Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
File: 2fhm-wqoOicaDLfckDAYjInSPl0.mft (raw, json)
Hash identifier: PU8rccHbAp/2nHObfK4TPJEWgvWYuKHIXygtYGwcTT8=
Subject key identifier: F3:FF:49:7A:9A:10:79:A0:4C:74:62:6C:F0:64:68:FA:03:E9:57:F2
Authority key identifier: D9:F8:66:FB:0A:A8:3A:27:1A:0C:B7:DC:90:30:18:8C:89:D2:3E:5D
Certificate issuer: /CN=d9f866fb0aa83a271a0cb7dc9030188c89d23e5d
Certificate serial: 0197B5FBD22630728E9C4EB8FC2F1511B79B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 10:01:08 +0000
Manifest this update: Sat 28 Jun 2025 10:01:08 +0000
Manifest next update: Sun 29 Jun 2025 10:01:08 +0000
Files and hashes: 1: 2fhm-wqoOicaDLfckDAYjInSPl0.crl (hash: YBI8223L7/KyBfT32+5GIJKFuit2mAFhDyBPBiMQkho=)
2: vaJcnuFh_402kJ74_w8V8zEZMEQ.roa (hash: zHT9dPUYaVKrJVgWZffBYu4o6dMRl6TWrXRAFSRU0bA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:d2:26:30:72:8e:9c:4e:b8:fc:2f:15:11:b7:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f866fb0aa83a271a0cb7dc9030188c89d23e5d
Validity
Not Before: Jun 28 10:01:08 2025 GMT
Not After : Jun 29 10:01:08 2025 GMT
Subject: CN=f3ff497a9a1079a04c74626cf06468fa03e957f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9b:d4:b7:8e:b3:e4:0d:6c:22:7d:c4:a8:e5:
24:72:db:7a:2b:72:74:fe:ba:53:c2:69:89:26:1b:
66:be:7e:98:d4:fd:d0:79:f6:99:27:18:e7:28:32:
38:3d:25:f9:32:e8:34:07:73:1a:c1:19:ac:9a:6a:
97:36:ab:6b:be:0c:a5:71:45:2d:9f:4d:5a:d2:44:
8f:96:cc:d0:c6:20:94:82:f1:bf:9d:4b:01:9c:d7:
97:71:9d:75:55:4b:a1:d1:08:4d:52:5f:60:c2:01:
e2:3e:9c:01:bc:35:92:a8:c3:bf:3f:1c:14:c4:a8:
2d:3d:10:2a:51:ed:21:b1:e0:ec:be:c3:c5:0a:f4:
02:fe:41:cf:43:14:eb:3b:f0:9e:25:39:3d:95:42:
d7:84:cd:71:04:0d:4e:f5:4c:f2:a0:d3:16:97:fb:
aa:d1:64:59:f4:36:f7:59:16:09:b9:65:74:9d:3e:
60:a7:dd:31:c6:fe:76:da:31:3a:68:05:94:4e:cf:
ba:38:9e:b7:ff:14:ce:36:07:bd:29:87:db:4e:e5:
4c:99:cd:fd:3c:52:9c:7a:ef:68:f6:f6:e0:26:6c:
e6:8e:c5:79:b0:3e:fc:52:5c:ce:ad:c6:ec:6f:3f:
00:56:83:4d:04:80:94:6c:3f:14:9f:db:bb:7c:96:
ab:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:FF:49:7A:9A:10:79:A0:4C:74:62:6C:F0:64:68:FA:03:E9:57:F2
X509v3 Authority Key Identifier:
keyid:D9:F8:66:FB:0A:A8:3A:27:1A:0C:B7:DC:90:30:18:8C:89:D2:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:a3:ea:49:36:fd:ce:83:d0:78:d9:5f:6f:23:79:4b:5e:de:
7c:c3:87:08:84:52:09:b9:2f:5c:51:e7:f7:97:bc:61:d2:b5:
9d:99:d4:6d:e9:16:b4:5d:30:1f:93:2a:a2:e3:22:38:f9:38:
e1:d8:0c:dd:f2:e7:95:4c:ba:8c:82:fd:73:be:17:f2:7a:d3:
2f:b8:7b:d2:d1:0f:3b:26:75:28:7b:c5:0f:64:95:0e:94:d4:
f5:91:1c:c7:12:df:f2:6a:75:5e:db:ac:6d:b1:2c:3c:02:2d:
c8:3c:ff:b3:32:a5:11:ab:57:a5:84:c2:b3:a8:26:db:37:9d:
07:4a:d1:77:3c:77:8c:11:e1:e9:0e:52:6f:5f:06:74:77:f8:
ff:19:8f:71:ef:93:7f:9f:c3:3e:25:22:ae:d0:d9:c4:c8:86:
da:8b:16:96:c6:6a:0e:ad:6f:dd:54:ad:89:08:1c:5e:e6:16:
af:e4:f2:ff:49:9f:5c:c4:8e:21:23:2c:29:26:71:f1:c1:90:
21:50:4c:62:19:ea:04:54:28:29:7b:9c:f4:fb:d0:01:81:c5:
14:c2:a3:ac:f1:1d:91:7d:71:ff:ed:87:29:fd:74:10:c4:74:
a1:04:d9:d9:00:ec:66:12:cb:24:86:b1:ca:01:70:96:31:35:
c5:19:8a:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe1+9ImMHKOnE64/C8VEbebMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5Zjg2NmZiMGFhODNhMjcxYTBjYjdkYzkwMzAxODhjODlk
MjNlNWQwHhcNMjUwNjI4MTAwMTA4WhcNMjUwNjI5MTAwMTA4WjAzMTEwLwYDVQQD
EyhmM2ZmNDk3YTlhMTA3OWEwNGM3NDYyNmNmMDY0NjhmYTAzZTk1N2YyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZvUt46z5A1sIn3EqOUkctt6K3J0
/rpTwmmJJhtmvn6Y1P3QefaZJxjnKDI4PSX5Mug0B3MawRmsmmqXNqtrvgylcUUt
n01a0kSPlszQxiCUgvG/nUsBnNeXcZ11VUuh0QhNUl9gwgHiPpwBvDWSqMO/PxwU
xKgtPRAqUe0hseDsvsPFCvQC/kHPQxTrO/CeJTk9lULXhM1xBA1O9UzyoNMWl/uq
0WRZ9Db3WRYJuWV0nT5gp90xxv522jE6aAWUTs+6OJ63/xTONge9KYfbTuVMmc39
PFKceu9o9vbgJmzmjsV5sD78UlzOrcbsbz8AVoNNBICUbD8Un9u7fJaraQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPP/SXqaEHmgTHRibPBkaPoD6VfyMB8GA1UdIwQY
MBaAFNn4ZvsKqDonGgy33JAwGIyJ0j5dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmZobS13cW9PaWNhRExmY2tEQVlqSW5TUGwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS81MjczYTQtMTBjOC00MGJmLWIyNGYt
NWMxZDVhNjk5MmQ4LzEvMmZobS13cW9PaWNhRExmY2tEQVlqSW5TUGwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS81MjczYTQtMTBjOC00MGJmLWIyNGYtNWMxZDVhNjk5MmQ4
LzEvMmZobS13cW9PaWNhRExmY2tEQVlqSW5TUGwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi6PqSTb9
zoPQeNlfbyN5S17efMOHCIRSCbkvXFHn95e8YdK1nZnUbekWtF0wH5MqouMiOPk4
4dgM3fLnlUy6jIL9c74X8nrTL7h70tEPOyZ1KHvFD2SVDpTU9ZEcxxLf8mp1Xtus
bbEsPAItyDz/szKlEatXpYTCs6gm2zedB0rRdzx3jBHh6Q5Sb18GdHf4/xmPce+T
f5/DPiUirtDZxMiG2osWlsZqDq1v3VStiQgcXuYWr+Ty/0mfXMSOISMsKSZx8cGQ
IVBMYhnqBFQoKXuc9PvQAYHFFMKjrPEdkX1x/+2HKf10EMR0oQTZ2QDsZhLLJIax
ygFwljE1xRmKyg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:50:34 2025 by rpki-client