Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
File: 2sedKFW4l0GCCNR7puUUYAFbXXs.mft (raw, json)
Hash identifier: X0nNzKwSzQnvoHFmSZjWWxjTylgOnns6nexnCcEWAy0=
Subject key identifier: D1:95:61:23:23:4A:E7:81:74:AB:F0:C6:22:26:69:2B:58:B5:AC:E2
Authority key identifier: DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
Certificate issuer: /CN=dac79d2855b897418208d47ba6e51460015b5d7b
Certificate serial: 019646A0BBFE3D5CDE52BB31557A3DF78755
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
Manifest number: 14F7
Signing time: Fri 18 Apr 2025 02:01:01 +0000
Manifest this update: Fri 18 Apr 2025 02:01:01 +0000
Manifest next update: Sat 19 Apr 2025 02:01:01 +0000
Files and hashes: 1: 2sedKFW4l0GCCNR7puUUYAFbXXs.crl (hash: 6rl7shJQeAgG3GmvUxLfUNOV9TOKqewBE9YYYw/f7o8=)
2: tX7pIK0_Y0DkC_cQB792D8KfMpI.roa (hash: 6bt98IzDmAFpK9cQatBo1xPLFut1eb0d15KmkgIc6Y0=)
3: yHaEkoOTCPurcY3b0F-9VL88Kwc.roa (hash: Y+GSgGL/KpLcJxeK38gow6fyI44wgNDdjmQduqWLn3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:a0:bb:fe:3d:5c:de:52:bb:31:55:7a:3d:f7:87:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac79d2855b897418208d47ba6e51460015b5d7b
Validity
Not Before: Apr 18 02:01:01 2025 GMT
Not After : Apr 19 02:01:01 2025 GMT
Subject: CN=d1956123234ae78174abf0c62226692b58b5ace2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:69:d0:d8:ac:9d:09:b0:16:c9:77:ae:3c:14:
10:43:ea:e3:d7:44:1f:db:3f:29:f8:0e:5b:e4:88:
04:a5:e0:b6:8f:57:e0:09:5a:73:fd:82:98:8f:22:
d8:e3:3d:5e:c9:4c:cc:69:4e:dd:9c:ab:b6:b6:3e:
3a:71:68:bf:dd:05:86:d8:07:db:bf:4f:ef:b2:a6:
a0:ee:80:19:a7:be:36:a2:f7:1b:ba:84:ad:99:19:
99:e8:05:ea:27:e5:78:c1:a8:85:25:57:ad:20:34:
d1:57:66:63:05:69:be:dc:9f:c1:99:76:ef:45:b1:
cd:40:e3:48:1f:b7:c2:22:49:bc:ca:5a:b9:a6:63:
34:53:4e:76:f6:15:12:15:62:7d:69:87:f1:80:49:
ea:d2:76:7b:e5:8b:6f:75:6d:c6:87:b2:c7:23:41:
e9:d4:c8:dd:9e:56:27:19:31:0f:e0:8f:ec:52:ef:
d5:bc:3c:e8:31:e1:df:cd:eb:d4:36:6c:bc:79:b7:
fe:85:14:3e:c2:db:a4:fa:e6:47:5c:3e:66:63:84:
60:a1:a1:79:17:25:76:b4:a1:4e:7d:cf:ad:aa:b5:
66:91:46:c3:1b:97:60:71:1e:00:00:b8:5c:b4:29:
9e:cc:02:09:c8:f1:df:58:8c:35:81:8c:20:67:f3:
d4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:95:61:23:23:4A:E7:81:74:AB:F0:C6:22:26:69:2B:58:B5:AC:E2
X509v3 Authority Key Identifier:
