Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
File: 2Hwy4kled0lvwgKzAxZLpAjl0SI.mft (raw, json)
Hash identifier: qW24hIy9puPdqAjNT6NEoaz8yRqymUJZUuP7YwTPpdc=
Subject key identifier: 07:5B:75:AF:97:A8:75:94:71:41:BE:3A:E8:99:C5:38:C3:AC:8C:37
Authority key identifier: D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
Certificate issuer: /CN=d87c32e2495e77496fc202b303164ba408e5d122
Certificate serial: 0196AFFBABBBBDCC56130D3170256312CD2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
Manifest number: 1428
Signing time: Thu 08 May 2025 13:00:28 +0000
Manifest this update: Thu 08 May 2025 13:00:28 +0000
Manifest next update: Fri 09 May 2025 13:00:28 +0000
Files and hashes: 1: 2Hwy4kled0lvwgKzAxZLpAjl0SI.crl (hash: xV41d0wbsEga3RD0Eo5YPwFqnq2zXPxHIVFw9gs46Dg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 13:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:fb:ab:bb:bd:cc:56:13:0d:31:70:25:63:12:cd:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87c32e2495e77496fc202b303164ba408e5d122
Validity
Not Before: May 8 13:00:28 2025 GMT
Not After : May 9 13:00:28 2025 GMT
Subject: CN=075b75af97a875947141be3ae899c538c3ac8c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c0:fd:60:e8:1a:6e:7d:de:fb:fc:92:cd:be:
22:61:78:3a:70:93:15:b1:23:44:df:a3:a3:73:42:
93:8b:6f:9a:d6:ee:f7:55:fc:74:26:65:4d:d0:c5:
98:8b:5f:cd:81:6a:fd:d5:f7:e7:bc:02:b5:3e:00:
e8:a3:74:21:9c:73:26:cd:23:d1:5f:7c:35:73:32:
3a:26:21:b9:a4:9b:58:c9:a4:de:8a:c1:0a:95:c2:
ab:50:7b:6b:b9:a2:19:30:e7:31:ac:25:54:c0:b6:
54:68:87:5b:74:ea:4a:f5:25:a1:52:8d:cc:09:03:
f8:21:0d:fb:71:90:1f:67:99:0e:e0:54:e4:4d:3b:
f2:f6:e0:98:fa:db:33:08:2a:b1:c0:a7:b4:58:26:
51:3a:9f:bd:e6:4c:25:3a:9e:a2:98:6d:93:56:6a:
3d:4c:c2:49:51:7d:ad:51:92:05:16:21:1f:10:25:
eb:a9:41:8a:15:ed:52:9b:db:52:30:41:b7:c4:27:
ff:45:89:40:7f:cd:d6:05:ba:bd:f4:f4:3a:a4:db:
e2:c0:19:fe:9f:57:e4:b2:20:21:21:56:5c:6b:bf:
15:9e:2c:da:53:e3:f6:51:df:c1:00:9e:e3:9c:08:
f6:76:97:fc:7c:dd:14:ab:a4:f9:06:a1:e4:01:d8:
c5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5B:75:AF:97:A8:75:94:71:41:BE:3A:E8:99:C5:38:C3:AC:8C:37
X509v3 Authority Key Identifier:
keyid:D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:84:87:d0:a9:ae:87:ed:a8:c1:53:b4:e7:30:fa:a2:5a:bc:
ef:ff:9c:73:08:56:b4:63:77:69:bb:84:45:e9:1b:f3:2b:0c:
a9:4e:e7:e9:c5:fc:76:46:9d:8b:56:75:6a:8c:96:d7:4d:5c:
51:a2:1f:71:b3:dc:18:67:7e:0d:10:15:3a:9c:15:5d:cd:a7:
b8:98:1e:ec:73:b7:33:93:e9:e4:86:95:66:5d:fe:5f:88:59:
32:a2:24:15:d2:be:9b:d2:d1:89:f1:a7:9e:94:95:59:f3:19:
61:43:fa:08:82:a4:af:74:84:9a:77:a6:2d:d2:4a:c8:bc:c5:
16:01:13:f6:f9:78:44:33:fd:3e:ba:bb:2e:42:bf:dd:29:55:
27:4a:a9:58:c6:88:0f:72:d1:fb:51:76:80:92:f2:0e:64:f7:
59:94:6c:68:e4:5f:b8:65:51:6f:a4:d4:49:c7:b6:20:b5:d3:
a0:dc:21:68:75:54:c9:16:bb:e0:3a:da:8e:66:72:64:90:81:
6a:4b:85:4b:d6:1c:e5:f0:04:9e:4b:89:94:9b:fc:c8:a3:a8:
0a:6b:9c:68:85:46:56:52:8e:d8:ea:d9:7b:43:7f:7f:14:33:
3c:be:33:3b:04:08:b3:e1:85:cb:19:b2:fd:9b:86:d3:0c:52:
ff:6d:1a:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZav+6u7vcxWEw0xcCVjEs0uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4N2MzMmUyNDk1ZTc3NDk2ZmMyMDJiMzAzMTY0YmE0MDhl
NWQxMjIwHhcNMjUwNTA4MTMwMDI4WhcNMjUwNTA5MTMwMDI4WjAzMTEwLwYDVQQD
EygwNzViNzVhZjk3YTg3NTk0NzE0MWJlM2FlODk5YzUzOGMzYWM4YzM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08D9YOgabn3e+/ySzb4iYXg6cJMV
sSNE36Ojc0KTi2+a1u73Vfx0JmVN0MWYi1/NgWr91ffnvAK1PgDoo3QhnHMmzSPR
X3w1czI6JiG5pJtYyaTeisEKlcKrUHtruaIZMOcxrCVUwLZUaIdbdOpK9SWhUo3M
CQP4IQ37cZAfZ5kO4FTkTTvy9uCY+tszCCqxwKe0WCZROp+95kwlOp6imG2TVmo9
TMJJUX2tUZIFFiEfECXrqUGKFe1Sm9tSMEG3xCf/RYlAf83WBbq99PQ6pNviwBn+
n1fksiAhIVZca78VnizaU+P2Ud/BAJ7jnAj2dpf8fN0Uq6T5BqHkAdjFowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAdbda+XqHWUcUG+OuiZxTjDrIw3MB8GA1UdIwQY
MBaAFNh8MuJJXndJb8ICswMWS6QI5dEiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8xZTE5MWUtMTEzYy00NDMzLWFlZjAt
NzI0M2I5ODRhNjE1LzEvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy8xZTE5MWUtMTEzYy00NDMzLWFlZjAtNzI0M2I5ODRhNjE1
LzEvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYISH0Kmu
h+2owVO05zD6olq87/+ccwhWtGN3abuERekb8ysMqU7n6cX8dkadi1Z1aoyW101c
UaIfcbPcGGd+DRAVOpwVXc2nuJge7HO3M5Pp5IaVZl3+X4hZMqIkFdK+m9LRifGn
npSVWfMZYUP6CIKkr3SEmnemLdJKyLzFFgET9vl4RDP9Prq7LkK/3SlVJ0qpWMaI
D3LR+1F2gJLyDmT3WZRsaORfuGVRb6TUSce2ILXToNwhaHVUyRa74DrajmZyZJCB
akuFS9Yc5fAEnkuJlJv8yKOoCmucaIVGVlKO2OrZe0N/fxQzPL4zOwQIs+GFyxmy
/ZuG0wxS/20aSA==
-----END CERTIFICATE-----
Generated at Thu May 8 22:07:32 2025 by rpki-client