Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
File: 2yNWAARVt7WJTO0UaYWgqIifnkw.mft (raw, json)
Hash identifier: 9nDubBzpUOlZdh/mcoSAK5LI0kxMywPVIRqJmRB3VUU=
Subject key identifier: D6:9D:0C:07:62:33:97:70:05:50:1E:59:D4:C1:BE:50:85:E4:19:51
Authority key identifier: DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
Certificate issuer: /CN=db2356000455b7b5894ced146985a0a8889f9e4c
Certificate serial: 019674C2B78B39638BE6BBEE6A8ACFE1763E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
Manifest number: 1329
Signing time: Sun 27 Apr 2025 01:00:40 +0000
Manifest this update: Sun 27 Apr 2025 01:00:40 +0000
Manifest next update: Mon 28 Apr 2025 01:00:40 +0000
Files and hashes: 1: 2yNWAARVt7WJTO0UaYWgqIifnkw.crl (hash: ZjuEj7gmuHBVfec1gMzaBmxFw4d4LAZTdeABEWkoJvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:c2:b7:8b:39:63:8b:e6:bb:ee:6a:8a:cf:e1:76:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2356000455b7b5894ced146985a0a8889f9e4c
Validity
Not Before: Apr 27 01:00:40 2025 GMT
Not After : Apr 28 01:00:40 2025 GMT
Subject: CN=d69d0c076233977005501e59d4c1be5085e41951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a4:be:7c:4f:e6:1f:fd:b5:5f:4c:6e:59:fd:
62:75:44:98:48:55:6f:a5:05:32:d4:45:a0:31:0b:
92:0b:f0:71:d1:ef:c5:84:c2:ef:9d:c5:8a:d4:18:
a6:cc:15:ae:3a:f9:22:dd:e2:fe:75:ca:f1:a1:c9:
47:b2:ce:c0:ba:a8:ad:d3:f6:51:7f:05:2d:8d:3d:
c4:d9:a2:86:e1:31:4d:8d:db:03:3c:15:02:a1:8b:
a7:cb:51:09:33:14:c2:14:29:63:13:dd:51:6f:00:
3a:b6:01:99:70:c8:9c:d5:6e:29:52:10:5a:a2:a5:
15:f2:10:c2:23:ed:57:0e:b7:43:4b:b1:a8:c2:1d:
f5:d2:83:3a:c4:f3:66:70:47:3e:d4:c8:57:b9:30:
41:ea:7a:c0:6b:61:84:28:51:9a:60:c3:c8:b0:7b:
ab:05:68:45:bb:ff:18:88:3f:fe:35:e2:23:86:c0:
43:7a:3f:ad:bc:84:3e:96:2a:28:fd:6e:0e:f8:cf:
c4:c2:07:9a:58:22:92:9e:2e:a1:a1:d7:37:54:ae:
4d:3e:1d:3b:f9:bd:cb:91:20:00:fe:ec:69:b9:52:
ff:a3:06:5b:b9:5d:49:78:ce:06:d8:27:d6:02:d8:
2e:76:c2:78:11:cf:b8:ac:1f:c5:06:ad:21:27:89:
22:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:9D:0C:07:62:33:97:70:05:50:1E:59:D4:C1:BE:50:85:E4:19:51
X509v3 Authority Key Identifier:
keyid:DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:51:7a:e2:40:ce:a5:1f:a6:01:67:5d:45:ca:47:e6:7d:6f:
c8:c8:62:f6:fa:35:25:28:06:2b:48:f2:89:fa:02:fe:e4:b4:
c5:5d:69:1d:0f:2d:9f:c1:5e:a7:2a:f3:b0:65:88:95:0c:66:
86:da:18:6f:e7:d5:e3:73:5c:8f:9b:36:ae:a1:6c:a5:fe:f2:
8a:db:90:6e:c1:03:8a:ce:65:f1:7a:31:fa:e2:0d:60:db:d9:
02:f5:ea:b0:42:e7:f1:db:b6:40:39:59:9b:79:7f:d9:38:23:
9e:2c:b2:ac:9f:ab:57:6b:83:5a:0b:2a:8d:68:ba:1c:f0:a7:
fd:cf:d9:d1:1c:e8:d2:b2:42:f7:04:e9:27:ab:c8:cc:58:6c:
92:a1:d9:db:31:c5:32:f4:f2:b9:9d:37:50:6c:f8:33:d1:92:
5f:64:71:8f:f8:4e:cd:a5:63:88:eb:7f:e6:75:69:c4:06:46:
0f:3b:5c:89:5a:88:b3:5a:a9:42:16:0f:2a:6e:ef:7c:07:f7:
95:9a:fd:e8:1f:52:35:17:dd:43:92:5e:d3:c1:76:12:e3:36:
ec:f2:fb:28:ee:7c:1e:2c:96:0b:69:4e:e9:fa:c2:9e:1c:5d:
3c:62:d1:b5:96:c2:1d:af:b3:b3:fd:b3:6b:80:0d:c7:1b:55:
9b:a3:2f:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0wreLOWOL5rvuaorP4XY+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMjM1NjAwMDQ1NWI3YjU4OTRjZWQxNDY5ODVhMGE4ODg5
ZjllNGMwHhcNMjUwNDI3MDEwMDQwWhcNMjUwNDI4MDEwMDQwWjAzMTEwLwYDVQQD
EyhkNjlkMGMwNzYyMzM5NzcwMDU1MDFlNTlkNGMxYmU1MDg1ZTQxOTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaS+fE/mH/21X0xuWf1idUSYSFVv
pQUy1EWgMQuSC/Bx0e/FhMLvncWK1BimzBWuOvki3eL+dcrxoclHss7Auqit0/ZR
fwUtjT3E2aKG4TFNjdsDPBUCoYuny1EJMxTCFCljE91RbwA6tgGZcMic1W4pUhBa
oqUV8hDCI+1XDrdDS7Gowh310oM6xPNmcEc+1MhXuTBB6nrAa2GEKFGaYMPIsHur
BWhFu/8YiD/+NeIjhsBDej+tvIQ+lioo/W4O+M/EwgeaWCKSni6hodc3VK5NPh07
+b3LkSAA/uxpuVL/owZbuV1JeM4G2CfWAtgudsJ4Ec+4rB/FBq0hJ4kiNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNadDAdiM5dwBVAeWdTBvlCF5BlRMB8GA1UdIwQY
MBaAFNsjVgAEVbe1iUztFGmFoKiIn55MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnlOV0FBUlZ0N1dKVE8wVWFZV2dxSWlmbmt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC85Yjg3ZjgtY2E5NC00ODNmLTg4ZWEt
NDg2MzkxMTQxMmZhLzEvMnlOV0FBUlZ0N1dKVE8wVWFZV2dxSWlmbmt3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC85Yjg3ZjgtY2E5NC00ODNmLTg4ZWEtNDg2MzkxMTQxMmZh
LzEvMnlOV0FBUlZ0N1dKVE8wVWFZV2dxSWlmbmt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlF64kDO
pR+mAWddRcpH5n1vyMhi9vo1JSgGK0jyifoC/uS0xV1pHQ8tn8FepyrzsGWIlQxm
htoYb+fV43Ncj5s2rqFspf7yituQbsEDis5l8Xox+uINYNvZAvXqsELn8du2QDlZ
m3l/2TgjniyyrJ+rV2uDWgsqjWi6HPCn/c/Z0Rzo0rJC9wTpJ6vIzFhskqHZ2zHF
MvTyuZ03UGz4M9GSX2Rxj/hOzaVjiOt/5nVpxAZGDztciVqIs1qpQhYPKm7vfAf3
lZr96B9SNRfdQ5Je08F2EuM27PL7KO58HiyWC2lO6frCnhxdPGLRtZbCHa+zs/2z
a4ANxxtVm6MvzQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:53:08 2025 by rpki-client