Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier: Ed3gW887qbDZX0NQC73V/gmQVXsjJXbT8jh+EIxwHzo=
Subject key identifier: 8D:59:9E:D6:B4:A7:FF:61:78:BD:7B:64:EF:40:33:E7:AD:C9:47:93
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial: 0197518FDF398188DAFA251DB5FCA07D9A3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number: 1304
Signing time: Sun 08 Jun 2025 22:01:12 +0000
Manifest this update: Sun 08 Jun 2025 22:01:12 +0000
Manifest next update: Mon 09 Jun 2025 22:01:12 +0000
Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: gd61EiLezh/YzLrXQmrg0p4m+Cj7yNUTlN7fiwhLbu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:8f:df:39:81:88:da:fa:25:1d:b5:fc:a0:7d:9a:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
Validity
Not Before: Jun 8 22:01:12 2025 GMT
Not After : Jun 9 22:01:12 2025 GMT
Subject: CN=8d599ed6b4a7ff6178bd7b64ef4033e7adc94793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ab:29:ac:4d:9e:b4:f2:67:11:a1:54:8a:7d:
06:61:80:2c:03:53:bb:01:f0:69:f7:bb:4b:74:8b:
6c:1c:47:ab:17:be:73:1e:de:28:cb:f5:ea:ee:b3:
2c:85:73:a0:fa:86:fd:3a:5b:96:dd:e7:3f:e0:7a:
a3:6b:70:a6:39:ee:c0:02:5f:93:2b:f1:31:b0:ce:
a8:bd:db:d4:96:47:f9:5f:38:be:a0:8a:f1:0d:5b:
20:07:64:a3:b3:b6:2d:d8:31:64:74:af:5d:fc:6b:
ff:27:14:88:b2:16:51:66:bd:42:e0:f7:c5:f3:c4:
3a:74:92:62:d8:6b:ba:a0:83:f8:d2:31:69:d0:be:
1a:80:0a:0e:44:aa:fc:4a:b3:03:dd:60:0d:b8:5d:
ba:fc:13:61:a6:6c:f8:04:33:d2:08:1c:8b:02:ee:
39:a9:5e:4b:56:49:d4:ff:aa:70:a0:5b:a9:06:65:
1b:fc:0c:9e:3f:c9:37:f7:e1:aa:ae:42:f8:e0:9c:
83:b1:20:fd:f3:29:0a:67:74:58:08:67:f5:30:a9:
2b:07:32:db:e7:a5:e8:15:1e:5e:45:13:79:8e:d8:
35:75:15:a4:10:e9:db:f4:ff:86:1a:8e:b4:79:6e:
44:0e:aa:07:76:37:48:f0:1e:12:23:9b:fe:59:f6:
bf:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:59:9E:D6:B4:A7:FF:61:78:BD:7B:64:EF:40:33:E7:AD:C9:47:93
X509v3 Authority Key Identifier:
keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:d1:05:46:25:30:5f:a1:fd:81:36:fd:7d:39:c3:ba:ea:c7:
2e:ba:30:87:33:16:f6:04:ed:5b:70:e1:ce:33:c2:4f:4f:03:
9e:fb:b2:48:8d:9a:85:e2:a8:fc:0d:a1:d5:41:56:47:b2:5d:
39:6e:2a:6e:79:9e:02:6c:b9:0b:3e:eb:12:2d:2e:f4:92:81:
eb:25:22:18:34:93:ec:96:50:b9:d1:82:0b:d9:4b:3c:d5:b3:
05:ae:98:a6:ef:3c:28:07:9e:b3:66:a7:70:3a:e6:fe:da:8a:
72:47:f8:80:c3:19:06:ec:0e:3c:f6:52:f3:ad:58:7c:4b:72:
00:ea:96:d7:7c:da:c7:0a:4f:e6:91:d8:77:6a:14:3e:84:89:
ca:cf:be:41:59:38:c6:18:cf:70:c9:97:cc:17:ee:34:54:f8:
e5:45:5c:ee:2f:89:e0:05:20:b6:d3:2c:6f:92:da:86:16:58:
13:75:f7:b7:f4:32:35:13:e9:c3:10:8a:94:a7:b9:6b:ba:3c:
e5:73:99:d5:2a:37:01:95:84:67:3a:6e:c4:57:df:85:6c:d5:
1c:79:fe:c5:ac:11:9b:ca:a0:e4:df:a2:30:03:cd:5e:cc:b8:
ca:d4:bb:07:b9:e6:c4:11:52:31:36:d2:15:43:8e:10:bc:05:
34:78:41:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdRj985gYja+iUdtfygfZo8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMWJmMDA4MjRiNjI4YmY2MjYzYmI3NGRlNzc0YWRkZjk5
OTBmYzkwHhcNMjUwNjA4MjIwMTEyWhcNMjUwNjA5MjIwMTEyWjAzMTEwLwYDVQQD
Eyg4ZDU5OWVkNmI0YTdmZjYxNzhiZDdiNjRlZjQwMzNlN2FkYzk0NzkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6sprE2etPJnEaFUin0GYYAsA1O7
AfBp97tLdItsHEerF75zHt4oy/Xq7rMshXOg+ob9OluW3ec/4Hqja3CmOe7AAl+T
K/ExsM6ovdvUlkf5Xzi+oIrxDVsgB2Sjs7Yt2DFkdK9d/Gv/JxSIshZRZr1C4PfF
88Q6dJJi2Gu6oIP40jFp0L4agAoORKr8SrMD3WANuF26/BNhpmz4BDPSCByLAu45
qV5LVknU/6pwoFupBmUb/AyeP8k39+GqrkL44JyDsSD98ykKZ3RYCGf1MKkrBzLb
56XoFR5eRRN5jtg1dRWkEOnb9P+GGo60eW5EDqoHdjdI8B4SI5v+Wfa/7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI1Znta0p/9heL17ZO9AM+etyUeTMB8GA1UdIwQY
MBaAFNob8Agktii/YmO7dN53St35mQ/JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8wMjQ4Y2MtYzc2OC00NmMxLTgyM2Mt
ZDZjNjIxNDJmN2UzLzEvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8wMjQ4Y2MtYzc2OC00NmMxLTgyM2MtZDZjNjIxNDJmN2Uz
LzEvMmh2d0NDUzJLTDlpWTd0MDNuZEszZm1aRDhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE9EFRiUw
X6H9gTb9fTnDuurHLrowhzMW9gTtW3DhzjPCT08DnvuySI2aheKo/A2h1UFWR7Jd
OW4qbnmeAmy5Cz7rEi0u9JKB6yUiGDST7JZQudGCC9lLPNWzBa6Ypu88KAees2an
cDrm/tqKckf4gMMZBuwOPPZS861YfEtyAOqW13zaxwpP5pHYd2oUPoSJys++QVk4
xhjPcMmXzBfuNFT45UVc7i+J4AUgttMsb5LahhZYE3X3t/QyNRPpwxCKlKe5a7o8
5XOZ1So3AZWEZzpuxFffhWzVHHn+xawRm8qg5N+iMAPNXsy4ytS7B7nmxBFSMTbS
FUOOELwFNHhBZQ==
-----END CERTIFICATE-----
Generated at Mon Jun 9 02:10:01 2025 by rpki-client