Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
File: 2sedKFW4l0GCCNR7puUUYAFbXXs.mft (raw, json)
Hash identifier: bSeQaywnetoub+MmIHdE1M4QdKDfvdGdL0eJb1UohNo=
Subject key identifier: CF:6E:47:38:52:25:B0:54:95:F4:5F:96:44:0D:C7:6E:04:E6:EF:AE
Authority key identifier: DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
Certificate issuer: /CN=dac79d2855b897418208d47ba6e51460015b5d7b
Certificate serial: 01973D2CDAEFFD0031DF96D18EEDAF214BD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
Manifest number: 1577
Signing time: Wed 04 Jun 2025 23:00:39 +0000
Manifest this update: Wed 04 Jun 2025 23:00:39 +0000
Manifest next update: Thu 05 Jun 2025 23:00:39 +0000
Files and hashes: 1: 2sedKFW4l0GCCNR7puUUYAFbXXs.crl (hash: /sE+2zxO3TjAxgvG/GagknHes9eWpri9uvUaA0oBNcc=)
2: tC1yV2tBIFtyur1CynjIgKWGcBM.roa (hash: 1+DYEAvIp/jbF3nPZX2n/Pi9ZPPyvPQVRKTGpXSrouQ=)
3: yHaEkoOTCPurcY3b0F-9VL88Kwc.roa (hash: Y+GSgGL/KpLcJxeK38gow6fyI44wgNDdjmQduqWLn3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 23:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:3d:2c:da:ef:fd:00:31:df:96:d1:8e:ed:af:21:4b:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac79d2855b897418208d47ba6e51460015b5d7b
Validity
Not Before: Jun 4 23:00:39 2025 GMT
Not After : Jun 5 23:00:39 2025 GMT
Subject: CN=cf6e47385225b05495f45f96440dc76e04e6efae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:22:af:c8:94:34:45:01:82:2f:55:f1:0e:90:
59:d0:67:4e:11:53:14:26:e7:7a:36:1e:0d:cd:e6:
76:b4:47:50:54:b1:20:34:ea:db:69:89:75:3f:77:
8d:d6:37:97:e0:cc:d2:e9:b3:c8:b1:d7:28:a9:53:
42:be:a3:0c:4d:07:2f:d9:c0:00:16:53:0d:f9:c7:
97:3a:49:74:cb:18:91:b6:02:fb:6e:3a:27:b1:c5:
39:0a:1b:ff:ae:be:10:07:3b:b8:c8:44:2e:8f:d5:
05:58:79:70:14:86:12:9c:92:8a:17:59:ef:35:1a:
15:c3:bb:15:53:62:76:b2:5f:9e:3c:8b:9a:62:fa:
01:2b:db:05:3e:af:17:ae:59:aa:e4:85:ca:a2:80:
e5:1b:e2:bc:4e:ba:db:ab:00:48:72:ba:de:57:a4:
59:c0:a6:1e:3c:e8:9f:fe:5b:5f:29:68:df:4a:9f:
29:6c:77:2d:f1:26:bf:2d:0d:5a:ab:54:c3:7e:9a:
9c:6b:8b:d7:d3:f3:81:f5:43:f1:35:7b:c6:bb:6a:
9f:1a:c4:53:3c:4f:15:b7:8e:a8:60:1f:93:0f:c8:
cc:e4:06:b8:71:2c:81:90:06:cf:36:96:c0:7e:0c:
66:65:57:f0:19:a5:a1:97:b5:9a:ba:43:c7:b1:7d:
0c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6E:47:38:52:25:B0:54:95:F4:5F:96:44:0D:C7:6E:04:E6:EF:AE
X509v3 Authority Key Identifier:
