Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: Y6JoxYPJWrfThk30Q5K+Ae3tj52U5W5AaLGmBkAWJGM=
Subject key identifier: EC:90:67:63:4B:5D:04:42:76:8B:EC:1F:1F:F2:FD:D7:D2:EA:05:F9
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 0197488D82860703D182BE9DB7E6B87B400B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 1289
Signing time: Sat 07 Jun 2025 04:02:02 +0000
Manifest this update: Sat 07 Jun 2025 04:02:02 +0000
Manifest next update: Sun 08 Jun 2025 04:02:02 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: /4ADS5Gm+zCYk1HJL+FZYV6gv9meKHOZw7gRSS6iSV0=)
2: ogQz1j5jLQsKEpzhS2JSyEZnZ6I.roa (hash: B7xqxcI+bkCsaT71C5rhEWIjLfcjAKzC1lxv7kehuvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:82:86:07:03:d1:82:be:9d:b7:e6:b8:7b:40:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Jun 7 04:02:02 2025 GMT
Not After : Jun 8 04:02:02 2025 GMT
Subject: CN=ec9067634b5d0442768bec1f1ff2fdd7d2ea05f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9c:9d:1b:ae:71:0f:20:11:22:f5:b3:2c:35:
95:79:ed:58:ce:bb:b4:1f:62:38:bd:93:c0:53:21:
87:e5:db:4f:f8:0f:6a:89:ee:1c:9a:15:9b:d7:8e:
47:e4:5c:44:71:9e:a0:66:4a:3d:c7:48:cf:5e:13:
7b:25:4d:84:28:3c:db:a7:e0:67:29:e7:79:85:39:
71:ec:bd:fc:e1:b1:81:fb:71:c7:49:e5:47:4b:89:
ce:ad:3f:65:17:ce:b3:6d:d7:ec:ea:d0:7a:ef:1a:
7a:b4:8e:9e:f2:86:f8:9d:97:81:96:79:bf:10:7f:
77:2e:75:c2:50:f1:d0:cd:60:8e:e2:17:b1:2b:0d:
14:5b:42:c1:5f:06:81:c8:ff:63:a5:02:fd:a1:bd:
ba:dc:63:73:c6:7a:5d:08:5c:a5:19:10:75:a2:7c:
42:3e:99:a9:23:53:63:ee:2b:0a:07:09:7e:49:93:
ec:00:13:94:25:d3:74:1c:09:3e:58:00:bb:be:67:
d7:8b:85:81:75:cd:24:9b:9b:ab:05:48:d1:e2:84:
d4:9d:cd:d5:3b:4c:73:f6:00:4c:a6:20:31:3d:ce:
3e:e8:f5:15:c7:35:34:35:4c:58:15:6e:e7:9d:ef:
c7:cf:46:5c:d2:fe:a9:32:97:a9:39:26:0b:28:7c:
08:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:90:67:63:4B:5D:04:42:76:8B:EC:1F:1F:F2:FD:D7:D2:EA:05:F9
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:9f:34:00:67:34:2d:48:24:bd:7a:93:48:6a:31:12:8e:cf:
33:b6:79:47:ae:a4:48:62:27:98:ed:c1:5c:fc:ac:f0:41:a0:
65:72:90:34:d1:77:fa:b9:b1:6a:e8:b9:06:16:4d:a9:22:9d:
16:bf:33:43:f9:01:41:22:e2:11:70:33:b9:cf:6f:71:33:20:
dd:4e:98:56:91:ef:b5:ff:a2:1b:de:46:ec:31:f4:89:39:86:
f6:01:ba:63:f6:fa:82:8b:23:35:3d:92:8f:f4:8e:3d:69:cf:
2a:77:0e:fd:09:c4:15:b2:0e:9e:e8:1e:3f:b8:15:dd:c4:62:
70:c0:90:59:51:c9:92:2a:49:7d:b9:0b:9b:f2:14:7f:50:68:
cf:07:6e:68:a7:2b:1b:94:e7:0e:48:10:38:96:1d:65:8d:d7:
0c:ff:5a:2f:37:a2:34:d9:c7:d5:b6:ae:7f:e6:4f:ab:5a:f8:
c4:89:12:d8:03:32:10:7f:32:20:de:d6:7e:9f:d5:56:e9:ae:
e5:ee:16:c1:aa:11:71:eb:f1:48:f7:c9:7f:8d:d5:cc:53:a8:
4e:a1:aa:8d:cf:40:b5:dd:7a:e3:73:0e:b5:fa:8c:b0:3e:b3:
65:09:a8:e4:0e:83:f3:10:fb:93:e8:e4:9a:38:95:53:b9:e6:
18:ad:8d:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjYKGBwPRgr6dt+a4e0ALMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NzE5OThhYTE0MGFiN2MxZmYyNDBlYWIwYzkyMzU5MTNj
OTZlOGEwHhcNMjUwNjA3MDQwMjAyWhcNMjUwNjA4MDQwMjAyWjAzMTEwLwYDVQQD
EyhlYzkwNjc2MzRiNWQwNDQyNzY4YmVjMWYxZmYyZmRkN2QyZWEwNWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJydG65xDyARIvWzLDWVee1Yzru0
H2I4vZPAUyGH5dtP+A9qie4cmhWb145H5FxEcZ6gZko9x0jPXhN7JU2EKDzbp+Bn
Ked5hTlx7L384bGB+3HHSeVHS4nOrT9lF86zbdfs6tB67xp6tI6e8ob4nZeBlnm/
EH93LnXCUPHQzWCO4hexKw0UW0LBXwaByP9jpQL9ob263GNzxnpdCFylGRB1onxC
PpmpI1Nj7isKBwl+SZPsABOUJdN0HAk+WAC7vmfXi4WBdc0km5urBUjR4oTUnc3V
O0xz9gBMpiAxPc4+6PUVxzU0NUxYFW7nne/Hz0Zc0v6pMpepOSYLKHwIlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOyQZ2NLXQRCdovsHx/y/dfS6gX5MB8GA1UdIwQY
MBaAFNhxmYqhQKt8H/JA6rDJI1kTyW6KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUt
NWEzNGU1MmIwYjEwLzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi8zM2FhMjQtMzVlYS00YWRjLThjMDUtNWEzNGU1MmIwYjEw
LzEvMkhHWmlxRkFxM3dmOGtEcXNNa2pXUlBKYm9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEp80AGc0
LUgkvXqTSGoxEo7PM7Z5R66kSGInmO3BXPys8EGgZXKQNNF3+rmxaui5BhZNqSKd
Fr8zQ/kBQSLiEXAzuc9vcTMg3U6YVpHvtf+iG95G7DH0iTmG9gG6Y/b6gosjNT2S
j/SOPWnPKncO/QnEFbIOnugeP7gV3cRicMCQWVHJkipJfbkLm/IUf1BozwduaKcr
G5TnDkgQOJYdZY3XDP9aLzeiNNnH1bauf+ZPq1r4xIkS2AMyEH8yIN7Wfp/VVumu
5e4WwaoRcevxSPfJf43VzFOoTqGqjc9Atd1643MOtfqMsD6zZQmo5A6D8xD7k+jk
mjiVU7nmGK2NdA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:58:31 2025 by rpki-client