:c2:4e:00:fd:
62:92:7b:22:7d:a7:0b:0c:0a:71:ec:32:03:b2:6e:
03:ee:1c:32:24:b3:67:ae:e8:ea:91:8f:14:e3:72:
89:c7:20:ac:1e:54:d4:34:0a:27:a3:e0:1d:2e:bc:
de:5c:d9:ce:30:a4:0b:a1:76:a1:99:d7:cf:a7:12:
2c:f4:25:ef:4c:f0:f4:a0:3b:95:79:d3:38:b6:57:
4c:af:31:35:b9:49:45:86:17:9a:fe:fd:2c:2b:d1:
6f:2d:ca:0c:bf:b8:65:ea:84:8c:56:52:6b:1b:35:
31:30:1b:af:10:9b:d4:66:81:77:3f:5c:4d:c5:e5:
84:aa:41:25:67:84:bf:ec:7e:30:4e:3e:18:64:86:
e2:e8:46:bb:6f:61:93:9a:dc:2a:42:8f:b4:0e:95:
5d:3a:af:92:5e:0d:c7:59:48:a2:ec:d8:ae:c5:c9:
1f:be:72:10:8e:08:e7:fa:d7:cf:f6:e7:3f:0a:c2:
14:38:e3:78:8a:28:b6:0c:b9:b6:dd:6c:a2:bb:fc:
df:cd:2a:32:02:6c:79:2c:f6:9c:32:bb:ce:02:3b:
a7:e1:25:11:c9:86:0f:92:5c:7b:66:b3:31:2a:37:
ba:57:01:ba:a6:47:a6:38:cb:b1:95:20:46:be:ba:
c9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:81:89:32:11:28:72:AD:18:78:6F:B5:49:7A:66:A1:6D:8A:4D:15
X509v3 Authority Key Identifier:
keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:9e:6e:88:c4:fc:6a:ce:e2:6c:d6:bb:e7:65:bf:06:82:76:
be:cf:5f:01:61:3c:1c:0f:44:d2:69:69:b3:ee:4a:88:27:07:
aa:99:5d:77:09:85:f7:29:4f:d8:15:09:54:17:e7:14:79:3c:
b8:28:e5:54:6b:2f:34:fb:ee:2a:18:2c:98:10:c5:86:42:df:
29:9c:b2:cd:38:d7:19:d2:14:ff:53:a2:62:75:83:8d:8d:8d:
18:68:86:58:55:bf:4a:d5:c4:fe:4b:82:1f:c4:a3:e3:f5:1c:
82:95:2b:97:d3:01:e0:9c:ea:91:11:27:9e:35:fb:c4:92:09:
f9:bd:d2:ef:8a:4e:7f:ef:b8:4c:0f:a1:f2:ce:40:b2:da:e4:
21:95:92:eb:48:3d:ac:c1:c2:7d:9a:42:ba:d4:ef:67:ed:1f:
49:5e:0e:20:39:94:62:0e:9a:11:a5:fe:85:fa:3e:07:59:f7:
c7:f3:24:02:f5:59:e7:44:99:1a:1e:1c:11:28:59:e4:4f:35:
7e:47:71:67:a2:ea:56:fe:a3:49:d6:66:03:34:b4:f8:8a:fc:
29:ed:05:f3:bf:2a:09:e6:c5:aa:2e:79:b6:8a:14:5f:a4:50:
ea:a0:ab:78:1a:c8:81:85:34:77:b0:f2:10:22:ca:cb:a1:fe:
59:cc:88:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWQBjuAZ+exHslBJP/clkIKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDU4OWRjZTYzOTgxODcwYTE4NTA5MDZjOGMyZDFkOTY3
NDAwOTYwHhcNMjUwMzEzMTUwMTIyWhcNMjUwMzE0MTUwMTIyWjAzMTEwLwYDVQQD
EyhlYzgxODkzMjExMjg3MmFkMTg3ODZmYjU0OTdhNjZhMTZkOGE0ZDE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/hSOVR0MnKDycJOAP1iknsifacL
DApx7DIDsm4D7hwyJLNnrujqkY8U43KJxyCsHlTUNAono+AdLrzeXNnOMKQLoXah
mdfPpxIs9CXvTPD0oDuVedM4tldMrzE1uUlFhhea/v0sK9FvLcoMv7hl6oSMVlJr
GzUxMBuvEJvUZoF3P1xNxeWEqkElZ4S/7H4wTj4YZIbi6Ea7b2GTmtwqQo+0DpVd
Oq+SXg3HWUii7NiuxckfvnIQjgjn+tfP9uc/CsIUOON4iii2DLm23Wyiu/zfzSoy
Amx5LPacMrvOAjun4SURyYYPklx7ZrMxKje6VwG6pkemOMuxlSBGvrrJowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOyBiTIRKHKtGHhvtUl6ZqFtik0VMB8GA1UdIwQY
MBaAFNoFidzmOYGHChhQkGyMLR2WdACWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYt
MTRlM2MyMDE3OTY5LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYtMTRlM2MyMDE3OTY5
LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnZ5uiMT8
as7ibNa752W/BoJ2vs9fAWE8HA9E0mlps+5KiCcHqplddwmF9ylP2BUJVBfnFHk8
uCjlVGsvNPvuKhgsmBDFhkLfKZyyzTjXGdIU/1OiYnWDjY2NGGiGWFW/StXE/kuC
H8Sj4/UcgpUrl9MB4JzqkREnnjX7xJIJ+b3S74pOf++4TA+h8s5AstrkIZWS60g9
rMHCfZpCutTvZ+0fSV4OIDmUYg6aEaX+hfo+B1n3x/MkAvVZ50SZGh4cEShZ5E81
fkdxZ6LqVv6jSdZmAzS0+Ir8Ke0F878qCebFqi55tooUX6RQ6qCreBrIgYU0d7Dy
ECLKy6H+WcyIAQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:49:18 2025 by rpki-client