Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: 07HG430/wwulkZj0fMTmrpMt5KZTrL2JgDWIGS1oOW0=
Subject key identifier: 4D:B4:FF:1B:8D:63:C2:BD:1C:26:8C:9D:4B:36:EB:29:AE:6E:F4:D1
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 01974BC49FD87C2FF33EEB2F4C7DF25F215B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 14AC
Signing time: Sat 07 Jun 2025 19:01:06 +0000
Manifest this update: Sat 07 Jun 2025 19:01:06 +0000
Manifest next update: Sun 08 Jun 2025 19:01:06 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: /Hr93A355X069m3jI6/jNdwu7Re7O2SQhMVee42HcP8=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 19:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:9f:d8:7c:2f:f3:3e:eb:2f:4c:7d:f2:5f:21:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Jun 7 19:01:06 2025 GMT
Not After : Jun 8 19:01:06 2025 GMT
Subject: CN=4db4ff1b8d63c2bd1c268c9d4b36eb29ae6ef4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b6:ae:18:30:70:82:36:09:b4:f9:fd:e4:50:
78:d3:94:62:fc:5c:37:3d:27:21:7c:d2:fd:06:48:
71:d1:b1:28:5b:92:6c:03:16:68:b5:cc:08:cf:61:
0c:95:f5:f3:f2:36:5e:ca:cf:8f:3d:56:9e:32:1e:
9b:4b:b7:f8:ca:8e:d9:c2:0c:2a:d5:bb:60:8d:b5:
22:09:0d:d6:c5:ee:3a:eb:98:48:71:af:0a:d1:43:
a1:bc:c5:86:9b:f3:b8:1c:70:6d:73:46:64:61:3e:
31:a2:16:40:c2:9e:c6:b9:4d:d6:90:8b:34:41:e7:
1c:0a:16:5a:8f:51:4a:a0:97:a8:26:76:a5:70:70:
27:4a:7c:31:ad:57:65:ce:89:f2:77:5c:47:fc:4f:
cc:a5:5a:40:f5:9c:95:dc:78:91:52:dd:55:36:29:
a2:a4:7e:29:15:80:ca:11:00:00:21:34:6c:78:d1:
6a:b1:d9:e9:8f:04:d3:76:95:bf:7c:59:f0:c0:b8:
71:96:f8:6d:ba:39:9f:b0:66:c9:3a:60:39:77:b8:
53:94:7e:13:62:5b:d0:82:70:b9:cd:b9:50:8b:9c:
ab:86:8b:86:43:6e:5d:83:64:6b:c8:0f:63:78:7f:
72:89:6a:c9:3a:5b:1e:90:09:75:42:c5:ec:dd:ad:
c7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B4:FF:1B:8D:63:C2:BD:1C:26:8C:9D:4B:36:EB:29:AE:6E:F4:D1
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:40:dc:9f:d4:25:f4:13:e8:09:1f:b5:6c:72:12:d8:63:bd:
f4:fb:ee:6c:f1:5f:6a:06:8b:c6:43:f8:f0:7d:ae:ae:32:75:
f0:ed:a0:5c:42:96:89:56:6d:c5:d6:e2:43:5b:74:6e:6d:b3:
7d:02:3f:ef:03:d4:c9:5a:b0:f2:78:4d:16:a6:de:6e:be:be:
c6:f2:33:df:cc:8c:c1:cd:13:1e:fe:4f:d2:7c:eb:d0:2d:3e:
80:d9:c5:d0:eb:dc:4d:84:6e:b6:e6:29:89:33:8e:d8:55:c0:
97:8e:13:a1:df:f5:92:34:dd:ea:2f:97:24:4f:d1:71:37:eb:
5c:43:53:7e:fa:d6:40:4f:f9:6c:a2:f7:8e:26:ba:3b:78:dc:
d2:45:3e:d8:b2:a8:c2:fa:8f:2d:38:f2:3f:c2:1d:cc:bd:de:
d1:0c:a4:d5:8d:19:cd:d6:2f:5a:c9:9a:9d:26:a1:52:50:0e:
69:2e:39:ba:1e:d9:78:8b:df:08:a5:f1:27:e6:31:fc:1c:96:
3d:0e:18:6c:42:f0:f0:77:83:1d:1e:7f:ac:9b:cb:4f:74:7e:
87:9f:2d:e4:0e:54:c8:ae:e0:a2:eb:21:59:00:6a:47:0d:86:
55:16:89:8e:68:1a:1f:69:d0:35:c7:9a:98:52:1e:39:1a:70:
ff:ff:95:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLxJ/YfC/zPusvTH3yXyFbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NTAyMjI4MmUzNDY5OWZlNTQ4Yjc1Mjg1MTlhMjVhNTBk
OTEzM2EwHhcNMjUwNjA3MTkwMTA2WhcNMjUwNjA4MTkwMTA2WjAzMTEwLwYDVQQD
Eyg0ZGI0ZmYxYjhkNjNjMmJkMWMyNjhjOWQ0YjM2ZWIyOWFlNmVmNGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7auGDBwgjYJtPn95FB405Ri/Fw3
PSchfNL9Bkhx0bEoW5JsAxZotcwIz2EMlfXz8jZeys+PPVaeMh6bS7f4yo7Zwgwq
1btgjbUiCQ3Wxe4665hIca8K0UOhvMWGm/O4HHBtc0ZkYT4xohZAwp7GuU3WkIs0
QeccChZaj1FKoJeoJnalcHAnSnwxrVdlzonyd1xH/E/MpVpA9ZyV3HiRUt1VNimi
pH4pFYDKEQAAITRseNFqsdnpjwTTdpW/fFnwwLhxlvhtujmfsGbJOmA5d7hTlH4T
YlvQgnC5zblQi5yrhouGQ25dg2RryA9jeH9yiWrJOlsekAl1QsXs3a3HGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE20/xuNY8K9HCaMnUs26ymubvTRMB8GA1UdIwQY
MBaAFNhQIiguNGmf5Ui3UoUZolpQ2RM6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy85NzU4ZWItNDEwOC00MDg3LWE4MTgt
NTBlYTY3MzI3Y2QxLzEvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy85NzU4ZWItNDEwOC00MDg3LWE4MTgtNTBlYTY3MzI3Y2Qx
LzEvMkZBaUtDNDBhWl9sU0xkU2hSbWlXbERaRXpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOkDcn9Ql
9BPoCR+1bHIS2GO99PvubPFfagaLxkP48H2urjJ18O2gXEKWiVZtxdbiQ1t0bm2z
fQI/7wPUyVqw8nhNFqbebr6+xvIz38yMwc0THv5P0nzr0C0+gNnF0OvcTYRutuYp
iTOO2FXAl44Tod/1kjTd6i+XJE/RcTfrXENTfvrWQE/5bKL3jia6O3jc0kU+2LKo
wvqPLTjyP8IdzL3e0Qyk1Y0ZzdYvWsmanSahUlAOaS45uh7ZeIvfCKXxJ+Yx/ByW
PQ4YbELw8HeDHR5/rJvLT3R+h58t5A5UyK7goushWQBqRw2GVRaJjmgaH2nQNcea
mFIeORpw//+VEw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:12:28 2025 by rpki-client