Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
File: 2D73FCmY5OZWYFPixjpwgIxuojc.mft (raw, json)
Hash identifier: Purf/Mr0rnxUblkqv+chnuM6KdvZ0sJJ+FWU3RPigRU=
Subject key identifier: 2B:4C:D8:F0:40:F1:47:25:DE:BE:38:A6:A9:69:41:82:77:96:15:68
Authority key identifier: D8:3E:F7:14:29:98:E4:E6:56:60:53:E2:C6:3A:70:80:8C:6E:A2:37
Certificate issuer: /CN=d83ef7142998e4e6566053e2c63a70808c6ea237
Certificate serial: 0196AB436691B7C8DE498EC856CB15AE317C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
Manifest number: AA
Signing time: Wed 07 May 2025 15:00:43 +0000
Manifest this update: Wed 07 May 2025 15:00:43 +0000
Manifest next update: Thu 08 May 2025 15:00:43 +0000
Files and hashes: 1: 2D73FCmY5OZWYFPixjpwgIxuojc.crl (hash: XIxfV65y9Y+yA9D5hOznmSqax+qMoYrJ5VQdY6gx6eM=)
2: EWAO3dXqj4k_Zc24k1Bzcpcwlew.roa (hash: fG2UBrX6DjIKV9kptyQGomVTDY864OWJshOwmuCJfno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ab:43:66:91:b7:c8:de:49:8e:c8:56:cb:15:ae:31:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d83ef7142998e4e6566053e2c63a70808c6ea237
Validity
Not Before: May 7 15:00:43 2025 GMT
Not After : May 8 15:00:43 2025 GMT
Subject: CN=2b4cd8f040f14725debe38a6a969418277961568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:17:a2:00:cf:45:54:fb:82:6c:5c:e8:49:dc:
bc:27:7c:e7:c5:03:22:c6:5a:db:d5:07:6d:b3:e0:
d5:b7:49:fa:c8:e6:ab:d4:15:13:08:03:7c:50:29:
32:75:39:69:8b:18:af:3c:c6:cf:25:9f:d5:ec:51:
e7:92:df:53:51:09:f7:51:7d:6c:8d:04:c7:cc:a2:
a3:95:04:b5:cd:06:61:98:b1:a6:e4:a5:25:f8:89:
c9:f0:18:e1:51:4f:96:25:03:c9:7d:7c:04:50:ff:
d8:19:f9:1f:ac:66:99:ae:aa:0e:66:9b:25:c9:b0:
0e:54:5f:e6:97:fe:55:eb:88:c5:b6:c0:e7:10:78:
27:9d:c8:0f:78:c9:47:27:9b:0c:c6:b9:0e:e1:69:
12:a9:28:10:5e:a2:68:03:a6:b7:99:5f:04:f8:a6:
75:42:7c:d4:7b:6e:4f:9f:90:73:4a:63:e6:0b:7f:
94:de:36:9d:8a:bd:d9:ce:35:ba:c7:9a:3b:7c:6f:
94:28:7e:77:73:c3:45:f8:fe:37:b1:21:1b:e2:dd:
49:1b:e7:33:e3:43:de:88:6c:e2:53:f2:19:f0:be:
04:1b:36:3c:32:9f:25:f7:40:79:94:7f:c4:2a:e2:
31:31:6a:f2:59:06:09:9e:54:de:ef:ff:fb:36:46:
0c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:4C:D8:F0:40:F1:47:25:DE:BE:38:A6:A9:69:41:82:77:96:15:68
X509v3 Authority Key Identifier:
keyid:D8:3E:F7:14:29:98:E4:E6:56:60:53:E2:C6:3A:70:80:8C:6E:A2:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:2e:37:08:71:73:2e:ec:d9:d7:6e:95:0f:0b:0d:d4:c5:bd:
e7:55:80:b0:b9:c5:f4:0c:ba:7c:d4:9b:1f:c4:00:70:35:1c:
36:01:97:2a:27:3d:e5:8f:69:fc:7a:e8:67:e3:c6:eb:cb:98:
09:59:7b:e4:db:cf:e7:fc:92:b8:a4:75:b9:33:0c:a1:7f:10:
09:a0:68:85:53:4d:24:f9:f4:3e:a5:3e:63:7f:75:08:a1:a5:
7b:83:70:b5:82:e4:5a:5f:e0:af:9d:99:34:b4:7e:7a:51:b2:
8d:33:36:81:ec:06:2e:80:28:b2:e2:4d:10:82:2b:e0:4d:27:
b7:99:55:a9:b6:b7:4d:ba:5b:45:77:29:9b:fe:0a:1e:09:80:
ad:b5:64:89:72:47:8a:6e:de:7d:74:1d:eb:47:4a:d0:f2:b7:
3d:87:22:f8:07:74:ba:3c:49:7e:72:0f:13:ba:0d:d5:09:c5:
30:6d:61:34:d5:22:2a:2f:71:05:a6:59:82:5e:d6:43:bc:08:
db:f7:67:56:50:7f:6c:3b:49:97:2a:22:b0:81:a3:7e:40:f4:
fd:a2:8e:39:eb:9f:01:88:d9:f9:43:a9:56:92:33:fe:a5:36:
7c:7a:57:79:c0:b7:af:ad:04:1d:5c:31:32:05:98:56:ee:6f:
36:63:0c:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZarQ2aRt8jeSY7IVssVrjF8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4M2VmNzE0Mjk5OGU0ZTY1NjYwNTNlMmM2M2E3MDgwOGM2
ZWEyMzcwHhcNMjUwNTA3MTUwMDQzWhcNMjUwNTA4MTUwMDQzWjAzMTEwLwYDVQQD
EygyYjRjZDhmMDQwZjE0NzI1ZGViZTM4YTZhOTY5NDE4Mjc3OTYxNTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0BeiAM9FVPuCbFzoSdy8J3znxQMi
xlrb1Qdts+DVt0n6yOar1BUTCAN8UCkydTlpixivPMbPJZ/V7FHnkt9TUQn3UX1s
jQTHzKKjlQS1zQZhmLGm5KUl+InJ8BjhUU+WJQPJfXwEUP/YGfkfrGaZrqoOZpsl
ybAOVF/ml/5V64jFtsDnEHgnncgPeMlHJ5sMxrkO4WkSqSgQXqJoA6a3mV8E+KZ1
QnzUe25Pn5BzSmPmC3+U3jadir3ZzjW6x5o7fG+UKH53c8NF+P43sSEb4t1JG+cz
40PeiGziU/IZ8L4EGzY8Mp8l90B5lH/EKuIxMWryWQYJnlTe7//7NkYMSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCtM2PBA8Ucl3r44pqlpQYJ3lhVoMB8GA1UdIwQY
MBaAFNg+9xQpmOTmVmBT4sY6cICMbqI3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkQ3M0ZDbVk1T1pXWUZQaXhqcHdnSXh1b2pjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy83ZmNiMzUtNDQwOC00MjE4LTk4NjIt
N2Y3NWExYjEwZWMzLzEvMkQ3M0ZDbVk1T1pXWUZQaXhqcHdnSXh1b2pjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy83ZmNiMzUtNDQwOC00MjE4LTk4NjItN2Y3NWExYjEwZWMz
LzEvMkQ3M0ZDbVk1T1pXWUZQaXhqcHdnSXh1b2pjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhC43CHFz
LuzZ126VDwsN1MW951WAsLnF9Ay6fNSbH8QAcDUcNgGXKic95Y9p/HroZ+PG68uY
CVl75NvP5/ySuKR1uTMMoX8QCaBohVNNJPn0PqU+Y391CKGle4NwtYLkWl/gr52Z
NLR+elGyjTM2gewGLoAosuJNEIIr4E0nt5lVqba3TbpbRXcpm/4KHgmArbVkiXJH
im7efXQd60dK0PK3PYci+Ad0ujxJfnIPE7oN1QnFMG1hNNUiKi9xBaZZgl7WQ7wI
2/dnVlB/bDtJlyoisIGjfkD0/aKOOeufAYjZ+UOpVpIz/qU2fHpXecC3r60EHVwx
MgWYVu5vNmMMgg==
-----END CERTIFICATE-----
Generated at Wed May 7 20:01:38 2025 by rpki-client