Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
File: 2wU2Dphzgl911nHa8WJKUumFOQw.mft (raw, json)
Hash identifier: vHCsmkFE1iKoVla/ot6nq6q8IOb2LsJGjimKF5ZRijQ=
Subject key identifier: 0A:AC:B4:A4:7A:CA:A9:59:F6:A3:FA:67:97:E0:4F:C7:87:C6:50:FA
Authority key identifier: DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
Certificate issuer: /CN=db05360e9873825f75d671daf1624a52e985390c
Certificate serial: 0197B820C111BCD3A69A26B7750FD07265F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
Manifest number: 3E
Signing time: Sat 28 Jun 2025 20:00:43 +0000
Manifest this update: Sat 28 Jun 2025 20:00:43 +0000
Manifest next update: Sun 29 Jun 2025 20:00:43 +0000
Files and hashes: 1: 2wU2Dphzgl911nHa8WJKUumFOQw.crl (hash: Raxvjp3ubpi3jFuKt3pCTkbQV9YZLPTNkOgCXDxLxbc=)
2: dT_BFnqui1qPfatUh1gogWMYRho.roa (hash: Znmqpd0eQxFE3KRHa1gq7DMVat4pWLiZVr8QQEm1djI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:c1:11:bc:d3:a6:9a:26:b7:75:0f:d0:72:65:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db05360e9873825f75d671daf1624a52e985390c
Validity
Not Before: Jun 28 20:00:43 2025 GMT
Not After : Jun 29 20:00:43 2025 GMT
Subject: CN=0aacb4a47acaa959f6a3fa6797e04fc787c650fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b6:48:b9:68:88:fe:8a:80:30:99:9e:e3:18:
f8:62:66:a8:a9:5f:a4:8b:f6:bf:df:6b:46:bf:ec:
f2:7e:51:71:ea:2f:ae:67:36:19:62:f6:e4:e0:ab:
58:0c:dd:6f:c7:0c:eb:1f:21:8b:d1:cd:17:98:ab:
e9:0f:ae:db:9a:75:77:d3:39:32:89:49:8a:fc:c3:
32:d0:d1:f2:5c:7b:b8:e1:4c:4d:32:74:8f:85:63:
be:03:8c:a3:f4:bc:d5:a8:ce:38:57:8e:22:83:e1:
85:1f:50:54:72:92:1e:7b:62:a9:ab:0e:b7:29:f5:
03:4c:46:ba:7f:6a:74:aa:0b:27:2d:b0:a9:c9:ed:
66:c2:d7:78:50:e8:db:4f:9b:2d:9b:6f:12:15:e2:
58:ad:65:9a:37:f9:65:bf:7f:2b:f8:ec:ae:7e:54:
b4:17:94:2e:32:e9:b0:ac:00:59:1f:5d:f6:49:5b:
b7:20:5e:ec:4d:c5:6a:05:e4:f1:36:6a:e3:04:94:
a2:9c:22:75:5a:14:e8:49:09:19:d6:ee:13:13:bd:
ad:7d:06:f5:79:0c:d4:f7:55:7d:e5:e3:d6:df:d6:
28:07:d2:d4:38:81:b9:46:78:ce:37:05:c6:29:27:
a6:7b:c6:db:a8:93:9f:ac:33:90:5c:e9:f2:45:fe:
35:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:AC:B4:A4:7A:CA:A9:59:F6:A3:FA:67:97:E0:4F:C7:87:C6:50:FA
X509v3 Authority Key Identifier:
keyid:DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:8a:c4:42:8f:01:82:f8:aa:70:ed:af:7e:ec:d3:f7:2c:a3:
be:34:74:d6:93:40:ca:74:e6:08:ed:82:2f:28:a9:5b:54:5d:
04:50:60:90:9e:3a:a4:6f:82:37:74:9a:ea:27:71:4b:66:c8:
c1:30:7f:ac:df:c2:0b:fa:cd:30:f3:c7:39:04:4f:7e:72:d2:
06:24:d1:ca:e9:b2:06:cb:15:24:9c:67:d0:27:72:9f:e1:6d:
22:a7:73:b9:d7:45:5d:a9:89:ec:b2:31:86:e9:4f:8f:44:10:
20:24:75:23:d0:ef:e6:30:d4:e8:da:7a:9d:28:2b:5b:09:68:
29:d8:f4:56:c3:7c:2b:af:5f:ff:f8:d4:d4:9c:0f:a5:ff:71:
5e:6a:65:b9:18:db:e3:27:5c:a1:3b:a8:f1:aa:66:a5:56:c3:
cd:1e:47:87:57:bd:e8:43:10:9e:13:e5:2d:71:c0:20:b3:33:
ce:5f:22:c1:01:8b:42:83:75:e7:5b:52:00:db:fa:62:16:43:
f5:86:5c:1a:ed:75:4a:a2:c9:51:3f:88:d6:e2:ec:1e:2b:7c:
35:04:f9:6a:30:30:f5:5b:61:fe:ea:ff:3a:3e:45:78:d2:d3:
15:32:e8:87:0d:c4:ae:bb:f7:c1:55:f1:5e:4a:cd:17:3d:2f:
19:1c:ad:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4IMERvNOmmia3dQ/QcmXzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMDUzNjBlOTg3MzgyNWY3NWQ2NzFkYWYxNjI0YTUyZTk4
NTM5MGMwHhcNMjUwNjI4MjAwMDQzWhcNMjUwNjI5MjAwMDQzWjAzMTEwLwYDVQQD
EygwYWFjYjRhNDdhY2FhOTU5ZjZhM2ZhNjc5N2UwNGZjNzg3YzY1MGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7ZIuWiI/oqAMJme4xj4YmaoqV+k
i/a/32tGv+zyflFx6i+uZzYZYvbk4KtYDN1vxwzrHyGL0c0XmKvpD67bmnV30zky
iUmK/MMy0NHyXHu44UxNMnSPhWO+A4yj9LzVqM44V44ig+GFH1BUcpIee2Kpqw63
KfUDTEa6f2p0qgsnLbCpye1mwtd4UOjbT5stm28SFeJYrWWaN/llv38r+OyuflS0
F5QuMumwrABZH132SVu3IF7sTcVqBeTxNmrjBJSinCJ1WhToSQkZ1u4TE72tfQb1
eQzU91V95ePW39YoB9LUOIG5RnjONwXGKSeme8bbqJOfrDOQXOnyRf41/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAqstKR6yqlZ9qP6Z5fgT8eHxlD6MB8GA1UdIwQY
MBaAFNsFNg6Yc4JfddZx2vFiSlLphTkMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS84ZmMxZTItNDFkNy00ZjM1LWExM2Ut
ZDYyZDIyNGUzY2FmLzEvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS84ZmMxZTItNDFkNy00ZjM1LWExM2UtZDYyZDIyNGUzY2Fm
LzEvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXorEQo8B
gviqcO2vfuzT9yyjvjR01pNAynTmCO2CLyipW1RdBFBgkJ46pG+CN3Sa6idxS2bI
wTB/rN/CC/rNMPPHOQRPfnLSBiTRyumyBssVJJxn0Cdyn+FtIqdzuddFXamJ7LIx
hulPj0QQICR1I9Dv5jDU6Np6nSgrWwloKdj0VsN8K69f//jU1JwPpf9xXmpluRjb
4ydcoTuo8apmpVbDzR5Hh1e96EMQnhPlLXHAILMzzl8iwQGLQoN151tSANv6YhZD
9YZcGu11SqLJUT+I1uLsHit8NQT5ajAw9Vth/ur/Oj5FeNLTFTLohw3Errv3wVXx
XkrNFz0vGRytlA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:41:34 2025 by rpki-client