Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
File: 2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft (raw, json)
Hash identifier: LlF3M3BRCTsL8smOD1a3Tnh+qUDFMKjijspNU5CRoxg=
Subject key identifier: A3:68:8C:A5:CA:4E:2B:9A:E8:37:DD:E8:5D:26:6B:B6:BF:CD:AE:19
Authority key identifier: D9:77:3D:73:3D:18:45:C4:1D:3F:9A:36:2B:55:B7:4E:68:6F:9C:02
Certificate issuer: /CN=d9773d733d1845c41d3f9a362b55b74e686f9c02
Certificate serial: 01958B4DF89407F2C0623C7077A332766212
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
Manifest number: 135E
Signing time: Wed 12 Mar 2025 17:01:37 +0000
Manifest this update: Wed 12 Mar 2025 17:01:37 +0000
Manifest next update: Thu 13 Mar 2025 17:01:37 +0000
Files and hashes: 1: 2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl (hash: I1LXUeH/QLDmuLZunEQRKeY9W4q4bNWxDe6cyDh9Vh0=)
2: jnl0pkc8VZioDFc1rU2LXYR9u10.roa (hash: hBLoItEXtLXi0Hx0eyOzMHvYDZZAUIWBeCW6pZ7dYGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:f8:94:07:f2:c0:62:3c:70:77:a3:32:76:62:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9773d733d1845c41d3f9a362b55b74e686f9c02
Validity
Not Before: Mar 12 17:01:37 2025 GMT
Not After : Mar 13 17:01:37 2025 GMT
Subject: CN=a3688ca5ca4e2b9ae837dde85d266bb6bfcdae19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e0:bb:ba:94:d5:a4:21:2c:bd:a2:6b:f9:40:
87:a5:b0:92:8d:b5:83:2c:f2:eb:d7:05:4f:df:f9:
90:62:42:f2:0e:8a:92:e1:71:82:8d:cf:58:47:99:
b3:b9:89:05:c2:45:3d:45:e9:9b:ac:9a:59:2f:14:
38:91:ff:0a:0d:94:47:da:db:3b:52:bc:5f:2e:40:
78:9b:8c:51:83:58:b1:3e:3c:3a:75:92:ce:89:1e:
47:a2:60:dc:d5:ed:95:da:30:b0:f8:4b:90:4d:a6:
a1:40:eb:c5:7a:96:73:04:07:c7:b2:cc:8d:c5:89:
27:0b:bf:05:84:19:7c:4a:64:c4:8e:68:22:df:32:
6a:38:86:a3:8e:27:10:07:e4:8e:09:c4:8f:2f:2e:
05:88:83:f7:0a:63:09:5a:40:39:53:c8:6c:ea:39:
1d:09:b4:8f:10:08:04:3d:c7:dd:f1:e3:fd:f5:46:
6c:ab:65:95:0f:32:a1:4a:42:73:26:32:3a:7e:f5:
87:23:51:47:71:d3:13:c2:52:d5:96:7c:1f:a4:33:
3a:e9:70:f9:33:6e:cc:c5:35:cb:de:0f:80:8d:e8:
36:38:92:65:a8:21:cf:9a:ed:ce:5d:ce:7b:59:56:
d3:d2:15:19:64:be:48:4d:9c:5b:e2:16:8b:51:18:
0c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:68:8C:A5:CA:4E:2B:9A:E8:37:DD:E8:5D:26:6B:B6:BF:CD:AE:19
X509v3 Authority Key Identifier:
keyid:D9:77:3D:73:3D:18:45:C4:1D:3F:9A:36:2B:55:B7:4E:68:6F:9C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:d1:e6:92:e9:86:58:66:92:62:3b:0b:e3:bc:21:17:7e:35:
