Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
File: 2xjQrivPZ9QUonXLOE8tOWCoN70.mft (raw, json)
Hash identifier: JW0xrx4GBJ8vHAGZ/MgETxJxCsCi5TP3nBcoZg4DHRg=
Subject key identifier: DC:E5:E7:CF:B6:72:D3:0F:A7:10:51:C0:93:AF:25:C6:51:91:E3:39
Authority key identifier: DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
Certificate issuer: /CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Certificate serial: 0196C3B9BFDD04A4D9F3D57BBC56F314E5FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
Manifest number: 0CAF
Signing time: Mon 12 May 2025 09:00:52 +0000
Manifest this update: Mon 12 May 2025 09:00:52 +0000
Manifest next update: Tue 13 May 2025 09:00:52 +0000
Files and hashes: 1: 2xjQrivPZ9QUonXLOE8tOWCoN70.crl (hash: rXBpzkmP7fvpb5XMe5rX+HUYZPYGcVbEvgeLMphFpx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:bf:dd:04:a4:d9:f3:d5:7b:bc:56:f3:14:e5:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Validity
Not Before: May 12 09:00:52 2025 GMT
Not After : May 13 09:00:52 2025 GMT
Subject: CN=dce5e7cfb672d30fa71051c093af25c65191e339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:50:ad:c1:14:19:a2:7f:f6:0e:fa:d0:be:41:
77:24:0b:92:b9:96:63:91:2e:bf:96:5c:42:b3:2d:
90:73:21:56:1a:3d:dc:75:d9:68:fd:9d:4d:44:ab:
c2:0b:62:63:a6:66:6f:33:ae:1f:08:17:9e:50:a3:
9e:fa:59:05:8c:a0:65:1a:6a:b3:bd:77:e9:61:5b:
ed:69:d0:51:d3:1c:71:d7:c9:1e:58:a5:2b:dc:79:
8b:3b:fb:1a:d1:a7:cd:78:eb:f4:61:1e:ec:c9:9e:
7c:67:7c:f6:53:bf:76:63:fe:4a:d3:59:36:cb:30:
59:f3:c8:95:28:24:a9:8a:c6:c7:a9:7d:be:2d:4f:
64:7d:9b:c6:05:3f:32:26:74:d2:66:1e:5b:58:d8:
a0:30:40:d4:76:e6:2c:54:16:b7:30:a5:8f:a4:c6:
93:db:c9:fb:1d:d9:61:9f:13:63:0b:3e:ba:6e:ef:
f4:17:ed:07:b1:9a:4c:75:12:8f:08:28:99:ad:17:
4f:54:59:53:1e:e4:cb:71:e5:a6:5d:9e:34:38:1a:
8d:4d:01:10:9b:e9:b6:fa:48:6a:ae:d2:5b:19:19:
c5:2c:68:4e:55:d9:e7:03:10:43:66:93:c6:bd:75:
df:53:6f:20:e8:e0:ac:26:63:c0:18:f0:b6:2f:8d:
63:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E5:E7:CF:B6:72:D3:0F:A7:10:51:C0:93:AF:25:C6:51:91:E3:39
X509v3 Authority Key Identifier:
keyid:DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:09:d3:7d:da:1c:da:2b:57:6f:1f:50:64:d5:37:81:7e:b6:
3e:5d:7a:b1:96:08:c0:85:04:76:0d:d2:ca:02:ee:4d:1a:65:
74:db:28:20:88:c6:1e:d8:43:82:99:31:46:c1:e0:77:a6:b1:
17:6c:8f:f9:f2:5d:69:09:a8:72:f9:92:10:a1:b9:f1:4f:16:
e4:55:4a:85:d8:b1:59:a3:13:72:c6:0c:1a:3f:ce:19:77:a5:
e2:ca:5a:01:d5:b5:dc:e4:87:48:ae:5d:9c:03:9f:3f:98:08:
44:76:65:70:31:25:4c:02:74:cf:2d:00:1c:4a:ed:3b:50:ac:
4f:e9:78:60:bf:30:47:1e:a9:6c:81:60:5a:eb:c8:18:2e:ca:
46:7e:ed:1a:e2:45:e3:7e:b5:ef:12:ff:e3:f5:77:f3:e5:3c:
58:72:dc:ea:c0:ac:c7:21:ba:b6:d1:af:63:ec:43:84:89:62:
56:5f:2f:0a:51:b2:d4:7e:47:12:00:a0:26:9d:1a:ad:83:96:
40:89:87:5e:ef:85:04:ce:cd:33:a3:cb:5f:3d:b9:6e:14:8b:
71:f8:1b:31:9b:0b:45:24:d7:ce:74:64:20:5d:94:43:c0:d5:
c6:0b:d0:b8:19:c9:57:f8:5d:34:b5:51:9e:4b:de:a1:ed:5d:
b9:11:33:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbDub/dBKTZ89V7vFbzFOX9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMThkMGFlMmJjZjY3ZDQxNGEyNzVjYjM4NGYyZDM5NjBh
ODM3YmQwHhcNMjUwNTEyMDkwMDUyWhcNMjUwNTEzMDkwMDUyWjAzMTEwLwYDVQQD
EyhkY2U1ZTdjZmI2NzJkMzBmYTcxMDUxYzA5M2FmMjVjNjUxOTFlMzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplCtwRQZon/2DvrQvkF3JAuSuZZj
kS6/llxCsy2QcyFWGj3cddlo/Z1NRKvCC2JjpmZvM64fCBeeUKOe+lkFjKBlGmqz
vXfpYVvtadBR0xxx18keWKUr3HmLO/sa0afNeOv0YR7syZ58Z3z2U792Y/5K01k2
yzBZ88iVKCSpisbHqX2+LU9kfZvGBT8yJnTSZh5bWNigMEDUduYsVBa3MKWPpMaT
28n7HdlhnxNjCz66bu/0F+0HsZpMdRKPCCiZrRdPVFlTHuTLceWmXZ40OBqNTQEQ
m+m2+khqrtJbGRnFLGhOVdnnAxBDZpPGvXXfU28g6OCsJmPAGPC2L41jTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNzl58+2ctMPpxBRwJOvJcZRkeM5MB8GA1UdIwQY
MBaAFNsY0K4rz2fUFKJ1yzhPLTlgqDe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9jZWY4OTYtZjk2OC00YzJmLTgwYzQt
MGFjZWJhYTY3Yjc5LzEvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9jZWY4OTYtZjk2OC00YzJmLTgwYzQtMGFjZWJhYTY3Yjc5
LzEvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtQnTfdoc
2itXbx9QZNU3gX62Pl16sZYIwIUEdg3SygLuTRpldNsoIIjGHthDgpkxRsHgd6ax
F2yP+fJdaQmocvmSEKG58U8W5FVKhdixWaMTcsYMGj/OGXel4spaAdW13OSHSK5d
nAOfP5gIRHZlcDElTAJ0zy0AHErtO1CsT+l4YL8wRx6pbIFgWuvIGC7KRn7tGuJF
43617xL/4/V38+U8WHLc6sCsxyG6ttGvY+xDhIliVl8vClGy1H5HEgCgJp0arYOW
QImHXu+FBM7NM6PLXz25bhSLcfgbMZsLRSTXznRkIF2UQ8DVxgvQuBnJV/hdNLVR
nkveoe1duREzHA==
-----END CERTIFICATE-----
Generated at Mon May 12 12:17:52 2025 by rpki-client