Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
File: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft (raw, json)
Hash identifier: Ra5Woej0Y9rNGyQ0m3pPPg1rKrKNQG/VAHSdCQOtEl4=
Subject key identifier: 13:28:D3:BD:F6:21:04:DC:24:51:5B:C8:75:A8:0D:B4:38:7D:81:6D
Authority key identifier: D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
Certificate issuer: /CN=d97a77930122879a766470df8d660c98442a9932
Certificate serial: 0196C5710ED20DA5E311C635E92233FF83FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
Manifest number: 10
Signing time: Mon 12 May 2025 17:00:42 +0000
Manifest this update: Mon 12 May 2025 17:00:42 +0000
Manifest next update: Tue 13 May 2025 17:00:42 +0000
Files and hashes: 1: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl (hash: PCIXiK9XjHk7JprxtAfvty2WVl69h1ptCnbwJyM3myw=)
2: S5EUbJYTzxxJENV_0aeZUeE3rIg.roa (hash: T5jerJgaOtnhTZeSwrYRIoeWoz09H+6q0RNXAeNm/yc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:71:0e:d2:0d:a5:e3:11:c6:35:e9:22:33:ff:83:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d97a77930122879a766470df8d660c98442a9932
Validity
Not Before: May 12 17:00:42 2025 GMT
Not After : May 13 17:00:42 2025 GMT
Subject: CN=1328d3bdf62104dc24515bc875a80db4387d816d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f0:e1:31:39:f9:10:d7:c2:08:4b:2a:c8:07:
4f:8a:40:eb:fa:ec:e7:3e:60:8e:8c:ff:ed:fd:52:
43:7a:c8:6e:f5:3c:34:66:5d:f0:61:38:84:57:01:
1c:65:85:91:7c:29:2b:3c:cd:56:90:ea:9c:f6:af:
db:8c:6a:2b:f5:c4:df:88:7d:0f:c6:e2:67:bb:03:
7a:9e:b2:f0:4a:47:19:1f:b3:34:56:7d:70:4d:41:
1a:b7:73:86:fb:96:ee:e5:12:f8:c7:db:a7:64:d6:
8a:e2:c1:1d:53:88:06:1e:68:0e:2a:cb:a8:f9:23:
fe:06:ea:ed:10:b7:7a:35:2a:89:53:8f:d1:d5:b3:
b9:d6:42:df:81:f5:14:ad:70:cb:08:90:b2:22:5c:
83:87:26:8e:4d:54:7a:69:ad:07:05:20:a0:14:e3:
94:e2:63:45:2c:1e:10:ec:4c:a7:0e:50:4b:00:b9:
c0:de:ce:df:f3:f9:1f:f8:ec:33:73:6c:78:a3:8d:
8c:67:7d:fa:b4:c8:b5:7e:47:ef:e6:06:83:bb:ea:
46:d9:97:df:49:14:f4:ed:b3:97:37:f8:ac:1e:89:
33:fe:3f:28:a6:44:6b:78:32:76:87:87:da:fa:2a:
b2:44:f9:2a:9c:a2:67:a0:38:1f:76:71:14:8d:af:
08:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:28:D3:BD:F6:21:04:DC:24:51:5B:C8:75:A8:0D:B4:38:7D:81:6D
X509v3 Authority Key Identifier:
keyid:D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:d0:14:a2:c4:19:09:a6:13:f1:42:ed:91:9a:bf:63:b5:47:
43:0b:86:c8:be:07:f9:e3:7f:f9:e3:40:46:dd:f5:4b:c3:62:
36:ae:dd:f0:5d:25:84:7d:ae:18:ab:30:32:64:80:84:2b:87:
f3:56:19:3d:79:ce:34:d6:10:3d:b4:8b:66:b4:93:5a:c3:5d:
fd:ea:f0:dd:34:10:4e:98:cc:a1:34:fa:33:73:88:9d:6b:fc:
8d:ae:cc:f8:a7:c7:c0:b7:03:06:cc:b9:83:35:eb:54:01:91:
08:d7:ee:ef:a0:11:67:75:75:d3:4d:cb:7d:2f:56:89:03:64:
80:7f:a8:d3:73:b0:84:35:6c:f8:6c:68:92:8b:9c:67:aa:e3:
c3:ce:74:09:8c:ea:7c:01:f3:05:40:b0:f9:a6:dd:1c:03:8f:
ed:cd:27:51:87:8f:5e:74:66:54:dd:d1:bc:64:88:21:53:2d:
36:a7:b8:1e:a1:3e:7d:4c:59:49:af:50:00:5b:4f:ab:cf:fd:
d0:05:fc:43:31:89:9d:62:7a:5e:be:8f:1b:87:c1:d6:36:aa:
49:63:19:98:d4:11:d5:1a:80:2f:c1:40:5d:53:14:3a:e9:8c:
31:e0:a5:f8:4b:9f:a5:42:37:f0:97:79:a0:99:cb:b8:24:3e:
ce:c0:27:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbFcQ7SDaXjEcY16SIz/4P8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5N2E3NzkzMDEyMjg3OWE3NjY0NzBkZjhkNjYwYzk4NDQy
YTk5MzIwHhcNMjUwNTEyMTcwMDQyWhcNMjUwNTEzMTcwMDQyWjAzMTEwLwYDVQQD
EygxMzI4ZDNiZGY2MjEwNGRjMjQ1MTViYzg3NWE4MGRiNDM4N2Q4MTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPDhMTn5ENfCCEsqyAdPikDr+uzn
PmCOjP/t/VJDeshu9Tw0Zl3wYTiEVwEcZYWRfCkrPM1WkOqc9q/bjGor9cTfiH0P
xuJnuwN6nrLwSkcZH7M0Vn1wTUEat3OG+5bu5RL4x9unZNaK4sEdU4gGHmgOKsuo
+SP+BurtELd6NSqJU4/R1bO51kLfgfUUrXDLCJCyIlyDhyaOTVR6aa0HBSCgFOOU
4mNFLB4Q7EynDlBLALnA3s7f8/kf+Owzc2x4o42MZ336tMi1fkfv5gaDu+pG2Zff
SRT07bOXN/isHokz/j8opkRreDJ2h4fa+iqyRPkqnKJnoDgfdnEUja8IRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBMo0732IQTcJFFbyHWoDbQ4fYFtMB8GA1UdIwQY
MBaAFNl6d5MBIoeadmRw341mDJhEKpkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlhwM2t3RWloNXAyWkhEZmpXWU1tRVFxbVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yYTQ5MjItNDM0Yi00N2IxLWIzMDQt
Y2Q0NTlhNjU3MjFiLzEvMlhwM2t3RWloNXAyWkhEZmpXWU1tRVFxbVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yYTQ5MjItNDM0Yi00N2IxLWIzMDQtY2Q0NTlhNjU3MjFi
LzEvMlhwM2t3RWloNXAyWkhEZmpXWU1tRVFxbVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWtAUosQZ
CaYT8ULtkZq/Y7VHQwuGyL4H+eN/+eNARt31S8NiNq7d8F0lhH2uGKswMmSAhCuH
81YZPXnONNYQPbSLZrSTWsNd/erw3TQQTpjMoTT6M3OInWv8ja7M+KfHwLcDBsy5
gzXrVAGRCNfu76ARZ3V1003LfS9WiQNkgH+o03OwhDVs+GxokoucZ6rjw850CYzq
fAHzBUCw+abdHAOP7c0nUYePXnRmVN3RvGSIIVMtNqe4HqE+fUxZSa9QAFtPq8/9
0AX8QzGJnWJ6Xr6PG4fB1jaqSWMZmNQR1RqAL8FAXVMUOumMMeCl+EufpUI38Jd5
oJnLuCQ+zsAnPg==
-----END CERTIFICATE-----
Generated at Mon May 12 22:08:07 2025 by rpki-client