Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: eFwzHZ6m1Mh6CCnu1YW2kG9CINB5ikIQ/x/SeAHcksU=
Subject key identifier: F1:18:20:14:56:C3:CF:87:38:40:50:ED:B5:D1:3B:49:CA:3B:22:AE
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 01976AE10AE8BC20597C2E532D5E2F167737
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 115B
Signing time: Fri 13 Jun 2025 20:00:22 +0000
Manifest this update: Fri 13 Jun 2025 20:00:22 +0000
Manifest next update: Sat 14 Jun 2025 20:00:22 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: CDkB9WrUiIrMP9XB15IkN9XbHaZQmMEuu3O7PHbNBMs=)
2: B9-JyKOh9vcA8Yt248kp1OHsLjE.roa (hash: IbF0FRhBYEIf5hZ2KcvfEljtf1YgGGazPG/5I71dHJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:e1:0a:e8:bc:20:59:7c:2e:53:2d:5e:2f:16:77:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Jun 13 20:00:22 2025 GMT
Not After : Jun 14 20:00:22 2025 GMT
Subject: CN=f118201456c3cf87384050edb5d13b49ca3b22ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6c:9c:d4:b5:66:c1:95:74:61:9c:95:39:5d:
40:05:59:f2:ad:80:da:38:15:09:90:3a:61:11:f6:
5e:99:98:38:7d:32:de:4f:d2:06:1e:37:72:b6:ce:
d1:50:2e:67:32:cf:66:2d:bc:10:ec:47:8c:4b:41:
d1:88:5b:6a:67:dd:0b:84:d7:c8:b9:52:14:b9:1c:
34:ff:7b:91:8c:c6:c1:8d:0d:f7:aa:4a:da:f5:4e:
ee:a5:62:4a:16:3b:42:d6:be:66:3a:21:6b:b0:14:
e8:84:2a:70:43:47:81:76:e6:e6:d7:26:ce:1e:d1:
66:2e:a4:e6:9b:70:f6:cc:35:7f:f0:9a:e9:c8:52:
3a:52:88:cc:8b:b6:82:3e:a1:d6:41:04:a2:5e:7e:
6c:2c:c2:92:19:f6:95:8a:bb:85:63:12:5c:4b:28:
3a:f2:6d:a3:f4:16:9a:97:8b:01:25:b3:07:52:85:
36:ba:b2:25:dc:44:9f:07:99:e1:fd:49:08:78:09:
7c:f8:a6:60:99:aa:65:33:63:21:76:a0:b2:6d:ca:
47:54:65:78:6b:36:72:95:18:29:ef:83:ac:1c:e0:
00:af:ef:11:4f:b8:c8:84:d4:5f:62:f2:60:39:75:
e7:ad:24:09:0c:cc:0a:d0:fa:fc:a1:ab:19:3b:ab:
00:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:18:20:14:56:C3:CF:87:38:40:50:ED:B5:D1:3B:49:CA:3B:22:AE
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:b4:1b:17:7f:81:24:a9:e4:3c:23:06:47:24:dd:37:13:3d:
c0:71:a6:d8:04:cc:31:f7:51:cb:ea:38:3c:bd:df:0a:4e:d2:
d4:a1:ba:5f:e0:4d:65:c4:1e:88:73:42:55:15:2e:f2:26:2b:
d4:5e:c3:a1:a4:05:65:c2:d0:25:bd:a8:2e:69:53:23:51:f7:
6b:d0:d8:38:44:e7:12:1f:c2:90:2f:36:22:09:6e:00:70:88:
a8:19:e1:77:03:f8:f6:49:d4:d5:fc:54:ab:31:a0:eb:3f:08:
8a:b1:49:ac:e5:1b:b6:a2:51:aa:29:2f:2e:18:eb:c2:3c:be:
df:c0:2a:73:8f:d9:2b:c3:83:62:bc:27:23:73:d6:16:8e:13:
89:ca:88:e2:76:35:b2:4b:41:99:d8:e3:e3:b2:24:45:ef:60:
ec:28:30:7b:c1:63:72:82:ba:ec:d4:59:b6:2b:5b:d9:0f:3c:
e6:dc:18:6c:9d:7b:59:b8:d7:40:4e:3d:ac:ef:f7:28:e4:9a:
5e:06:b9:16:6d:7e:2b:d9:cd:5e:76:98:f0:7d:6c:33:6e:fc:
89:32:a1:05:8f:1e:91:84:e1:81:66:36:42:c1:7d:fb:a6:a8:
04:e9:66:f2:31:56:0c:d8:63:b7:46:a2:27:14:bb:09:41:d1:
b5:76:f8:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdq4QrovCBZfC5TLV4vFnc3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZjE5ZjA1Y2NmMjIyMTM5ODQ2OWMwYmU4ZGRjMDRjZTE0
ZTEzNWEwHhcNMjUwNjEzMjAwMDIyWhcNMjUwNjE0MjAwMDIyWjAzMTEwLwYDVQQD
EyhmMTE4MjAxNDU2YzNjZjg3Mzg0MDUwZWRiNWQxM2I0OWNhM2IyMmFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02yc1LVmwZV0YZyVOV1ABVnyrYDa
OBUJkDphEfZemZg4fTLeT9IGHjdyts7RUC5nMs9mLbwQ7EeMS0HRiFtqZ90LhNfI
uVIUuRw0/3uRjMbBjQ33qkra9U7upWJKFjtC1r5mOiFrsBTohCpwQ0eBdubm1ybO
HtFmLqTmm3D2zDV/8JrpyFI6UojMi7aCPqHWQQSiXn5sLMKSGfaViruFYxJcSyg6
8m2j9Baal4sBJbMHUoU2urIl3ESfB5nh/UkIeAl8+KZgmaplM2MhdqCybcpHVGV4
azZylRgp74OsHOAAr+8RT7jIhNRfYvJgOXXnrSQJDMwK0Pr8oasZO6sAswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPEYIBRWw8+HOEBQ7bXRO0nKOyKuMB8GA1UdIwQY
MBaAFNnxnwXM8iITmEacC+jdwEzhThNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS82ZTMyNDYtZmJhNi00ZTFkLTgwODkt
NGZmMzMzMzgzNjFlLzEvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS82ZTMyNDYtZmJhNi00ZTFkLTgwODktNGZmMzMzMzgzNjFl
LzEvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ7QbF3+B
JKnkPCMGRyTdNxM9wHGm2ATMMfdRy+o4PL3fCk7S1KG6X+BNZcQeiHNCVRUu8iYr
1F7DoaQFZcLQJb2oLmlTI1H3a9DYOETnEh/CkC82IgluAHCIqBnhdwP49knU1fxU
qzGg6z8IirFJrOUbtqJRqikvLhjrwjy+38Aqc4/ZK8ODYrwnI3PWFo4TicqI4nY1
sktBmdjj47IkRe9g7Cgwe8FjcoK67NRZtitb2Q885twYbJ17WbjXQE49rO/3KOSa
Xga5Fm1+K9nNXnaY8H1sM278iTKhBY8ekYThgWY2QsF9+6aoBOlm8jFWDNhjt0ai
JxS7CUHRtXb4Ag==
-----END CERTIFICATE-----
Generated at Fri Jun 13 22:54:04 2025 by rpki-client