Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json)
Hash identifier: wVNFKqFlqVFtlAXPcLRIKLq+vECRPbGsc0KZrDxq4T4=
Subject key identifier: D7:E2:BA:AF:D2:22:E1:DA:78:D5:59:F1:F6:FF:2C:E7:01:30:1F:D3
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 01976BF40DCDE265062620DCFBAB263CA7F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
Manifest number: 159F
Signing time: Sat 14 Jun 2025 01:00:45 +0000
Manifest this update: Sat 14 Jun 2025 01:00:45 +0000
Manifest next update: Sun 15 Jun 2025 01:00:45 +0000
Files and hashes: 1: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: zcwpX1koNqdkXoSZYvmY/iB875Pu6B8T9FngAjvduD4=)
2: QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa (hash: xjQoVVO98cxf92eXukztlmvd0mAJHZVRoWG3GH3edIU=)
3: RZQ5y55NZ91q7qGueZI2kyy2lHI.roa (hash: s/DyWvu0J1swkDaWXLLyRdJ0euIh4+uqvas0DU4Xq7I=)
4: noQO1tLrNCKz3bIWnBbDMmvuYLg.roa (hash: hYTtEju7KkB6LYquIBvGjeZyYymRK8/pFRz4XyGZMT8=)
5: qWeBIgMT9yofaevmnsJv-k3J7gM.roa (hash: OVmNg3h2HayVISC+svzIkwU6u8HmPx4SN/OehOmAqgY=)
6: qq3OJ7E8FdGE4BJdu3ZOq4LInY8.roa (hash: jyVlOFzMs6a5a3ty01oIP3DwXzFAJhXu3CIHkhRdIo8=)
7: v5y-XO_c3BUL4I2vKl0yvM3sR48.roa (hash: job18wRUBRjomyukO0QxaFg1pEdwxYB+4rsX0iFAoJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:0d:cd:e2:65:06:26:20:dc:fb:ab:26:3c:a7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Jun 14 01:00:45 2025 GMT
Not After : Jun 15 01:00:45 2025 GMT
Subject: CN=d7e2baafd222e1da78d559f1f6ff2ce701301fd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cb:6a:02:b0:96:ba:cc:1c:82:e2:4a:bf:47:
a3:60:85:1b:a3:0e:35:7c:17:d0:95:74:4f:d0:bc:
b3:b1:21:64:08:6a:38:84:64:b1:6f:23:cb:61:a0:
6b:95:f1:13:83:08:c8:b3:2b:48:e7:67:8b:67:b3:
df:f6:32:79:84:64:de:29:7b:1f:d2:cc:13:ed:cd:
66:c5:d4:c1:c0:f8:48:11:df:ff:8c:bc:71:df:bb:
ae:65:f3:ce:16:96:59:40:87:4a:0b:6f:12:b3:99:
b4:5b:e2:4c:2e:04:6e:29:15:74:d0:e1:6e:ba:73:
4d:86:88:22:a9:6a:6a:8f:31:b3:54:3f:d5:29:9d:
d9:2f:c8:8f:9f:44:b1:2d:a8:77:6d:15:bf:dd:35:
4c:18:a4:92:c3:71:2b:14:37:bd:c5:a0:66:6b:31:
24:38:9b:42:17:66:88:95:81:ff:69:e7:47:52:f3:
30:42:7f:7e:0e:66:d5:5f:15:b9:1e:b0:f1:dc:2b:
8a:6e:ef:dc:9e:58:59:5c:b7:b7:cb:d3:2f:56:93:
ba:68:27:42:6a:b6:3d:e9:38:03:6a:86:49:ba:21:
b9:bd:96:cb:26:5b:21:3c:a1:e7:2f:8b:40:81:15:
b3:99:1c:31:60:ee:48:c1:a1:b4:64:aa:12:e5:7b:
3d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E2:BA:AF:D2:22:E1:DA:78:D5:59:F1:F6:FF:2C:E7:01:30:1F:D3
