Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json)
Hash identifier: S6B3q7xWUNhV4KywliDk7xpRr53CI/u5lDgAZn6lxF0=
Subject key identifier: 58:E0:95:E9:F2:56:44:0C:B0:12:A9:BB:FE:53:CA:C7:AA:B2:F4:BD
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial: 01976628ED7BF2D115FC63230AC130F6B282
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
Manifest number: 0A8B
Signing time: Thu 12 Jun 2025 22:00:47 +0000
Manifest this update: Thu 12 Jun 2025 22:00:47 +0000
Manifest next update: Fri 13 Jun 2025 22:00:47 +0000
Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: l4tW2mmrEu6AZuM1TQ7OvASqJpjMK92Xr+QXLzXaDfk=)
2: 73kskguN1VPO4tq3u0I-6VPbcl8.roa (hash: IOUFc++3ERmMqSZYKktHNh8ojKEPsIX8mty7/JMNR8c=)
3: pwFLoSIf9VUbET6QAXvLZY5rPr0.roa (hash: va4qzagh1XVOL80SDuYlOL0AHUwEGtmHAcyNr2+1pWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:28:ed:7b:f2:d1:15:fc:63:23:0a:c1:30:f6:b2:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
Validity
Not Before: Jun 12 22:00:47 2025 GMT
Not After : Jun 13 22:00:47 2025 GMT
Subject: CN=58e095e9f256440cb012a9bbfe53cac7aab2f4bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bb:53:97:73:b3:34:04:ca:7a:aa:4f:97:12:
ab:ac:5e:38:fe:39:af:ff:24:25:e9:cf:d7:f2:66:
f4:9f:cb:ba:1f:b8:11:8a:5f:e7:7d:45:85:86:14:
1a:1b:8d:87:78:54:73:70:9a:c3:f7:c9:e4:30:15:
20:39:51:d7:35:bf:32:6a:31:be:a4:79:16:d0:ba:
5f:fd:95:41:2c:b6:96:84:b2:94:ec:77:31:cd:14:
fe:fb:1c:f6:44:26:e6:9a:44:b8:58:64:f3:cd:9f:
a0:1d:4d:64:9a:e2:68:00:0a:5f:42:eb:3e:aa:18:
88:b9:e9:19:f2:4c:fb:0f:96:7d:4d:24:d5:23:d4:
d5:ea:77:ec:e1:8c:4c:22:0e:9f:65:72:e9:ac:2e:
d0:20:dc:26:d8:38:50:31:9a:2a:e8:91:fb:87:ba:
53:d8:1c:b7:85:a0:d3:79:65:79:be:55:41:5f:ad:
79:22:f4:54:4d:1d:40:59:75:2e:db:67:d7:ff:6e:
54:7c:4f:45:10:86:9e:5b:29:41:e8:1e:5a:14:bc:
51:24:35:1b:c3:17:e3:bb:e3:69:f9:23:a5:f1:0d:
3c:25:fb:b6:61:bc:84:2c:be:92:3c:6d:c7:b4:68:
f2:ed:13:91:c0:fc:96:a0:5e:62:1b:6f:a6:fe:f7:
5b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:E0:95:E9:F2:56:44:0C:B0:12:A9:BB:FE:53:CA:C7:AA:B2:F4:BD
X509v3 Authority Key Identifier:
keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:03:2f:5d:b1:d3:37:bd:d0:b2:53:3a:a5:03:3c:f2:b1:6f:
f8:fe:cf:1c:20:b1:9a:42:d4:0f:13:ac:55:f1:06:cc:4f:ef:
be:8d:fb:44:be:3b:ef:e7:25:ee:4d:7d:58:e6:82:75:0c:73:
f8:04:d8:06:73:f0:c9:1b:c4:b5:11:bd:53:e8:cd:3f:07:59:
ca:26:59:34:ea:98:31:32:00:71:82:f7:cb:3d:c9:0b:06:ea:
d8:52:90:76:19:c5:59:af:b9:b6:04:36:47:76:3a:0e:21:80:
6b:32:ff:d5:f7:34:a8:d0:28:c0:dd:a2:f0:ea:38:02:94:a7:
b3:67:f1:f2:74:59:85:ee:fa:13:36:8b:46:b0:e1:62:64:58:
02:87:17:49:2d:ed:51:a7:01:8e:e6:c0:0c:c1:8a:41:4f:76:
cd:e8:32:1b:70:6e:41:e4:ba:3d:20:43:4b:cb:db:11:90:70:
a3:d2:4c:10:0d:0e:70:f1:bc:21:88:e6:0b:9a:88:4e:7c:2b:
92:48:9b:f5:5f:9b:27:30:be:58:35:5f:4c:fa:a3:21:5e:bd:
13:ef:b9:12:23:0c:6c:32:0d:42:14:83:ad:42:67:a2:ef:61:
50:0d:47:5c:d1:e3:7a:55:c0:e0:aa:e7:3a:56:45:f5:37:31:
10:7a:19:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdmKO178tEV/GMjCsEw9rKCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDU4OWRjZTYzOTgxODcwYTE4NTA5MDZjOGMyZDFkOTY3
NDAwOTYwHhcNMjUwNjEyMjIwMDQ3WhcNMjUwNjEzMjIwMDQ3WjAzMTEwLwYDVQQD
Eyg1OGUwOTVlOWYyNTY0NDBjYjAxMmE5YmJmZTUzY2FjN2FhYjJmNGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7tTl3OzNATKeqpPlxKrrF44/jmv
/yQl6c/X8mb0n8u6H7gRil/nfUWFhhQaG42HeFRzcJrD98nkMBUgOVHXNb8yajG+
pHkW0Lpf/ZVBLLaWhLKU7HcxzRT++xz2RCbmmkS4WGTzzZ+gHU1kmuJoAApfQus+
qhiIuekZ8kz7D5Z9TSTVI9TV6nfs4YxMIg6fZXLprC7QINwm2DhQMZoq6JH7h7pT
2By3haDTeWV5vlVBX615IvRUTR1AWXUu22fX/25UfE9FEIaeWylB6B5aFLxRJDUb
wxfju+Np+SOl8Q08Jfu2YbyELL6SPG3HtGjy7RORwPyWoF5iG2+m/vdb+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFjglenyVkQMsBKpu/5TyseqsvS9MB8GA1UdIwQY
MBaAFNoFidzmOYGHChhQkGyMLR2WdACWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYt
MTRlM2MyMDE3OTY5LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC82MzI2YmItYmEzMy00MzM5LWI4YzYtMTRlM2MyMDE3OTY5
LzEvMmdXSjNPWTVnWWNLR0ZDUWJJd3RIWlowQUpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATgMvXbHT
N73QslM6pQM88rFv+P7PHCCxmkLUDxOsVfEGzE/vvo37RL477+cl7k19WOaCdQxz
+ATYBnPwyRvEtRG9U+jNPwdZyiZZNOqYMTIAcYL3yz3JCwbq2FKQdhnFWa+5tgQ2
R3Y6DiGAazL/1fc0qNAowN2i8Oo4ApSns2fx8nRZhe76EzaLRrDhYmRYAocXSS3t
UacBjubADMGKQU92zegyG3BuQeS6PSBDS8vbEZBwo9JMEA0OcPG8IYjmC5qITnwr
kkib9V+bJzC+WDVfTPqjIV69E++5EiMMbDINQhSDrUJnou9hUA1HXNHjelXA4Krn
OlZF9TcxEHoZjw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 03:56:45 2025 by rpki-client