keyid:DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:b8:c2:4d:09:45:fb:a2:b6:aa:0e:a6:ea:85:6b:df:36:3c:
83:e2:18:c3:fe:5e:b3:95:ad:d3:19:70:23:0a:b4:ed:2f:78:
7c:44:00:99:1f:37:0d:91:b0:2e:c4:48:2b:4a:2a:fb:46:2f:
ea:45:1e:ea:ce:a0:77:4e:47:90:6d:5b:84:70:a7:d1:68:80:
7f:15:87:39:e7:28:51:44:f7:d8:31:f6:bf:b2:9e:4e:67:4b:
f3:71:30:c4:42:0d:92:c8:76:89:b3:95:eb:2a:09:cd:29:ce:
95:d6:7b:a8:e0:26:56:43:9c:77:7d:62:8c:a4:ee:b4:b6:2a:
6b:e7:ee:b5:5f:00:3b:cf:cc:39:8f:1a:1b:07:34:04:4a:88:
90:7e:b0:6e:d2:11:e5:df:c2:d7:a4:1e:78:79:de:98:63:29:
b3:f4:4d:6b:d4:fc:bc:f3:5c:f8:06:74:16:0b:88:15:a6:48:
35:62:f4:92:1b:f7:26:39:0e:71:75:26:7c:ad:39:6b:ca:b8:
cb:11:fa:b5:24:4a:bd:43:11:93:4d:15:e8:84:2a:88:1e:74:
b1:89:1f:ea:3f:23:ed:ff:54:62:33:99:c0:72:2d:a3:a2:0b:
28:34:93:c5:00:3a:59:8c:01:1c:4f:1f:ea:6b:c6:56:61:84:
52:d3:e8:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZc9LNrv/QAx35bRju2vIUvVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYzc5ZDI4NTViODk3NDE4MjA4ZDQ3YmE2ZTUxNDYwMDE1
YjVkN2IwHhcNMjUwNjA0MjMwMDM5WhcNMjUwNjA1MjMwMDM5WjAzMTEwLwYDVQQD
EyhjZjZlNDczODUyMjViMDU0OTVmNDVmOTY0NDBkYzc2ZTA0ZTZlZmFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9CKvyJQ0RQGCL1XxDpBZ0GdOEVMU
Jud6Nh4NzeZ2tEdQVLEgNOrbaYl1P3eN1jeX4MzS6bPIsdcoqVNCvqMMTQcv2cAA
FlMN+ceXOkl0yxiRtgL7bjonscU5Chv/rr4QBzu4yEQuj9UFWHlwFIYSnJKKF1nv
NRoVw7sVU2J2sl+ePIuaYvoBK9sFPq8Xrlmq5IXKooDlG+K8TrrbqwBIcrreV6RZ
wKYePOif/ltfKWjfSp8pbHct8Sa/LQ1aq1TDfpqca4vX0/OB9UPxNXvGu2qfGsRT
PE8Vt46oYB+TD8jM5Aa4cSyBkAbPNpbAfgxmZVfwGaWhl7WaukPHsX0MUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM9uRzhSJbBUlfRflkQNx24E5u+uMB8GA1UdIwQY
MBaAFNrHnShVuJdBggjUe6blFGABW117MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81YjExNDktNjQ3ZC00MDY3LTk4MDct
NDQ1ZDQ1ODhjMzEyLzEvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny81YjExNDktNjQ3ZC00MDY3LTk4MDctNDQ1ZDQ1ODhjMzEy
LzEvMnNlZEtGVzRsMEdDQ05SN3B1VVVZQUZiWFhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABrjCTQlF
+6K2qg6m6oVr3zY8g+IYw/5es5Wt0xlwIwq07S94fEQAmR83DZGwLsRIK0oq+0Yv
6kUe6s6gd05HkG1bhHCn0WiAfxWHOecoUUT32DH2v7KeTmdL83EwxEINksh2ibOV
6yoJzSnOldZ7qOAmVkOcd31ijKTutLYqa+futV8AO8/MOY8aGwc0BEqIkH6wbtIR
5d/C16QeeHnemGMps/RNa9T8vPNc+AZ0FguIFaZINWL0khv3JjkOcXUmfK05a8q4
yxH6tSRKvUMRk00V6IQqiB50sYkf6j8j7f9UYjOZwHIto6ILKDSTxQA6WYwBHE8f
6mvGVmGEUtPoxQ==
-----END CERTIFICATE-----
Generated at Thu Jun 5 07:16:45 2025 by rpki-client