Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json)
Hash identifier: TlFW0Ev4lqUwrWqBIlOx4qo6cvb1id9N5kkhJYwwrwQ=
Subject key identifier: 2D:B2:C0:22:A0:06:18:EA:06:49:38:98:08:8B:92:80:CB:99:E0:6B
Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Certificate serial: 019654257C33781C798EC242F6CFD8DDE60A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 17:01:04 +0000
Manifest this update: Sun 20 Apr 2025 17:01:04 +0000
Manifest next update: Mon 21 Apr 2025 17:01:04 +0000
Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: zDPMzC5pGNTbt1TIM02sC2lOW4NPCyWTHDP0X/exNHg=)
2: 4yhoCs9M-fjQaMlDWlUpC1ERe-g.roa (hash: t+8njXgDpdo9kegDaGKO6tPmuatvzfS0I/p9sqY0v4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 17:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:7c:33:78:1c:79:8e:c2:42:f6:cf:d8:dd:e6:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Validity
Not Before: Apr 20 17:01:04 2025 GMT
Not After : Apr 21 17:01:04 2025 GMT
Subject: CN=2db2c022a00618ea06493898088b9280cb99e06b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:1b:e0:8b:4a:6e:34:91:82:c2:be:99:14:1b:
a9:e4:82:ab:8b:6d:cb:64:7f:3c:0e:5b:a0:4a:fd:
f6:9e:45:f3:4c:06:31:20:be:31:12:02:7c:9f:37:
67:fe:8f:76:57:ec:60:40:64:9e:ad:d5:2e:c5:9f:
34:61:59:f4:ef:60:5d:4c:ed:b2:84:af:f8:eb:98:
d4:59:1e:8a:c5:d4:a0:33:2f:54:78:a9:d8:47:60:
23:1f:37:80:0c:36:cc:50:0a:70:de:be:c3:1f:40:
3a:16:8b:70:c5:ed:39:bc:33:49:db:75:2f:bb:8d:
fe:19:12:a9:ca:f8:ab:8d:9e:29:db:57:64:00:5f:
40:2d:e4:b8:cc:38:8e:ec:96:ba:c7:35:8b:3c:1e:
a7:66:25:f9:9b:69:c8:1a:f6:a4:94:71:07:e6:0c:
8b:7b:42:46:1f:93:83:65:9d:cb:3e:8c:bc:8d:1d:
c0:20:fd:36:22:d2:c5:45:60:2d:e5:23:8c:52:ca:
f9:40:d9:db:4c:2d:ca:ba:26:cf:2a:89:f6:72:16:
6a:da:e2:a3:8e:46:59:cb:7c:c8:84:c6:55:94:ef:
67:58:89:a0:dc:41:be:c7:48:99:f1:14:b3:e8:93:
aa:a3:02:2c:f6:90:35:37:b6:0e:57:ff:42:e0:3c:
2b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B2:C0:22:A0:06:18:EA:06:49:38:98:08:8B:92:80:CB:99:E0:6B
X509v3 Authority Key Identifier:
keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:9f:9e:3d:e6:50:60:5a:70:e1:5b:cc:55:59:b5:3b:fc:1e:
0c:5f:74:8b:a4:b8:2d:b6:02:da:d6:f3:af:3f:97:10:94:07:
04:95:73:59:52:04:11:85:b8:5e:97:5c:94:8b:8e:54:53:f7:
f7:1b:32:ac:4b:02:72:58:11:ce:31:95:66:4e:6b:c4:66:0f:
b1:9b:63:42:2c:27:a0:c6:5b:22:9f:0b:45:25:29:e2:ff:c8:
e6:59:79:85:95:f3:9e:c5:5f:b8:fc:1e:62:63:23:66:ea:87:
41:87:d1:ef:32:e0:a4:0c:f1:fe:d1:45:d6:34:8a:ed:83:9a:
21:ad:cb:53:40:16:5f:b4:cb:fd:37:eb:66:8d:4c:be:2a:73:
57:ed:07:ef:8a:e2:a2:6e:b0:e5:bc:d4:75:48:21:ee:a7:e2:
89:6d:11:d1:27:5e:6b:9b:95:f3:6c:81:4a:2c:fc:86:ab:15:
28:4e:12:81:d5:fc:aa:3b:12:81:55:08:12:b2:a4:49:57:1d:
20:49:b5:9c:8f:fc:f4:49:d8:86:f3:6c:4d:de:15:fd:5b:f9:
09:07:6f:eb:43:b6:11:b0:b5:39:8d:03:a0:1f:e9:b2:63:f6:
b0:0e:57:52:a6:f7:43:91:c2:27:2c:d3:9e:f3:23:04:b2:63:
c3:05:0b:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUJXwzeBx5jsJC9s/Y3eYKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZjVhNjZjZmQyMWE1Y2FkN2EyOWI4ZWI1Y2Q5MmFhNDYw
MzIwYzMwHhcNMjUwNDIwMTcwMTA0WhcNMjUwNDIxMTcwMTA0WjAzMTEwLwYDVQQD
EygyZGIyYzAyMmEwMDYxOGVhMDY0OTM4OTgwODhiOTI4MGNiOTllMDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8hvgi0puNJGCwr6ZFBup5IKri23L
ZH88DlugSv32nkXzTAYxIL4xEgJ8nzdn/o92V+xgQGSerdUuxZ80YVn072BdTO2y
hK/465jUWR6KxdSgMy9UeKnYR2AjHzeADDbMUApw3r7DH0A6Fotwxe05vDNJ23Uv
u43+GRKpyvirjZ4p21dkAF9ALeS4zDiO7Ja6xzWLPB6nZiX5m2nIGvaklHEH5gyL
e0JGH5ODZZ3LPoy8jR3AIP02ItLFRWAt5SOMUsr5QNnbTC3KuibPKon2chZq2uKj
jkZZy3zIhMZVlO9nWImg3EG+x0iZ8RSz6JOqowIs9pA1N7YOV/9C4DwrywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC2ywCKgBhjqBkk4mAiLkoDLmeBrMB8GA1UdIwQY
MBaAFNj1pmz9IaXK16KbjrXNkqpGAyDDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTct
ODIxMGRiNzA0OWIxLzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTctODIxMGRiNzA0OWIx
LzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHJ+ePeZQ
YFpw4VvMVVm1O/weDF90i6S4LbYC2tbzrz+XEJQHBJVzWVIEEYW4XpdclIuOVFP3
9xsyrEsCclgRzjGVZk5rxGYPsZtjQiwnoMZbIp8LRSUp4v/I5ll5hZXznsVfuPwe
YmMjZuqHQYfR7zLgpAzx/tFF1jSK7YOaIa3LU0AWX7TL/TfrZo1MvipzV+0H74ri
om6w5bzUdUgh7qfiiW0R0Sdea5uV82yBSiz8hqsVKE4SgdX8qjsSgVUIErKkSVcd
IEm1nI/89EnYhvNsTd4V/Vv5CQdv60O2EbC1OY0DoB/psmP2sA5XUqb3Q5HCJyzT
nvMjBLJjwwULvQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:55:51 2025 by rpki-client