Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json)
Hash identifier: y+VJxkDQs2ZQuUKlWjTPW7xmqLosaC8bW4ZWTl0U/BA=
Subject key identifier: F1:35:79:AE:CC:2C:79:10:E2:93:DA:21:6C:A5:3B:48:F1:24:4C:B9
Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Certificate serial: 0197458B30CE3F5F7181D924E9844271BC82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 14:00:39 +0000
Manifest this update: Fri 06 Jun 2025 14:00:39 +0000
Manifest next update: Sat 07 Jun 2025 14:00:39 +0000
Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: agdWCDTfzWXF3PgmsRShKm6wBhJRMuD67tx0SYvZtew=)
2: 4yhoCs9M-fjQaMlDWlUpC1ERe-g.roa (hash: t+8njXgDpdo9kegDaGKO6tPmuatvzfS0I/p9sqY0v4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:8b:30:ce:3f:5f:71:81:d9:24:e9:84:42:71:bc:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Validity
Not Before: Jun 6 14:00:39 2025 GMT
Not After : Jun 7 14:00:39 2025 GMT
Subject: CN=f13579aecc2c7910e293da216ca53b48f1244cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:95:b4:fa:fc:54:d8:a8:38:04:72:69:67:3d:
9c:7a:3d:ac:0b:38:e8:0a:51:f7:e6:4e:ff:6c:21:
49:a9:f6:85:0f:78:68:7c:d4:58:7b:6f:8b:0f:5e:
c1:0b:f0:06:5b:29:08:48:47:8d:4a:a0:bc:71:64:
03:f5:d1:0b:e2:0d:e1:50:09:0c:e0:39:57:b3:32:
80:c6:df:73:00:0c:c8:53:c1:0a:06:8b:49:26:c6:
b4:ae:f4:f8:23:72:de:64:66:b3:38:19:ac:76:68:
b9:b1:03:a0:bc:05:d6:67:1d:fe:8c:68:7c:7b:18:
ba:4a:aa:4a:d9:d7:f7:20:fa:21:f4:f9:e8:48:d9:
33:51:8d:8a:e5:ea:23:41:31:c4:78:f4:5f:bb:50:
0e:ca:e0:e1:f1:22:54:fb:3c:16:8f:df:5d:77:bb:
06:30:78:3d:26:05:ab:2e:12:86:5a:f2:75:58:42:
ec:fd:af:50:a3:8e:00:d6:d8:16:d1:33:1a:bf:e8:
84:1d:01:d9:fd:b8:86:04:cc:9c:9a:f4:4f:37:73:
8b:4b:d8:a2:52:1a:35:14:25:f0:e9:ae:f3:d1:90:
69:3e:71:72:f1:aa:9d:6d:3e:2f:8c:36:b8:2f:e7:
fb:b1:e7:78:e3:df:cd:ce:a2:e3:ac:59:7f:8b:f0:
31:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:35:79:AE:CC:2C:79:10:E2:93:DA:21:6C:A5:3B:48:F1:24:4C:B9
X509v3 Authority Key Identifier:
keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:a1:96:33:6e:29:63:44:c3:07:f4:82:d1:da:82:10:9a:ca:
16:63:c7:0e:7c:ed:c2:1f:7e:e0:d3:68:69:2d:3c:41:e3:d5:
98:3f:f1:24:d4:c4:b7:3c:70:8e:70:17:8b:b9:30:dc:c3:41:
82:ab:cd:b1:19:ad:41:dd:bf:b2:a6:5a:37:77:fd:c7:07:46:
f5:71:b7:fc:18:f3:3e:3b:c6:e2:5e:6a:82:9c:eb:e6:f5:3e:
ed:39:04:45:7e:59:86:b0:15:a1:06:b4:a2:0b:c1:76:22:4a:
c7:4d:49:e0:d4:46:2c:65:bc:0e:b1:a0:b5:ce:d9:df:54:64:
11:cd:38:55:3e:4e:d2:9f:9a:f0:b4:7b:d7:35:76:26:49:7a:
2a:fa:24:aa:79:f2:59:14:35:5a:4b:0f:bd:ee:85:39:bf:5b:
3c:e4:f1:02:53:14:3c:db:39:7b:70:ad:78:60:39:6c:40:9c:
df:b9:06:21:25:55:8a:3e:c0:29:41:a7:79:fe:e7:ce:0e:43:
c4:4b:f9:d0:e5:9e:0e:6a:73:bc:d4:9a:c5:5a:78:81:84:c2:
bc:62:e0:33:d2:31:61:53:43:d4:2a:a4:fb:6f:58:47:6b:3a:
80:28:ec:d8:d5:b9:df:b4:25:67:cc:4e:4a:01:fe:1d:cc:a3:
be:70:6b:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdFizDOP19xgdkk6YRCcbyCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZjVhNjZjZmQyMWE1Y2FkN2EyOWI4ZWI1Y2Q5MmFhNDYw
MzIwYzMwHhcNMjUwNjA2MTQwMDM5WhcNMjUwNjA3MTQwMDM5WjAzMTEwLwYDVQQD
EyhmMTM1NzlhZWNjMmM3OTEwZTI5M2RhMjE2Y2E1M2I0OGYxMjQ0Y2I5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjJW0+vxU2Kg4BHJpZz2cej2sCzjo
ClH35k7/bCFJqfaFD3hofNRYe2+LD17BC/AGWykISEeNSqC8cWQD9dEL4g3hUAkM
4DlXszKAxt9zAAzIU8EKBotJJsa0rvT4I3LeZGazOBmsdmi5sQOgvAXWZx3+jGh8
exi6SqpK2df3IPoh9PnoSNkzUY2K5eojQTHEePRfu1AOyuDh8SJU+zwWj99dd7sG
MHg9JgWrLhKGWvJ1WELs/a9Qo44A1tgW0TMav+iEHQHZ/biGBMycmvRPN3OLS9ii
Uho1FCXw6a7z0ZBpPnFy8aqdbT4vjDa4L+f7sed449/NzqLjrFl/i/AxgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPE1ea7MLHkQ4pPaIWylO0jxJEy5MB8GA1UdIwQY
MBaAFNj1pmz9IaXK16KbjrXNkqpGAyDDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTct
ODIxMGRiNzA0OWIxLzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTctODIxMGRiNzA0OWIx
LzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm6GWM24p
Y0TDB/SC0dqCEJrKFmPHDnztwh9+4NNoaS08QePVmD/xJNTEtzxwjnAXi7kw3MNB
gqvNsRmtQd2/sqZaN3f9xwdG9XG3/BjzPjvG4l5qgpzr5vU+7TkERX5ZhrAVoQa0
ogvBdiJKx01J4NRGLGW8DrGgtc7Z31RkEc04VT5O0p+a8LR71zV2Jkl6Kvokqnny
WRQ1WksPve6FOb9bPOTxAlMUPNs5e3CteGA5bECc37kGISVVij7AKUGnef7nzg5D
xEv50OWeDmpzvNSaxVp4gYTCvGLgM9IxYVND1Cqk+29YR2s6gCjs2NW537QlZ8xO
SgH+HcyjvnBrqg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:23:46 2025 by rpki-client