Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: OQsFlvhMIN2/dKsNokEEkdrlHDq5avvwsTuVSyhwa58=
Subject key identifier: DB:33:B3:2E:1D:D6:AA:62:28:3B:15:8A:8D:1E:EA:6D:72:42:3C:69
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 0196A49C4977D26E4AA09CA6F6785B49832F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 0287
Signing time: Tue 06 May 2025 08:00:27 +0000
Manifest this update: Tue 06 May 2025 08:00:27 +0000
Manifest next update: Wed 07 May 2025 08:00:27 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: A9lnKu5mMRxEAVkLOcod+Jy28NBk21SAi3RNjG8VUeE=)
2: xaTFNHvIwGFGt2nvvisSJGJJn1U.roa (hash: dncutlGZCp4ijfHdULe589Ce9+6dKbRvNV71t7mvtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:9c:49:77:d2:6e:4a:a0:9c:a6:f6:78:5b:49:83:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: May 6 08:00:27 2025 GMT
Not After : May 7 08:00:27 2025 GMT
Subject: CN=db33b32e1dd6aa62283b158a8d1eea6d72423c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:81:47:ce:10:c0:5f:69:7c:aa:25:a0:52:c4:
06:5b:03:65:1d:63:67:9e:ac:c3:2d:e7:35:67:75:
13:0a:1d:46:b3:fe:a7:02:e5:35:7e:c6:0e:f1:33:
58:5d:0f:bd:dc:df:be:bb:cc:50:da:a0:09:36:13:
01:74:01:3b:bb:eb:50:8c:4e:f4:19:1f:84:ae:b2:
59:c9:6b:bb:9c:d7:91:4d:8d:01:12:31:5f:f2:ab:
6f:69:49:4d:86:82:54:de:26:b3:a8:94:51:a9:5f:
54:4e:7c:6d:8b:30:9a:b9:a6:fd:b7:58:fa:90:88:
30:c7:14:e7:2f:ab:93:85:b9:af:33:8b:2b:9f:e9:
37:3d:13:46:d2:e4:11:79:49:6c:63:55:9b:cc:67:
98:27:3f:e4:37:8e:bb:ae:fc:d5:81:d4:f2:67:e0:
b6:04:c5:cd:d2:22:d7:00:2e:f4:6d:63:14:cc:9a:
d4:87:7d:2d:8c:06:52:37:0b:81:ce:e0:ed:0c:82:
df:84:bf:09:a5:6a:8a:1e:15:16:b5:6a:be:ca:ff:
dc:94:72:cb:c0:05:01:ba:67:a3:8a:a2:26:9b:fc:
74:3a:d4:26:f4:26:88:48:c4:4f:24:f9:99:f1:a2:
ad:08:67:ca:40:06:df:0c:57:f1:aa:5d:c7:29:6d:
06:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:33:B3:2E:1D:D6:AA:62:28:3B:15:8A:8D:1E:EA:6D:72:42:3C:69
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:d0:67:79:be:ab:1f:28:45:99:0b:cb:ca:29:94:81:13:4e:
4a:bd:2d:ca:42:0f:c8:04:5b:68:c5:aa:c2:ab:10:be:e4:b9:
96:c5:42:1b:e7:66:34:a3:cb:e1:bc:9c:28:ba:8f:e0:ee:07:
58:44:41:7f:3d:fe:41:42:ea:bf:4c:87:9d:76:07:2b:6b:b0:
98:6a:cf:2b:ff:99:6a:94:50:3e:e0:59:2b:f1:69:b1:f1:a8:
9c:37:89:4f:01:cb:9d:f9:7b:0a:d5:2b:94:6f:1d:69:c8:a4:
f3:bb:28:ff:7f:31:c4:86:00:6c:92:9e:08:2e:fb:4d:d2:64:
f0:87:c5:fe:38:93:92:5e:19:27:57:9d:a1:e7:f0:b5:ef:e5:
66:e1:ae:1a:53:e3:f2:ee:a8:3a:c5:f1:53:cc:f5:e6:f6:7b:
56:35:31:67:84:7f:91:e9:f1:f9:b5:3f:54:18:dd:07:57:55:
bb:3b:d1:e7:e3:53:3d:b6:66:a5:42:04:0b:80:0e:08:bd:e1:
8d:87:a8:70:4c:4b:ea:d2:bd:b7:ae:56:1f:d6:c2:87:08:3f:
a1:da:d0:56:cc:e5:62:df:f7:0a:61:38:96:e4:4f:1e:86:10:
3f:21:07:cf:ba:b9:29:63:88:19:df:a6:5f:31:02:13:98:59:
33:00:84:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaknEl30m5KoJym9nhbSYMvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NmI5YzE3NzhhMDUyOWVlN2UyMzIwMDNjYmU1Yzk5M2Mz
NmZkZGIwHhcNMjUwNTA2MDgwMDI3WhcNMjUwNTA3MDgwMDI3WjAzMTEwLwYDVQQD
EyhkYjMzYjMyZTFkZDZhYTYyMjgzYjE1OGE4ZDFlZWE2ZDcyNDIzYzY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYFHzhDAX2l8qiWgUsQGWwNlHWNn
nqzDLec1Z3UTCh1Gs/6nAuU1fsYO8TNYXQ+93N++u8xQ2qAJNhMBdAE7u+tQjE70
GR+ErrJZyWu7nNeRTY0BEjFf8qtvaUlNhoJU3iazqJRRqV9UTnxtizCauab9t1j6
kIgwxxTnL6uThbmvM4srn+k3PRNG0uQReUlsY1WbzGeYJz/kN467rvzVgdTyZ+C2
BMXN0iLXAC70bWMUzJrUh30tjAZSNwuBzuDtDILfhL8JpWqKHhUWtWq+yv/clHLL
wAUBumejiqImm/x0OtQm9CaISMRPJPmZ8aKtCGfKQAbfDFfxql3HKW0GFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNszsy4d1qpiKDsVio0e6m1yQjxpMB8GA1UdIwQY
MBaAFNhrnBd4oFKe5+IyADy+XJk8Nv3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkd1Y0YzaWdVcDduNGpJQVBMNWNtVHcyX2RzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC85NzBmOWEtOTQ4MC00ZmRkLWE0ZjQt
YTgwYTk1ZTVhMDk5LzEvMkd1Y0YzaWdVcDduNGpJQVBMNWNtVHcyX2RzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC85NzBmOWEtOTQ4MC00ZmRkLWE0ZjQtYTgwYTk1ZTVhMDk5
LzEvMkd1Y0YzaWdVcDduNGpJQVBMNWNtVHcyX2RzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhtBneb6r
HyhFmQvLyimUgRNOSr0tykIPyARbaMWqwqsQvuS5lsVCG+dmNKPL4bycKLqP4O4H
WERBfz3+QULqv0yHnXYHK2uwmGrPK/+ZapRQPuBZK/FpsfGonDeJTwHLnfl7CtUr
lG8dacik87so/38xxIYAbJKeCC77TdJk8IfF/jiTkl4ZJ1edoefwte/lZuGuGlPj
8u6oOsXxU8z15vZ7VjUxZ4R/kenx+bU/VBjdB1dVuzvR5+NTPbZmpUIEC4AOCL3h
jYeocExL6tK9t65WH9bChwg/odrQVszlYt/3CmE4luRPHoYQPyEHz7q5KWOIGd+m
XzECE5hZMwCEdw==
-----END CERTIFICATE-----
Generated at Tue May 6 11:17:12 2025 by rpki-client