Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/1b132e-b79e-4e58-9380-9e5fd43935b7/1/2krNipcsDnNxGs9H4MhFmhz3JgY.mft
File: 2krNipcsDnNxGs9H4MhFmhz3JgY.mft (raw, json)
Hash identifier: H0mueOqZuJOnDjIvY/hxLuMHx86VzN7S0jd88jCZmQ0=
Subject key identifier: 73:F5:20:D6:4A:9F:B5:35:7A:2F:35:C7:38:00:33:55:AF:72:E4:7B
Authority key identifier: DA:4A:CD:8A:97:2C:0E:73:71:1A:CF:47:E0:C8:45:9A:1C:F7:26:06
Certificate issuer: /CN=da4acd8a972c0e73711acf47e0c8459a1cf72606
Certificate serial: 01974D0D970A66D1BA0A7D5ADDCCE662A8FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2krNipcsDnNxGs9H4MhFmhz3JgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/1b132e-b79e-4e58-9380-9e5fd43935b7/1/2krNipcsDnNxGs9H4MhFmhz3JgY.mft
Manifest number: 14DB
Signing time: Sun 08 Jun 2025 01:00:25 +0000
Manifest this update: Sun 08 Jun 2025 01:00:25 +0000
Manifest next update: Mon 09 Jun 2025 01:00:25 +0000
Files and hashes: 1: 2krNipcsDnNxGs9H4MhFmhz3JgY.crl (hash: 0DNTAZgqZTCAhAG4ZzatJicUygL5ID+KDsjIg4rcnr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/1b132e-b79e-4e58-9380-9e5fd43935b7/1/2krNipcsDnNxGs9H4MhFmhz3JgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/1b132e-b79e-4e58-9380-9e5fd43935b7/1/2krNipcsDnNxGs9H4MhFmhz3JgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2krNipcsDnNxGs9H4MhFmhz3JgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 01:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:97:0a:66:d1:ba:0a:7d:5a:dd:cc:e6:62:a8:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da4acd8a972c0e73711acf47e0c8459a1cf72606
Validity
Not Before: Jun 8 01:00:25 2025 GMT
Not After : Jun 9 01:00:25 2025 GMT
Subject: CN=73f520d64a9fb5357a2f35c738003355af72e47b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0e:2f:2a:7e:0b:60:c5:de:62:cb:5d:ad:b0:
ef:3c:13:95:d3:23:e9:cf:2d:91:b1:4c:f2:eb:51:
36:c7:d3:99:d2:bc:da:4e:ca:78:eb:ea:62:6d:14:
1e:04:a7:b4:71:8a:ff:35:c4:36:09:d2:19:64:3d:
a8:9e:bb:e3:f6:99:34:eb:dc:d8:e7:fd:71:d7:01:
17:97:5d:2d:54:ca:c4:2b:a0:ba:6c:1a:8f:c8:23:
0e:2a:e9:2d:29:e0:61:1f:50:8f:8c:cd:d5:96:f7:
cb:ee:22:d0:1c:f2:57:0f:4c:5f:c1:b1:bb:19:22:
d9:83:c0:fd:4d:a9:d7:c5:cf:1e:d5:84:d1:cd:92:
a0:9e:ae:5e:48:1e:17:9c:fc:9e:70:41:62:48:fe:
79:3b:04:1b:06:6a:e5:63:bf:cb:0c:29:8f:e2:39:
32:c2:9b:01:b3:a9:e4:6a:db:9c:2a:e3:4e:84:88:
6c:be:2f:e1:02:4d:1e:be:91:2c:5f:fa:67:ac:16:
42:d8:9c:9d:bc:5f:df:b4:62:9f:e9:44:b7:3e:ac:
da:28:be:2e:7e:6b:05:bc:1c:2a:45:b4:1d:81:cb:
bb:84:1c:94:06:0c:f7:a0:aa:7e:27:30:28:b5:fc:
34:99:3d:62:19:28:5c:04:a9:8b:38:34:21:48:df:
35:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F5:20:D6:4A:9F:B5:35:7A:2F:35:C7:38:00:33:55:AF:72:E4:7B
X509v3 Authority Key Identifier:
