Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: lQDnEcc6fsIE9NeFSbNa11UfiW+QD+XvcD811QwToD8=
Subject key identifier: 59:D8:5B:87:B3:14:14:8C:A0:B0:2E:9C:CE:44:55:AD:DD:2E:FD:75
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 0197B88EA471C3F641AE6CE6E30AA287B03E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0B0E
Signing time: Sat 28 Jun 2025 22:00:45 +0000
Manifest this update: Sat 28 Jun 2025 22:00:45 +0000
Manifest next update: Sun 29 Jun 2025 22:00:45 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: b/MFQ5WIzkTjY1+yfdn5uwZD5RiPe9i7AH4+KFDFyVM=)
2: YfAgsC_cdxTTdTc3lRuKLUA9Ek4.roa (hash: 6JxCw6QKy553BkYrq5SFqTFyUQePShSh+1QhYyHxmes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:a4:71:c3:f6:41:ae:6c:e6:e3:0a:a2:87:b0:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Jun 28 22:00:45 2025 GMT
Not After : Jun 29 22:00:45 2025 GMT
Subject: CN=59d85b87b314148ca0b02e9cce4455addd2efd75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0d:c0:b3:58:7b:29:73:05:83:36:00:5f:27:
10:9d:e5:81:02:a0:1e:f1:5b:96:72:d7:a3:67:d7:
27:f7:35:9b:f7:b5:c2:5e:49:42:12:06:29:e2:07:
f4:8e:54:73:bf:91:43:0c:8f:42:3a:4f:75:f4:7b:
27:ee:f6:c3:80:be:0f:bb:bd:e8:be:83:05:36:9b:
46:33:21:13:97:92:9d:14:4a:d6:84:62:62:07:87:
dc:53:21:d2:31:b4:17:c8:15:a3:05:35:fb:71:99:
a8:a5:2d:89:64:f1:d0:47:c1:ae:e3:f9:72:de:6d:
46:83:3e:d0:1c:a6:3a:97:c9:3a:03:7e:95:8c:4d:
ac:ee:bd:44:f9:4d:2f:32:8d:55:d3:8f:2d:6b:cf:
3d:a0:93:5b:82:35:e9:83:91:ff:04:ed:61:1f:18:
d8:a7:aa:90:1e:23:ab:2c:ad:27:37:7d:bf:86:d8:
1a:9b:b4:cf:f7:67:60:62:e7:22:d4:5a:a3:1d:3d:
27:bd:91:d8:cf:1c:0b:2a:07:dd:04:0d:ff:5a:71:
3f:27:d0:52:af:f8:4b:13:92:38:9a:2e:11:d4:a6:
d8:57:23:5a:3b:ea:a2:79:cf:fe:0d:fd:d4:2c:45:
88:c8:82:fb:6b:5b:46:5e:3f:58:17:f4:a7:a9:5a:
61:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D8:5B:87:B3:14:14:8C:A0:B0:2E:9C:CE:44:55:AD:DD:2E:FD:75
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:b8:e0:c6:93:be:82:76:8d:73:a4:f4:99:2f:f3:e9:b1:88:
b0:6a:3e:48:6e:93:af:2a:26:91:80:17:5a:76:97:b7:6e:d1:
07:70:42:67:b5:53:95:a1:6f:a5:ee:f2:12:8a:e9:a3:86:e9:
98:74:cd:fd:a5:4a:b6:88:05:66:3f:50:1d:23:bc:b5:e7:b2:
93:f3:27:d5:83:ad:83:ed:6b:86:1c:62:2e:7e:2a:bb:04:d8:
92:6d:66:19:87:bd:f2:eb:a1:ce:d3:ed:bd:8d:72:c8:f4:02:
1b:36:64:e0:3d:20:50:5a:00:4b:22:a1:a5:e9:1a:f9:d4:e0:
92:52:f5:fc:87:e8:fa:bb:62:7c:07:4b:36:7a:a0:de:ca:f4:
97:2c:b8:28:ad:31:ae:97:1a:0a:dd:3a:e0:48:95:0f:98:c3:
2b:39:7c:ab:27:41:6f:b3:e7:88:25:4d:cc:8b:ff:5b:70:e5:
86:a1:8f:e2:e3:0a:2b:e1:66:36:dc:58:c9:16:e2:41:a3:af:
8a:eb:b6:82:e6:43:5b:f8:c5:bf:92:a9:bf:99:1b:bc:96:b3:
f0:fd:55:9e:6c:37:c3:70:e8:97:49:64:02:e7:c2:ba:3b:9a:
dc:59:42:5a:d7:c6:08:70:42:96:71:ea:65:43:54:5b:75:3c:
6b:69:57:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4jqRxw/ZBrmzm4wqih7A+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YTNjYWNkZjhmMzM1MTRiZTNhYmRjNTJjNTBlYzg2NDY3
NWU5NTUwHhcNMjUwNjI4MjIwMDQ1WhcNMjUwNjI5MjIwMDQ1WjAzMTEwLwYDVQQD
Eyg1OWQ4NWI4N2IzMTQxNDhjYTBiMDJlOWNjZTQ0NTVhZGRkMmVmZDc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsA3As1h7KXMFgzYAXycQneWBAqAe
8VuWctejZ9cn9zWb97XCXklCEgYp4gf0jlRzv5FDDI9COk919Hsn7vbDgL4Pu73o
voMFNptGMyETl5KdFErWhGJiB4fcUyHSMbQXyBWjBTX7cZmopS2JZPHQR8Gu4/ly
3m1Ggz7QHKY6l8k6A36VjE2s7r1E+U0vMo1V048ta889oJNbgjXpg5H/BO1hHxjY
p6qQHiOrLK0nN32/htgam7TP92dgYuci1FqjHT0nvZHYzxwLKgfdBA3/WnE/J9BS
r/hLE5I4mi4R1KbYVyNaO+qiec/+Df3ULEWIyIL7a1tGXj9YF/SnqVphTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFnYW4ezFBSMoLAunM5EVa3dLv11MB8GA1UdIwQY
MBaAFNijys348zUUvjq9xSxQ7IZGdelVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEt
Yjc5MWI5ODlhZjI5LzEvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEtYjc5MWI5ODlhZjI5
LzEvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFLjgxpO+
gnaNc6T0mS/z6bGIsGo+SG6TryomkYAXWnaXt27RB3BCZ7VTlaFvpe7yEorpo4bp
mHTN/aVKtogFZj9QHSO8teeyk/Mn1YOtg+1rhhxiLn4quwTYkm1mGYe98uuhztPt
vY1yyPQCGzZk4D0gUFoASyKhpeka+dTgklL1/Ifo+rtifAdLNnqg3sr0lyy4KK0x
rpcaCt064EiVD5jDKzl8qydBb7PniCVNzIv/W3DlhqGP4uMKK+FmNtxYyRbiQaOv
iuu2guZDW/jFv5Kpv5kbvJaz8P1Vnmw3w3Dol0lkAufCujua3FlCWtfGCHBClnHq
ZUNUW3U8a2lXxA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:27:36 2025 by rpki-client