Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
File: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json)
Hash identifier: qm70jJZYgvBfr0COHOxpj7IAEYYOOq9FNI+OBnHn4uY=
Subject key identifier: C6:86:FB:0B:04:9A:BF:64:19:50:88:8E:78:0C:D9:F6:4A:D7:CE:F4
Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
Certificate issuer: /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Certificate serial: 0197B77C27E7EEBE7FFCA7D3517FF3F0685E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
Manifest number: 03F7
Signing time: Sat 28 Jun 2025 17:00:56 +0000
Manifest this update: Sat 28 Jun 2025 17:00:56 +0000
Manifest next update: Sun 29 Jun 2025 17:00:56 +0000
Files and hashes: 1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: 9JSdG4IATFYls6CVGxNs0V0UKxYQlZ1mUNoaq/5iNf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:27:e7:ee:be:7f:fc:a7:d3:51:7f:f3:f0:68:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Validity
Not Before: Jun 28 17:00:56 2025 GMT
Not After : Jun 29 17:00:56 2025 GMT
Subject: CN=c686fb0b049abf641950888e780cd9f64ad7cef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:13:2b:1b:35:48:86:c7:54:ab:9e:8a:5c:1c:
10:2d:35:c2:70:c8:aa:80:6b:41:c9:9b:93:da:52:
37:9b:84:00:0c:74:54:44:28:64:45:6a:b0:05:3e:
d7:f7:b7:8d:00:f4:d5:c1:32:bd:41:1b:53:a8:3f:
5e:a1:b1:ca:55:3f:89:31:d8:e5:ae:1d:0a:27:c3:
32:ae:a9:92:77:6b:8f:cb:61:52:f2:87:59:7a:16:
4b:90:b5:48:02:a9:7b:ed:8f:cc:e8:03:fa:1f:67:
97:e8:78:ae:c5:65:aa:47:61:da:22:08:aa:1a:ff:
a6:da:4e:1d:fc:13:89:f3:de:00:8b:ef:c5:82:e9:
38:b2:af:bd:fd:8f:49:c9:39:80:11:20:4e:b6:2c:
1d:fb:d9:bb:92:b4:d2:0b:bd:bf:74:2a:3d:ae:3c:
8b:16:56:7b:e8:b3:ee:fd:98:b5:56:5b:11:28:e7:
34:c6:b4:4d:60:3d:d9:85:f1:95:42:6a:6e:7f:29:
9a:65:85:60:c7:02:31:3e:c5:61:22:1b:3e:7a:2c:
28:b7:c0:35:bd:00:34:30:23:c0:43:65:df:65:05:
40:41:0a:4d:db:c9:f0:48:0e:f0:62:2f:18:97:72:
98:96:9b:71:fb:f8:28:af:0a:e1:aa:3f:a9:03:20:
e8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:86:FB:0B:04:9A:BF:64:19:50:88:8E:78:0C:D9:F6:4A:D7:CE:F4
X509v3 Authority Key Identifier:
keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:95:c3:8a:11:4f:94:27:a1:78:a2:00:bc:1c:ca:39:0b:29:
ea:14:11:67:df:94:75:e0:e4:91:66:cc:e1:69:d8:f4:ad:ff:
4b:fd:ba:1e:16:5a:f9:41:18:25:b7:2b:58:c9:0c:fc:dd:eb:
8b:37:ba:38:01:a7:1e:dc:0b:ed:ee:bd:84:e6:15:bf:d3:61:
b0:94:d7:f8:64:22:fb:9d:9d:8a:3e:2d:dd:12:8c:05:1e:96:
23:56:ea:41:d8:2a:92:4b:cb:15:15:cd:a5:38:01:9a:d4:d3:
0c:6d:95:eb:cf:a9:a4:f8:80:8d:7d:aa:73:70:41:3a:2b:15:
e6:95:6d:8b:25:9a:c8:98:78:77:13:af:bf:79:14:c5:3b:52:
e2:f0:d8:a3:a9:a9:59:29:c7:6f:e8:25:a1:c2:9a:8a:06:5b:
dd:33:75:a4:32:3d:c7:bb:1f:6b:dc:e7:3b:c9:ca:e3:ef:3c:
ff:b7:a3:29:76:5a:af:ed:ba:ab:c4:09:52:86:0e:ed:8d:9a:
0f:d7:9f:b5:24:3b:cd:a6:6a:7f:35:27:67:68:8c:8c:61:11:
96:2b:a4:1f:ce:db:1f:72:59:11:99:fc:19:18:c0:f2:f5:5f:
37:f7:79:6f:f6:fa:cc:e6:f5:c8:b1:67:41:06:6b:44:05:f9:
0e:5e:75:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fCfn7r5//KfTUX/z8GheMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYTY3YzU4YjRhNmZlMjEyZmMyMGZiNzU2OTQ5YWRkYzFh
OWE2MmMwHhcNMjUwNjI4MTcwMDU2WhcNMjUwNjI5MTcwMDU2WjAzMTEwLwYDVQQD
EyhjNjg2ZmIwYjA0OWFiZjY0MTk1MDg4OGU3ODBjZDlmNjRhZDdjZWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hMrGzVIhsdUq56KXBwQLTXCcMiq
gGtByZuT2lI3m4QADHRURChkRWqwBT7X97eNAPTVwTK9QRtTqD9eobHKVT+JMdjl
rh0KJ8MyrqmSd2uPy2FS8odZehZLkLVIAql77Y/M6AP6H2eX6HiuxWWqR2HaIgiq
Gv+m2k4d/BOJ894Ai+/Fguk4sq+9/Y9JyTmAESBOtiwd+9m7krTSC72/dCo9rjyL
FlZ76LPu/Zi1VlsRKOc0xrRNYD3ZhfGVQmpufymaZYVgxwIxPsVhIhs+eiwot8A1
vQA0MCPAQ2XfZQVAQQpN28nwSA7wYi8Yl3KYlptx+/gorwrhqj+pAyDo5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMaG+wsEmr9kGVCIjngM2fZK1870MB8GA1UdIwQY
MBaAFNqmfFi0pv4hL8IPt1aUmt3BqaYsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9mMjk1Y2UtODI2ZC00ZjU0LTk3MGYt
NTBmMzRmNDM1ZjAzLzEvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9mMjk1Y2UtODI2ZC00ZjU0LTk3MGYtNTBmMzRmNDM1ZjAz
LzEvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABZXDihFP
lCeheKIAvBzKOQsp6hQRZ9+UdeDkkWbM4WnY9K3/S/26HhZa+UEYJbcrWMkM/N3r
ize6OAGnHtwL7e69hOYVv9NhsJTX+GQi+52dij4t3RKMBR6WI1bqQdgqkkvLFRXN
pTgBmtTTDG2V68+ppPiAjX2qc3BBOisV5pVtiyWayJh4dxOvv3kUxTtS4vDYo6mp
WSnHb+glocKaigZb3TN1pDI9x7sfa9znO8nK4+88/7ejKXZar+26q8QJUoYO7Y2a
D9eftSQ7zaZqfzUnZ2iMjGERliukH87bH3JZEZn8GRjA8vVfN/d5b/b6zOb1yLFn
QQZrRAX5Dl51vA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:03:03 2025 by rpki-client