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:c9:dd:9e:f7:d0:e7:b7:fe:a0:99:10:53:8f:ea:1a:84:a7:
5b:87:66:c3:e0:9c:5a:12:1d:d1:5a:aa:e2:f5:0e:92:1d:7f:
0d:dd:72:5e:17:4a:0b:91:b7:df:73:ab:f9:d7:e6:f0:d2:77:
09:42:b8:45:e6:90:7e:f6:08:84:8f:56:a7:52:13:15:ad:fb:
f7:e2:bc:5c:59:3a:37:d6:e9:a4:45:a7:e6:53:59:89:a6:c7:
e2:94:47:f6:3c:67:4f:dc:df:d2:f3:46:5f:ad:f9:7f:8a:49:
66:d4:1a:14:99:4f:20:f3:1f:1c:64:39:01:ab:fd:ca:99:8d:
b2:49:0c:08:d9:4f:0f:38:eb:67:ad:8d:07:f7:bb:20:6b:fa:
30:40:3d:73:03:b4:54:04:a6:85:ca:58:2d:b1:3c:d9:87:be:
4c:a0:4d:d4:de:60:36:97:9c:ab:ea:9a:94:c9:1a:9f:d7:e2:
5e:5c:17:b0:6e:35:1e:2a:dc:21:be:2d:f1:32:2c:8a:8e:90:
19:04:b7:c1:a5:06:36:42:47:fd:33:89:dd:f6:c9:6c:a4:68:
2c:fd:f8:ed:ed:b5:85:cf:f6:4b:86:89:d3:a5:c4:e5:2a:95:
fa:2c:6c:78:13:86:68:05:81:2f:dc:7b:a3:4f:32:71:e4:54:
5e:aa:6e:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdr9A3N4mUGJiDc+6smPKfxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4Mjg0ZjE4Y2Q0NDYwNGJkZDZkMDhmNGQ4NzhkYzYxNDU2
YzQwZmQwHhcNMjUwNjE0MDEwMDQ1WhcNMjUwNjE1MDEwMDQ1WjAzMTEwLwYDVQQD
EyhkN2UyYmFhZmQyMjJlMWRhNzhkNTU5ZjFmNmZmMmNlNzAxMzAxZmQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkstqArCWuswcguJKv0ejYIUbow41
fBfQlXRP0LyzsSFkCGo4hGSxbyPLYaBrlfETgwjIsytI52eLZ7Pf9jJ5hGTeKXsf
0swT7c1mxdTBwPhIEd//jLxx37uuZfPOFpZZQIdKC28Ss5m0W+JMLgRuKRV00OFu
unNNhogiqWpqjzGzVD/VKZ3ZL8iPn0SxLah3bRW/3TVMGKSSw3ErFDe9xaBmazEk
OJtCF2aIlYH/aedHUvMwQn9+DmbVXxW5HrDx3CuKbu/cnlhZXLe3y9MvVpO6aCdC
arY96TgDaoZJuiG5vZbLJlshPKHnL4tAgRWzmRwxYO5IwaG0ZKoS5Xs9cQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNfiuq/SIuHaeNVZ8fb/LOcBMB/TMB8GA1UdIwQY
MBaAFNgoTxjNRGBL3W0I9Nh43GFFbED9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0Zjgt
Yzc4NjkxMjg1ODJjLzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0ZjgtYzc4NjkxMjg1ODJj
LzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr8ndnvfQ
57f+oJkQU4/qGoSnW4dmw+CcWhId0Vqq4vUOkh1/Dd1yXhdKC5G333Or+dfm8NJ3
CUK4ReaQfvYIhI9Wp1ITFa379+K8XFk6N9bppEWn5lNZiabH4pRH9jxnT9zf0vNG
X635f4pJZtQaFJlPIPMfHGQ5Aav9ypmNskkMCNlPDzjrZ62NB/e7IGv6MEA9cwO0
VASmhcpYLbE82Ye+TKBN1N5gNpecq+qalMkan9fiXlwXsG41HircIb4t8TIsio6Q
GQS3waUGNkJH/TOJ3fbJbKRoLP347e21hc/2S4aJ06XE5SqV+ixseBOGaAWBL9x7
o08yceRUXqpu+g==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:32:21 2025 by rpki-client