Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: IOkYCDhs7gj9sENzXei8jgDjPmvAqT0iWUCg8qxCOGo=
Subject key identifier: EA:3D:60:50:37:33:32:F3:A0:35:BE:EA:69:4C:30:73:43:B3:B1:4D
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019749315EFBBC30405038966599E8930CAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 14DF
Signing time: Sat 07 Jun 2025 07:01:01 +0000
Manifest this update: Sat 07 Jun 2025 07:01:01 +0000
Manifest next update: Sun 08 Jun 2025 07:01:01 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: s+US1VIWapYa+U+SLHV39v42vTlEw30dqDIrJ70t3xU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:5e:fb:bc:30:40:50:38:96:65:99:e8:93:0c:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Jun 7 07:01:01 2025 GMT
Not After : Jun 8 07:01:01 2025 GMT
Subject: CN=ea3d6050373332f3a035beea694c307343b3b14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ba:cc:0f:43:96:19:15:f4:17:88:b7:f2:bf:
f1:20:bd:ad:8a:25:d9:9d:c0:9e:26:93:a7:88:fd:
25:5b:58:5b:d9:4d:05:69:86:7e:7a:54:f9:77:9b:
41:dc:79:4d:1b:eb:b6:a4:12:82:d4:0e:d0:eb:48:
a1:e0:55:b1:b0:d7:cf:32:76:a1:9b:1e:4d:03:ff:
1c:09:1b:32:16:5b:43:2c:21:e9:84:b2:7b:01:e8:
68:a0:03:a8:80:9f:58:9a:f2:f6:e0:c9:e4:91:23:
18:e2:9d:06:3a:13:28:15:da:e5:91:a7:2a:78:e2:
1b:26:f5:60:90:49:02:f3:f8:7d:18:dd:75:e1:92:
36:0a:4a:ff:0e:c9:04:d8:b3:1d:4e:a1:63:e7:16:
49:ac:5f:d4:09:4a:09:5f:d8:70:d9:7e:a5:03:74:
84:de:35:2e:e7:c7:44:77:10:92:85:62:f7:1a:9a:
53:90:2f:14:b8:e5:b5:ea:b8:e4:b9:c5:24:19:6c:
73:b3:39:ec:40:86:cc:2b:2a:2c:4a:58:e5:57:06:
58:be:70:f8:a0:76:90:4f:53:57:78:f2:88:ec:df:
97:fc:d5:c0:ce:22:57:40:0a:41:47:27:45:c8:f9:
ca:4a:95:4b:29:60:c7:a3:3e:c3:88:34:a8:eb:37:
85:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3D:60:50:37:33:32:F3:A0:35:BE:EA:69:4C:30:73:43:B3:B1:4D
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:0d:a3:35:b9:20:5c:22:5d:b5:34:42:18:67:41:fa:34:83:
89:49:b5:38:c4:15:dc:7c:05:35:7a:02:6c:a4:93:41:d0:a9:
93:51:94:8c:45:c6:34:c9:99:7b:f3:5f:59:55:db:6a:5f:ab:
b6:67:02:76:2a:5f:c3:49:0a:a8:62:99:43:00:fa:b4:a4:74:
fd:96:23:f0:aa:0a:e2:ad:19:b2:b7:cb:ea:03:d8:67:0f:ed:
4e:c7:48:35:6b:48:9e:34:a4:67:a2:e7:5f:ee:41:91:e6:a5:
50:3f:f9:95:69:d0:60:6e:d4:00:97:5c:2c:08:31:ce:a2:4f:
c6:4e:33:c8:14:12:10:ff:cc:ad:8e:6a:d2:3a:41:44:8f:64:
0b:17:b1:7e:e8:8e:f5:3e:0c:b6:f8:2c:49:56:d9:f0:95:35:
39:fa:60:0b:29:99:ee:aa:c5:d7:db:70:a7:e1:50:df:bd:4c:
18:6e:85:1d:9b:a6:0b:ea:5d:54:e0:62:f8:ff:86:ad:f9:7a:
70:62:54:43:34:2a:ad:36:8f:c8:bd:ed:eb:25:2a:b7:52:7f:
bf:eb:6a:f5:b3:18:8b:7f:52:bc:08:ea:ca:b6:98:88:6e:78:
fa:85:1b:13:2b:4d:81:9f:4e:ab:db:b2:85:fa:d3:3d:97:be:
a8:20:33:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMV77vDBAUDiWZZnokwyvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmNmIzMzYxYTFhMmEwMGRiY2UzMTkwMTk4MjdmZWJiNzE1
YmQwNDQwHhcNMjUwNjA3MDcwMTAxWhcNMjUwNjA4MDcwMTAxWjAzMTEwLwYDVQQD
EyhlYTNkNjA1MDM3MzMzMmYzYTAzNWJlZWE2OTRjMzA3MzQzYjNiMTRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4rrMD0OWGRX0F4i38r/xIL2tiiXZ
ncCeJpOniP0lW1hb2U0FaYZ+elT5d5tB3HlNG+u2pBKC1A7Q60ih4FWxsNfPMnah
mx5NA/8cCRsyFltDLCHphLJ7AehooAOogJ9YmvL24MnkkSMY4p0GOhMoFdrlkacq
eOIbJvVgkEkC8/h9GN114ZI2Ckr/DskE2LMdTqFj5xZJrF/UCUoJX9hw2X6lA3SE
3jUu58dEdxCShWL3GppTkC8UuOW16rjkucUkGWxzsznsQIbMKyosSljlVwZYvnD4
oHaQT1NXePKI7N+X/NXAziJXQApBRydFyPnKSpVLKWDHoz7DiDSo6zeFSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOo9YFA3MzLzoDW+6mlMMHNDs7FNMB8GA1UdIwQY
MBaAFP9rM2GhoqANvOMZAZgn/rtxW9BEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS85NmY5YTAtODc0Ni00YjMyLTgzZWUt
ZjYyMzIwOTUxYTM2LzEvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS85NmY5YTAtODc0Ni00YjMyLTgzZWUtZjYyMzIwOTUxYTM2
LzEvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWQ2jNbkg
XCJdtTRCGGdB+jSDiUm1OMQV3HwFNXoCbKSTQdCpk1GUjEXGNMmZe/NfWVXbal+r
tmcCdipfw0kKqGKZQwD6tKR0/ZYj8KoK4q0ZsrfL6gPYZw/tTsdINWtInjSkZ6Ln
X+5BkealUD/5lWnQYG7UAJdcLAgxzqJPxk4zyBQSEP/MrY5q0jpBRI9kCxexfuiO
9T4MtvgsSVbZ8JU1OfpgCymZ7qrF19twp+FQ371MGG6FHZumC+pdVOBi+P+Grfl6
cGJUQzQqrTaPyL3t6yUqt1J/v+tq9bMYi39SvAjqyraYiG54+oUbEytNgZ9Oq9uy
hfrTPZe+qCAz7Q==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:16:35 2025 by rpki-client