b1:4d:48:c3:08:2e:ba:5d:73:99:41:79:d8:0a:60:ef:d8:7b:
fc:4e:b6:84:01:7e:6f:b4:8b:0f:c2:7d:6d:95:56:03:e7:6b:
ec:05:f0:7a:42:2f:e4:26:99:23:0a:db:d6:3b:fb:0b:6a:fe:
24:62:6d:a0:55:4a:49:78:d0:04:a1:dc:2f:4c:4e:9c:91:eb:
be:86:e6:b5:42:7c:01:81:ca:da:2c:91:38:89:e3:b8:2e:72:
bd:bc:dd:b1:3d:88:fb:2f:dd:13:f9:1e:bb:c4:00:72:40:cd:
e6:6c:d1:08:c8:6d:35:ee:06:41:9f:e9:d9:bd:24:a0:07:2a:
74:fe:5c:a0:ee:ca:76:91:59:aa:8b:92:72:f5:cc:2c:f9:f6:
31:2a:6c:bc:8c:d3:88:51:a4:2a:74:24:32:cc:85:62:b1:58:
6d:28:57:b5:e7:c8:ab:3d:eb:af:df:16:fe:17:8b:9e:ef:07:
d1:9d:26:3c:38:dd:a8:f1:9b:31:b1:67:28:8d:96:30:79:4b:
fb:7e:d7:87:37:b3:47:33:5f:1a:e4:ac:38:2b:76:1b:98:65:
74:36:90:16:f1:37:ad:18:14:c4:a0:e1:2d:2d:f3:c2:9e:a0:
4f:ba:96:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWLTfiUB/LAYjxwd6MydmISMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5NzczZDczM2QxODQ1YzQxZDNmOWEzNjJiNTViNzRlNjg2
ZjljMDIwHhcNMjUwMzEyMTcwMTM3WhcNMjUwMzEzMTcwMTM3WjAzMTEwLwYDVQQD
EyhhMzY4OGNhNWNhNGUyYjlhZTgzN2RkZTg1ZDI2NmJiNmJmY2RhZTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9OC7upTVpCEsvaJr+UCHpbCSjbWD
LPLr1wVP3/mQYkLyDoqS4XGCjc9YR5mzuYkFwkU9RembrJpZLxQ4kf8KDZRH2ts7
UrxfLkB4m4xRg1ixPjw6dZLOiR5HomDc1e2V2jCw+EuQTaahQOvFepZzBAfHssyN
xYknC78FhBl8SmTEjmgi3zJqOIajjicQB+SOCcSPLy4FiIP3CmMJWkA5U8hs6jkd
CbSPEAgEPcfd8eP99UZsq2WVDzKhSkJzJjI6fvWHI1FHcdMTwlLVlnwfpDM66XD5
M27MxTXL3g+Ajeg2OJJlqCHPmu3OXc57WVbT0hUZZL5ITZxb4haLURgMXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKNojKXKTiua6Dfd6F0ma7a/za4ZMB8GA1UdIwQY
MBaAFNl3PXM9GEXEHT+aNitVt05ob5wCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlhjOWN6MFlSY1FkUDVvMksxVzNUbWh2bkFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8zNzQxMWUtMmI4OS00MDc5LThjZmMt
MDFhMjlmNWY2ZGRlLzEvMlhjOWN6MFlSY1FkUDVvMksxVzNUbWh2bkFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8zNzQxMWUtMmI4OS00MDc5LThjZmMtMDFhMjlmNWY2ZGRl
LzEvMlhjOWN6MFlSY1FkUDVvMksxVzNUbWh2bkFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk9HmkumG
WGaSYjsL47whF341sU1Iwwguul1zmUF52Apg79h7/E62hAF+b7SLD8J9bZVWA+dr
7AXwekIv5CaZIwrb1jv7C2r+JGJtoFVKSXjQBKHcL0xOnJHrvobmtUJ8AYHK2iyR
OInjuC5yvbzdsT2I+y/dE/keu8QAckDN5mzRCMhtNe4GQZ/p2b0koAcqdP5coO7K
dpFZqouScvXMLPn2MSpsvIzTiFGkKnQkMsyFYrFYbShXtefIqz3rr98W/heLnu8H
0Z0mPDjdqPGbMbFnKI2WMHlL+37XhzezRzNfGuSsOCt2G5hldDaQFvE3rRgUxKDh
LS3zwp6gT7qWCg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:44 2025 by rpki-client