Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: fs9wH0u5FtsJpSEBc0ffWSjkdUF+I8Hc2CgEjMsTuGc=
Subject key identifier: FC:36:23:F0:02:E8:7E:BE:55:49:97:7B:B9:37:6D:46:A3:C2:6F:23
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 0196A8E6AD9F63A9CA82BED50454370C34EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 148C
Signing time: Wed 07 May 2025 04:00:12 +0000
Manifest this update: Wed 07 May 2025 04:00:12 +0000
Manifest next update: Thu 08 May 2025 04:00:12 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: rgt5fOtCs7+1pJ7jDM2Gp5dJ1MAQhGV8MpQU6he3zhQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:e6:ad:9f:63:a9:ca:82:be:d5:04:54:37:0c:34:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: May 7 04:00:12 2025 GMT
Not After : May 8 04:00:12 2025 GMT
Subject: CN=fc3623f002e87ebe5549977bb9376d46a3c26f23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:37:f3:32:89:e3:5b:89:b6:2a:38:4c:55:73:
e7:03:98:69:23:21:21:94:06:3b:1d:2f:35:18:e9:
4d:51:95:1a:a8:b6:e7:21:a3:90:65:5b:06:13:e2:
7f:e4:35:a5:ad:25:37:2d:06:1a:65:04:61:ac:37:
af:2c:09:e8:a6:3a:f0:ee:a2:00:9e:8a:c1:ab:7f:
6f:22:9b:17:21:3f:f2:e8:88:5c:ab:09:51:42:66:
e1:45:3a:9b:26:c9:ea:e9:bc:2a:eb:1e:10:3c:df:
12:8d:61:e9:41:e1:37:24:ba:4a:1f:47:b0:6a:b5:
23:47:2c:43:23:04:d0:8e:16:ba:90:51:89:ae:8a:
53:86:c1:7a:a0:94:62:b8:26:c6:c8:b4:96:02:66:
91:5f:37:71:6c:98:2a:33:55:b2:f8:09:87:54:22:
d1:0e:9e:77:8d:d1:e1:90:ae:01:9c:81:ea:8b:95:
d9:f6:79:ac:dc:7c:7e:21:2b:69:84:c1:cc:0a:07:
46:7b:88:ca:2f:32:f9:67:b4:c2:1d:e6:66:6f:79:
22:47:3a:c7:a9:ce:37:49:ae:58:85:8e:33:c3:c2:
79:2b:cc:82:40:38:3f:c0:c0:fc:37:0f:66:df:f9:
62:bf:4d:e8:ba:ea:22:47:4e:c6:19:f5:45:8f:93:
90:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:36:23:F0:02:E8:7E:BE:55:49:97:7B:B9:37:6D:46:A3:C2:6F:23
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:0b:f9:76:b8:6f:80:b7:48:c3:cb:cb:ad:e3:bb:67:fd:eb:
a1:6c:7f:11:21:04:77:97:2c:51:d4:89:ce:40:1f:e7:21:69:
11:4b:7f:a3:2d:ed:33:a5:d7:4b:e3:01:12:6f:58:36:bb:3b:
44:36:ea:05:89:98:99:08:eb:6d:dd:f0:50:01:b6:f2:0c:cf:
02:29:ff:4d:31:6b:f7:5f:85:4a:91:31:48:d8:a1:ac:d8:83:
1e:dd:7c:56:7c:6e:b4:dc:ed:a4:09:e5:20:88:c8:f7:bf:2f:
9d:db:ae:69:d3:e0:4c:d6:cb:37:14:71:6d:d3:6f:76:4e:7d:
e1:5d:a1:8c:91:cc:c5:86:70:8d:13:5a:e2:cf:46:96:51:82:
11:ee:e1:6a:e2:c6:ff:03:16:bc:7f:8e:7c:a3:25:bb:af:10:
b1:85:52:bf:fa:9c:1f:93:37:3c:30:95:ce:da:81:16:93:4b:
ce:e1:ec:22:c9:22:16:fa:f8:15:51:9e:2c:c8:b9:7c:4e:91:
29:27:89:a6:80:b5:e7:6f:4f:f1:9c:91:c9:be:f3:52:8f:b5:
6f:26:55:f9:8e:76:ad:e7:9d:25:31:5b:7c:e7:1e:af:61:aa:
6c:75:12:9e:23:d8:6d:f1:31:d8:65:a8:87:cd:cc:dd:63:4c:
79:ce:27:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZao5q2fY6nKgr7VBFQ3DDTrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmNmIzMzYxYTFhMmEwMGRiY2UzMTkwMTk4MjdmZWJiNzE1
YmQwNDQwHhcNMjUwNTA3MDQwMDEyWhcNMjUwNTA4MDQwMDEyWjAzMTEwLwYDVQQD
EyhmYzM2MjNmMDAyZTg3ZWJlNTU0OTk3N2JiOTM3NmQ0NmEzYzI2ZjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzfzMonjW4m2KjhMVXPnA5hpIyEh
lAY7HS81GOlNUZUaqLbnIaOQZVsGE+J/5DWlrSU3LQYaZQRhrDevLAnopjrw7qIA
norBq39vIpsXIT/y6IhcqwlRQmbhRTqbJsnq6bwq6x4QPN8SjWHpQeE3JLpKH0ew
arUjRyxDIwTQjha6kFGJropThsF6oJRiuCbGyLSWAmaRXzdxbJgqM1Wy+AmHVCLR
Dp53jdHhkK4BnIHqi5XZ9nms3Hx+IStphMHMCgdGe4jKLzL5Z7TCHeZmb3kiRzrH
qc43Sa5YhY4zw8J5K8yCQDg/wMD8Nw9m3/liv03ouuoiR07GGfVFj5OQWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPw2I/AC6H6+VUmXe7k3bUajwm8jMB8GA1UdIwQY
MBaAFP9rM2GhoqANvOMZAZgn/rtxW9BEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS85NmY5YTAtODc0Ni00YjMyLTgzZWUt
ZjYyMzIwOTUxYTM2LzEvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS85NmY5YTAtODc0Ni00YjMyLTgzZWUtZjYyMzIwOTUxYTM2
LzEvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYQv5drhv
gLdIw8vLreO7Z/3roWx/ESEEd5csUdSJzkAf5yFpEUt/oy3tM6XXS+MBEm9YNrs7
RDbqBYmYmQjrbd3wUAG28gzPAin/TTFr91+FSpExSNihrNiDHt18VnxutNztpAnl
IIjI978vnduuadPgTNbLNxRxbdNvdk594V2hjJHMxYZwjRNa4s9GllGCEe7hauLG
/wMWvH+OfKMlu68QsYVSv/qcH5M3PDCVztqBFpNLzuHsIskiFvr4FVGeLMi5fE6R
KSeJpoC1529P8ZyRyb7zUo+1byZV+Y52reedJTFbfOcer2GqbHUSniPYbfEx2GWo
h83M3WNMec4nfw==
-----END CERTIFICATE-----
Generated at Wed May 7 06:18:17 2025 by rpki-client