Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: 3ZKRKAfAuTZ2MLy6YqXvpgdIhPLgLN74NiR4ijOApmk=
Subject key identifier: 38:9B:CE:ED:AD:AC:B7:64:F7:D8:EF:30:B0:34:E2:F6:84:E2:01:06
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 0196E758682D612FAD17E0C5085F0C68D872
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 136E
Signing time: Mon 19 May 2025 07:00:52 +0000
Manifest this update: Mon 19 May 2025 07:00:52 +0000
Manifest next update: Tue 20 May 2025 07:00:52 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: 02ByIEWCWtorC5u564gY07qrM59M3+lFMO/SAuGu5pg=)
2: qvV18edZ4nG1g9Z6XFGjfB91HGk.roa (hash: xA0FHg4k3qhHIOcw440t6o/vgKfLrTtDa1pgd5bBDMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 20 May 2025 07:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e7:58:68:2d:61:2f:ad:17:e0:c5:08:5f:0c:68:d8:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: May 19 07:00:52 2025 GMT
Not After : May 20 07:00:52 2025 GMT
Subject: CN=389bceedadacb764f7d8ef30b034e2f684e20106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2a:8e:b8:c7:6e:b2:d3:56:d8:ed:fe:30:5e:
10:61:93:b8:71:e8:ae:ec:50:00:82:e3:46:6b:41:
7d:7e:4e:09:4f:a7:d0:60:e9:86:97:54:91:64:34:
44:ce:00:28:7f:8a:52:aa:d2:df:42:fe:11:bf:3b:
02:d9:74:0f:72:c1:27:f3:29:d3:24:07:14:b4:f6:
bd:78:55:d9:1b:7e:92:f3:ba:56:4e:d1:71:47:70:
06:c1:13:00:ad:22:cb:67:53:cd:0a:d2:4f:22:0e:
7b:5a:a6:e8:e7:fd:9f:02:68:79:de:08:cc:b3:68:
aa:d9:f4:65:36:9a:89:d6:fe:e5:b4:ff:cd:7d:33:
df:8f:bc:62:eb:48:0a:e3:ba:1a:24:bd:7d:fa:47:
d6:5e:a0:91:29:66:41:79:5a:e2:d4:aa:5a:b8:86:
ee:0a:79:49:81:ee:f2:bb:4b:4f:86:da:67:46:5d:
ed:a5:d8:64:4d:f9:a9:38:d4:4d:ea:75:3d:55:f9:
14:2d:fa:97:0c:76:dc:b0:a8:50:46:4c:87:05:ba:
9d:60:24:91:b0:28:60:4e:9b:36:df:e4:a8:a4:3f:
31:38:53:cc:06:5d:a3:58:b9:6c:3b:42:8a:1a:b4:
83:fe:d2:39:3d:7f:d6:7c:e6:8f:16:6a:49:47:b3:
b2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9B:CE:ED:AD:AC:B7:64:F7:D8:EF:30:B0:34:E2:F6:84:E2:01:06
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:2f:74:d7:ba:60:23:da:61:d3:b5:df:3e:6f:2c:c6:ea:3f:
0d:32:a6:d5:bc:0a:6d:a0:b5:c9:03:f4:e1:df:28:34:de:8b:
3d:1d:52:d0:d1:5f:d3:80:98:5b:4f:9c:29:fa:5b:75:1f:88:
5d:57:30:51:17:2e:be:d1:3c:8b:d3:f6:09:58:25:fb:96:c1:
4f:16:e3:c4:b1:64:a8:e3:60:71:1c:4b:16:62:11:39:8d:fa:
b3:73:20:09:b7:d5:a4:d6:21:21:4c:8f:6a:95:c7:0f:46:09:
2a:70:cd:e0:45:9c:d4:31:35:5b:cf:2a:9d:a5:21:56:4f:8a:
64:fb:25:c3:99:50:e1:38:85:ba:5f:3e:6c:84:88:34:6b:65:
dd:39:4f:8c:45:3b:7c:09:43:03:70:91:b3:be:8c:ea:7c:26:
5b:28:c4:95:59:ec:81:a9:e8:4f:b9:87:09:9a:3d:58:9e:a1:
d1:1c:7d:ac:23:be:2e:6a:58:80:07:78:2a:50:d5:f1:30:57:
05:5c:aa:04:a8:3d:bb:b6:47:9c:d8:73:bc:3f:18:6b:e1:4e:
07:26:af:77:2e:dc:56:58:01:f8:d1:91:af:9b:09:e0:c3:e1:
b3:fe:22:33:df:f6:cd:46:1c:4a:84:7a:27:c4:36:05:0d:1e:
8d:0a:46:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbnWGgtYS+tF+DFCF8MaNhyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZmI5NmVhM2FmNTFjNTMyZDdlOGZlOGM5NDM3NmY1MWUx
ZWE0MDIwHhcNMjUwNTE5MDcwMDUyWhcNMjUwNTIwMDcwMDUyWjAzMTEwLwYDVQQD
EygzODliY2VlZGFkYWNiNzY0ZjdkOGVmMzBiMDM0ZTJmNjg0ZTIwMTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5iqOuMdustNW2O3+MF4QYZO4ceiu
7FAAguNGa0F9fk4JT6fQYOmGl1SRZDREzgAof4pSqtLfQv4RvzsC2XQPcsEn8ynT
JAcUtPa9eFXZG36S87pWTtFxR3AGwRMArSLLZ1PNCtJPIg57Wqbo5/2fAmh53gjM
s2iq2fRlNpqJ1v7ltP/NfTPfj7xi60gK47oaJL19+kfWXqCRKWZBeVri1KpauIbu
CnlJge7yu0tPhtpnRl3tpdhkTfmpONRN6nU9VfkULfqXDHbcsKhQRkyHBbqdYCSR
sChgTps23+SopD8xOFPMBl2jWLlsO0KKGrSD/tI5PX/WfOaPFmpJR7OygQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDibzu2trLdk99jvMLA04vaE4gEGMB8GA1UdIwQY
MBaAFNj7luo69RxTLX6P6MlDdvUeHqQCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzIt
OGViODVlMzI4M2UyLzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS81M2ZmYTAtOTA2MC00NzJjLWFhYzItOGViODVlMzI4M2Uy
LzEvMlB1VzZqcjFIRk10Zm9fb3lVTjI5UjRlcEFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPy9017pg
I9ph07XfPm8sxuo/DTKm1bwKbaC1yQP04d8oNN6LPR1S0NFf04CYW0+cKfpbdR+I
XVcwURcuvtE8i9P2CVgl+5bBTxbjxLFkqONgcRxLFmIROY36s3MgCbfVpNYhIUyP
apXHD0YJKnDN4EWc1DE1W88qnaUhVk+KZPslw5lQ4TiFul8+bISINGtl3TlPjEU7
fAlDA3CRs76M6nwmWyjElVnsganoT7mHCZo9WJ6h0Rx9rCO+LmpYgAd4KlDV8TBX
BVyqBKg9u7ZHnNhzvD8Ya+FOByavdy7cVlgB+NGRr5sJ4MPhs/4iM9/2zUYcSoR6
J8Q2BQ0ejQpGqQ==
-----END CERTIFICATE-----
Generated at Mon May 19 16:48:01 2025 by rpki-client