Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
File: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft (raw, json)
Hash identifier: 5W0Xrh4rXuISOHv+p9AsoDobBxxSWluLvYcdruxHIYc=
Subject key identifier: 05:2B:C1:2F:A5:E0:45:E2:6E:FD:0C:83:68:99:10:79:85:A1:6B:E2
Authority key identifier: DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34
Certificate issuer: /CN=db2d75c6d547750642241b0749cfa052c8c17f34
Certificate serial: 0197549060E35CE747649AC64AD5971A7EC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
Manifest number: 1582
Signing time: Mon 09 Jun 2025 12:00:37 +0000
Manifest this update: Mon 09 Jun 2025 12:00:37 +0000
Manifest next update: Tue 10 Jun 2025 12:00:37 +0000
Files and hashes: 1: 2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl (hash: ED92Bgy2yfSUWmANw1Pu1+pyIopMYRi/TSHR1sXxi+g=)
2: hbj2DwbTO4-tmysNHMyxl2vxyPM.roa (hash: W6g4GPDJbcaX24i4+eflWzczpsq5sBQlzCM+vJ6ScIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:90:60:e3:5c:e7:47:64:9a:c6:4a:d5:97:1a:7e:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2d75c6d547750642241b0749cfa052c8c17f34
Validity
Not Before: Jun 9 12:00:37 2025 GMT
Not After : Jun 10 12:00:37 2025 GMT
Subject: CN=052bc12fa5e045e26efd0c836899107985a16be2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:4d:27:6b:f8:a1:9f:e4:28:86:f6:6a:84:4f:
b8:8c:e0:ca:c8:45:fa:9f:2a:12:ec:b1:9d:f3:93:
21:b9:9a:83:95:72:5e:5e:a2:e4:3b:7f:07:78:7c:
6e:6b:86:0b:54:26:70:c2:94:b1:0b:80:b4:d0:3e:
bc:61:67:29:e4:25:1d:09:ea:0f:af:dc:09:7b:1b:
22:06:64:c7:d2:3e:57:84:0d:15:b7:5b:29:6d:a2:
ce:81:28:4f:b4:a9:34:f3:8d:cb:af:da:4a:04:35:
7e:b4:c6:8f:d0:1f:91:ca:28:85:5a:6d:27:b4:61:
87:4e:04:1d:b5:77:a8:38:fe:f8:f5:83:37:a6:7b:
fd:05:90:48:2c:26:df:38:28:6e:40:9d:c4:4f:71:
6c:b4:da:b7:ce:6c:c4:35:cd:04:fa:b8:42:79:2b:
13:12:af:5f:e3:d5:dd:4b:d9:71:84:1c:82:d2:2a:
89:0c:b7:e0:31:f3:a7:39:cb:68:3c:84:70:19:c2:
0f:06:f9:bb:12:37:51:1a:2c:9a:98:8e:18:34:41:
7b:87:d9:b9:ee:34:79:38:86:d1:5a:d2:92:50:fa:
b4:e0:6b:fb:99:bf:4e:55:03:00:51:49:c8:57:15:
97:68:57:fa:53:12:9e:f9:85:8a:1f:03:6c:50:64:
75:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:2B:C1:2F:A5:E0:45:E2:6E:FD:0C:83:68:99:10:79:85:A1:6B:E2
X509v3 Authority Key Identifier:
keyid:DB:2D:75:C6:D5:47:75:06:42:24:1B:07:49:CF:A0:52:C8:C1:7F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y11xtVHdQZCJBsHSc-gUsjBfzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/cc40a9-8b3f-43d6-a078-a901e034afe5/1/2y11xtVHdQZCJBsHSc-gUsjBfzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:0c:63:b9:df:51:d7:bb:9b:54:34:ed:dc:07:dd:83:6a:5f:
4f:27:a2:35:cc:69:c8:18:53:40:5a:ec:e7:8c:a0:6c:6a:bc:
36:ed:66:74:ea:09:f9:6c:2b:f9:16:c9:68:64:fd:fa:57:10:
ed:50:0c:9f:f5:2f:e4:9f:10:3a:17:99:fe:5e:5c:a1:bf:5b:
3f:99:f3:d3:14:54:23:54:60:09:26:19:29:60:28:52:58:41:
45:cd:cd:42:44:9c:63:65:b2:30:ed:d8:38:28:f1:5b:c9:16:
38:75:5b:d9:07:ab:03:ff:85:f6:37:eb:82:b8:5c:65:56:79:
9e:d2:df:58:31:35:65:1a:34:5b:64:c4:1f:f1:bd:cb:79:ae:
0d:08:6e:10:20:9f:85:45:21:67:81:6b:a4:d3:d7:7e:89:e6:
58:e9:38:78:b0:58:85:e0:83:e6:f2:3c:27:30:20:4c:0b:54:
57:b8:b9:0e:87:e8:bf:c8:0c:cd:84:19:f1:da:bd:df:fe:90:
d2:11:1b:6a:d9:34:33:b5:8a:c8:f9:98:48:2c:08:63:1a:89:
5c:a5:0e:01:d0:15:d1:b9:4b:47:ad:81:74:57:79:c8:ad:a0:
0d:2c:ba:ad:12:fe:04:ab:db:53:a1:49:8b:ee:67:5f:2d:54:
cf:75:fc:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdUkGDjXOdHZJrGStWXGn7GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMmQ3NWM2ZDU0Nzc1MDY0MjI0MWIwNzQ5Y2ZhMDUyYzhj
MTdmMzQwHhcNMjUwNjA5MTIwMDM3WhcNMjUwNjEwMTIwMDM3WjAzMTEwLwYDVQQD
EygwNTJiYzEyZmE1ZTA0NWUyNmVmZDBjODM2ODk5MTA3OTg1YTE2YmUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1k0na/ihn+QohvZqhE+4jODKyEX6
nyoS7LGd85MhuZqDlXJeXqLkO38HeHxua4YLVCZwwpSxC4C00D68YWcp5CUdCeoP
r9wJexsiBmTH0j5XhA0Vt1spbaLOgShPtKk0843Lr9pKBDV+tMaP0B+RyiiFWm0n
tGGHTgQdtXeoOP749YM3pnv9BZBILCbfOChuQJ3ET3FstNq3zmzENc0E+rhCeSsT
Eq9f49XdS9lxhByC0iqJDLfgMfOnOctoPIRwGcIPBvm7EjdRGiyamI4YNEF7h9m5
7jR5OIbRWtKSUPq04Gv7mb9OVQMAUUnIVxWXaFf6UxKe+YWKHwNsUGR1LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAUrwS+l4EXibv0Mg2iZEHmFoWviMB8GA1UdIwQY
MBaAFNstdcbVR3UGQiQbB0nPoFLIwX80MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnkxMXh0VkhkUVpDSkJzSFNjLWdVc2pCZnpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9jYzQwYTktOGIzZi00M2Q2LWEwNzgt
YTkwMWUwMzRhZmU1LzEvMnkxMXh0VkhkUVpDSkJzSFNjLWdVc2pCZnpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS9jYzQwYTktOGIzZi00M2Q2LWEwNzgtYTkwMWUwMzRhZmU1
LzEvMnkxMXh0VkhkUVpDSkJzSFNjLWdVc2pCZnpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVwxjud9R
17ubVDTt3Afdg2pfTyeiNcxpyBhTQFrs54ygbGq8Nu1mdOoJ+Wwr+RbJaGT9+lcQ
7VAMn/Uv5J8QOheZ/l5cob9bP5nz0xRUI1RgCSYZKWAoUlhBRc3NQkScY2WyMO3Y
OCjxW8kWOHVb2QerA/+F9jfrgrhcZVZ5ntLfWDE1ZRo0W2TEH/G9y3muDQhuECCf
hUUhZ4FrpNPXfonmWOk4eLBYheCD5vI8JzAgTAtUV7i5Dofov8gMzYQZ8dq93/6Q
0hEbatk0M7WKyPmYSCwIYxqJXKUOAdAV0blLR62BdFd5yK2gDSy6rRL+BKvbU6FJ
i+5nXy1Uz3X8WA==
-----END CERTIFICATE-----
Generated at Mon Jun 9 14:27:04 2025 by rpki-client