keyid:DA:4A:CD:8A:97:2C:0E:73:71:1A:CF:47:E0:C8:45:9A:1C:F7:26:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2krNipcsDnNxGs9H4MhFmhz3JgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1b132e-b79e-4e58-9380-9e5fd43935b7/1/2krNipcsDnNxGs9H4MhFmhz3JgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1b132e-b79e-4e58-9380-9e5fd43935b7/1/2krNipcsDnNxGs9H4MhFmhz3JgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:d9:32:08:3e:6a:ac:ce:43:ed:bf:51:7d:18:86:92:07:5b:
83:bb:21:9b:0e:a4:0a:06:6a:de:13:2c:b6:ad:ae:ca:e9:2d:
cd:37:0e:5e:a7:e6:ad:7c:e0:67:8b:d6:65:c3:46:91:b9:f5:
61:c3:9a:f3:c2:00:82:d7:6d:c0:62:3d:f7:3d:65:19:de:af:
04:ec:68:66:16:11:e5:c2:b2:65:10:41:e8:cf:19:10:dd:68:
ce:9c:35:78:bf:b6:fb:79:7e:7b:63:0c:a4:68:ca:b2:ef:e2:
65:3e:0b:3c:9b:92:49:60:dd:b9:c7:6d:30:ed:b9:fa:f8:72:
5c:e8:72:e1:e7:a1:65:d4:71:0f:de:18:6d:b6:89:8c:67:31:
45:4d:51:fb:33:79:44:a0:68:0b:72:24:16:d6:79:98:8e:09:
d7:3f:7e:89:4a:6b:43:2a:b4:05:89:ef:92:76:f8:4f:11:fd:
35:48:42:20:a9:91:b0:6f:61:72:b5:f0:28:af:07:e1:c1:48:
26:8e:34:c9:c1:a7:83:34:af:36:8b:8e:a8:a5:4c:c0:01:0b:
dc:5b:48:b2:74:91:3f:82:cc:66:01:c4:60:f4:29:84:8c:10:
11:74:25:36:da:2e:39:d4:8f:9b:b3:93:a3:5f:61:75:c8:1b:
9e:23:1a:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNDZcKZtG6Cn1a3czmYqj7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNGFjZDhhOTcyYzBlNzM3MTFhY2Y0N2UwYzg0NTlhMWNm
NzI2MDYwHhcNMjUwNjA4MDEwMDI1WhcNMjUwNjA5MDEwMDI1WjAzMTEwLwYDVQQD
Eyg3M2Y1MjBkNjRhOWZiNTM1N2EyZjM1YzczODAwMzM1NWFmNzJlNDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5A4vKn4LYMXeYstdrbDvPBOV0yPp
zy2RsUzy61E2x9OZ0rzaTsp46+pibRQeBKe0cYr/NcQ2CdIZZD2onrvj9pk069zY
5/1x1wEXl10tVMrEK6C6bBqPyCMOKuktKeBhH1CPjM3VlvfL7iLQHPJXD0xfwbG7
GSLZg8D9TanXxc8e1YTRzZKgnq5eSB4XnPyecEFiSP55OwQbBmrlY7/LDCmP4jky
wpsBs6nkatucKuNOhIhsvi/hAk0evpEsX/pnrBZC2JydvF/ftGKf6US3PqzaKL4u
fmsFvBwqRbQdgcu7hByUBgz3oKp+JzAotfw0mT1iGShcBKmLODQhSN81mwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHP1INZKn7U1ei81xzgAM1WvcuR7MB8GA1UdIwQY
MBaAFNpKzYqXLA5zcRrPR+DIRZoc9yYGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmtyTmlwY3NEbk54R3M5SDRNaEZtaHozSmdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8xYjEzMmUtYjc5ZS00ZTU4LTkzODAt
OWU1ZmQ0MzkzNWI3LzEvMmtyTmlwY3NEbk54R3M5SDRNaEZtaHozSmdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC8xYjEzMmUtYjc5ZS00ZTU4LTkzODAtOWU1ZmQ0MzkzNWI3
LzEvMmtyTmlwY3NEbk54R3M5SDRNaEZtaHozSmdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwdkyCD5q
rM5D7b9RfRiGkgdbg7shmw6kCgZq3hMstq2uyuktzTcOXqfmrXzgZ4vWZcNGkbn1
YcOa88IAgtdtwGI99z1lGd6vBOxoZhYR5cKyZRBB6M8ZEN1ozpw1eL+2+3l+e2MM
pGjKsu/iZT4LPJuSSWDducdtMO25+vhyXOhy4eehZdRxD94YbbaJjGcxRU1R+zN5
RKBoC3IkFtZ5mI4J1z9+iUprQyq0BYnvknb4TxH9NUhCIKmRsG9hcrXwKK8H4cFI
Jo40ycGngzSvNouOqKVMwAEL3FtIsnSRP4LMZgHEYPQphIwQEXQlNtouOdSPm7OT
o19hdcgbniMaJQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 07:36:10 2025 by rpki-client