Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
File: 2AtWXXc2dT2-f2YkvfHSvBiW98A.mft (raw, json)
Hash identifier: WDfkUfkRtZebLVrmp7XkWXvYEBmLFfsdPp7pZTWZSis=
Subject key identifier: FC:F3:26:CB:03:65:64:DE:48:26:AB:AA:37:9B:48:2F:66:04:09:51
Authority key identifier: D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
Certificate issuer: /CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Certificate serial: 01974A43E665A2E037C1ADCB05F164800CC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
Manifest number: 0ED8
Signing time: Sat 07 Jun 2025 12:00:53 +0000
Manifest this update: Sat 07 Jun 2025 12:00:53 +0000
Manifest next update: Sun 08 Jun 2025 12:00:53 +0000
Files and hashes: 1: 2AtWXXc2dT2-f2YkvfHSvBiW98A.crl (hash: Y/AWDXSyyeuHueXTHLxt70XafjUfS9WWoM0kA/vtjr0=)
2: wpUZVReQHXzsn_DPk2ck08lBo6E.roa (hash: uqt9xMeCs/4H5VzlZsIDbAr0gO/Vsft4k85bkU/+qVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:e6:65:a2:e0:37:c1:ad:cb:05:f1:64:80:0c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Validity
Not Before: Jun 7 12:00:53 2025 GMT
Not After : Jun 8 12:00:53 2025 GMT
Subject: CN=fcf326cb036564de4826abaa379b482f66040951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a1:f9:3a:5b:e6:fa:e4:12:41:67:36:e2:ca:
ee:2d:20:21:d5:8c:85:54:bd:ff:8a:d0:4a:30:71:
c0:dd:6f:51:32:1d:9f:8b:59:f3:68:d8:8f:3d:58:
6b:aa:83:79:a2:c3:d1:08:61:e1:99:76:55:79:1c:
7d:08:7b:eb:74:89:0e:88:41:e9:83:72:30:43:a4:
43:75:3b:37:a6:0e:c2:a7:43:9b:cd:96:bc:81:b8:
24:b8:c8:28:c7:5d:42:00:79:ca:ee:97:b2:ee:45:
b7:06:c0:ca:67:8c:d8:53:29:de:c5:03:e2:73:5b:
83:a9:72:04:f2:2c:90:9b:d0:75:d2:0f:78:a1:2f:
df:f8:4d:af:44:c7:63:9a:45:aa:9c:d8:06:f1:28:
0e:e2:cb:90:2f:b3:c9:e1:1c:bd:58:48:b7:54:ab:
77:d2:f3:1c:b0:d6:29:c1:28:ca:ae:b8:fd:d3:6d:
c1:c4:3a:1a:4e:6c:e6:c1:6a:ca:4e:88:4b:69:fa:
b9:c4:07:88:a2:de:59:1f:fe:0d:71:73:9b:62:62:
44:7a:09:63:68:c5:47:ae:a1:06:f7:6d:7a:4a:90:
96:60:80:43:2f:0e:91:f4:9b:58:08:11:e0:e6:17:
5b:04:e9:64:20:98:6e:85:7e:7c:58:9c:e7:77:cf:
c8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F3:26:CB:03:65:64:DE:48:26:AB:AA:37:9B:48:2F:66:04:09:51
X509v3 Authority Key Identifier:
keyid:D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:55:40:9e:25:42:62:b6:c3:3e:0c:f1:c4:26:f0:d3:a8:48:
ce:75:3f:46:49:5d:73:91:76:c7:75:90:e6:91:eb:d6:4f:cd:
83:95:08:75:a1:8b:f5:b5:10:89:10:11:ba:ce:1c:8c:93:86:
2f:dd:d9:47:67:50:44:f3:e9:b4:72:0b:00:71:01:59:4b:fd:
fa:fc:d7:e0:f2:17:0f:15:8f:f7:c0:5e:6e:57:88:50:a4:ed:
b0:25:bf:df:c0:bd:cd:26:dc:36:a6:3c:ee:61:45:07:ff:72:
5e:f4:ef:04:35:0c:1b:52:21:61:4b:bd:3a:2a:cb:2c:7e:1c:
84:d3:59:10:05:1b:37:0b:ec:12:b6:ca:08:12:bb:80:70:9e:
36:04:43:bc:80:a8:9c:2e:ac:77:f5:65:8f:07:93:9a:ab:f0:
c3:6d:c9:4c:e2:69:90:28:70:f9:c9:97:bb:99:2a:cc:a2:d2:
64:53:08:d7:a1:b6:92:74:6f:94:df:53:f3:04:38:63:67:28:
c0:1e:3b:e2:6c:b0:4c:0c:1e:88:c7:89:5c:3e:c4:01:17:a4:
66:54:1c:81:55:14:bc:8a:03:42:4b:6e:1b:d4:c3:cd:dd:4e:
0c:e4:61:ab:8d:7c:67:dd:78:59:21:96:38:f0:89:1c:02:24:
d6:ee:5e:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKQ+ZlouA3wa3LBfFkgAzAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MGI1NjVkNzczNjc1M2RiZTdmNjYyNGJkZjFkMmJjMTg5
NmY3YzAwHhcNMjUwNjA3MTIwMDUzWhcNMjUwNjA4MTIwMDUzWjAzMTEwLwYDVQQD
EyhmY2YzMjZjYjAzNjU2NGRlNDgyNmFiYWEzNzliNDgyZjY2MDQwOTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKH5Olvm+uQSQWc24sruLSAh1YyF
VL3/itBKMHHA3W9RMh2fi1nzaNiPPVhrqoN5osPRCGHhmXZVeRx9CHvrdIkOiEHp
g3IwQ6RDdTs3pg7Cp0ObzZa8gbgkuMgox11CAHnK7pey7kW3BsDKZ4zYUynexQPi
c1uDqXIE8iyQm9B10g94oS/f+E2vRMdjmkWqnNgG8SgO4suQL7PJ4Ry9WEi3VKt3
0vMcsNYpwSjKrrj9023BxDoaTmzmwWrKTohLafq5xAeIot5ZH/4NcXObYmJEeglj
aMVHrqEG9216SpCWYIBDLw6R9JtYCBHg5hdbBOlkIJhuhX58WJznd8/IswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPzzJssDZWTeSCarqjebSC9mBAlRMB8GA1UdIwQY
MBaAFNgLVl13NnU9vn9mJL3x0rwYlvfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mNzYzMzktMTcxNC00MDNiLTk5Mjct
MjMyNzc4MjJmZWZhLzEvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9mNzYzMzktMTcxNC00MDNiLTk5MjctMjMyNzc4MjJmZWZh
LzEvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFFVAniVC
YrbDPgzxxCbw06hIznU/Rkldc5F2x3WQ5pHr1k/Ng5UIdaGL9bUQiRARus4cjJOG
L93ZR2dQRPPptHILAHEBWUv9+vzX4PIXDxWP98BebleIUKTtsCW/38C9zSbcNqY8
7mFFB/9yXvTvBDUMG1IhYUu9OirLLH4chNNZEAUbNwvsErbKCBK7gHCeNgRDvICo
nC6sd/VljweTmqvww23JTOJpkChw+cmXu5kqzKLSZFMI16G2knRvlN9T8wQ4Y2co
wB474mywTAweiMeJXD7EARekZlQcgVUUvIoDQktuG9TDzd1ODORhq418Z914WSGW
OPCJHAIk1u5ePQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:31:18 2025 by rpki-client