keyid:DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:9e:13:93:91:19:bc:1d:9b:2a:99:52:b2:01:e3:ef:5c:6b:
56:e2:e2:9e:42:c8:3a:7f:bc:da:0f:16:92:74:3a:65:85:44:
b0:2a:f1:6c:7d:49:8f:02:0a:75:c7:e4:91:81:2b:38:85:e5:
75:90:72:19:fd:68:ca:b2:7a:0b:a0:8d:84:d0:11:0f:81:e2:
5a:fa:45:9b:9b:5d:c2:91:be:1b:39:89:42:77:8f:15:93:e5:
2a:e5:59:2d:14:59:f3:77:98:c9:b2:1a:d4:ae:86:d8:0c:9b:
6f:99:ce:f2:80:fa:cd:31:fc:56:7e:30:58:6c:b2:30:ec:75:
58:7e:ff:0a:c2:39:35:2d:a8:cc:e8:56:a3:12:61:06:40:88:
53:bd:13:99:76:21:d9:7c:33:a0:a3:70:f1:d2:c5:af:1b:5c:
66:bb:c0:60:bf:f8:83:4f:c4:6d:8f:9e:02:1f:fc:6b:ae:19:
c5:93:ae:6e:73:a5:3d:57:2f:e1:94:54:46:10:0a:80:0d:7b:
5c:f0:93:8d:22:c0:3f:08:05:39:db:9f:0e:4e:45:e1:00:f1:
22:f0:8e:7b:f7:2b:ab:2c:5c:98:b5:26:90:a8:55:21:92:6e:
c0:4a:28:a4:75:4b:7c:75:0e:b8:b1:3c:c0:8b:29:cd:3c:d9:
34:33:06:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZGoLv+PVzeUrsxVXo994dVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYzc5ZDI4NTViODk3NDE4MjA4ZDQ3YmE2ZTUxNDYwMDE1
YjVkN2IwHhcNMjUwNDE4MDIwMTAxWhcNMjUwNDE5MDIwMTAxWjAzMTEwLwYDVQQD
EyhkMTk1NjEyMzIzNGFlNzgxNzRhYmYwYzYyMjI2NjkyYjU4YjVhY2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWnQ2KydCbAWyXeuPBQQQ+rj10Qf
2z8p+A5b5IgEpeC2j1fgCVpz/YKYjyLY4z1eyUzMaU7dnKu2tj46cWi/3QWG2Afb
v0/vsqag7oAZp742ovcbuoStmRmZ6AXqJ+V4waiFJVetIDTRV2ZjBWm+3J/BmXbv
RbHNQONIH7fCIkm8ylq5pmM0U0529hUSFWJ9aYfxgEnq0nZ75YtvdW3Gh7LHI0Hp
1MjdnlYnGTEP4I/sUu/VvDzoMeHfzevUNmy8ebf+hRQ+wtuk+uZHXD5mY4RgoaF5
FyV2tKFOfc+tqrVmkUbDG5dgcR4AALhctCmezAIJyPHfWIw1gYwgZ/PUqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNGVYSMjSueBdKvwxiImaStYtaziMB8GA1UdIwQY
MBaAFNrHnShVuJdBggjUe6blFGABW117MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81YjExNDktNjQ3ZC00MDY3LTk4MDct
NDQ1ZDQ1ODhjMzEyLzEvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny81YjExNDktNjQ3ZC00MDY3LTk4MDctNDQ1ZDQ1ODhjMzEy
LzEvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfp4Tk5EZ
vB2bKplSsgHj71xrVuLinkLIOn+82g8WknQ6ZYVEsCrxbH1JjwIKdcfkkYErOIXl
dZByGf1oyrJ6C6CNhNARD4HiWvpFm5tdwpG+GzmJQnePFZPlKuVZLRRZ83eYybIa
1K6G2Aybb5nO8oD6zTH8Vn4wWGyyMOx1WH7/CsI5NS2ozOhWoxJhBkCIU70TmXYh
2XwzoKNw8dLFrxtcZrvAYL/4g0/EbY+eAh/8a64ZxZOubnOlPVcv4ZRURhAKgA17
XPCTjSLAPwgFOdufDk5F4QDxIvCOe/crqyxcmLUmkKhVIZJuwEoopHVLfHUOuLE8
wIspzTzZNDMGPw==
-----END CERTIFICATE-----
Generated at Fri Apr 18 05:27:39 2025 by rpki-client