Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.mft
File: 2q8P82XUvZCN6QLu2gOyecL4CdM.mft (raw, json)
Hash identifier: /HUDkt31KqQWn7bRkadPAyhBOKLbGpSnfIsYyMGNi1U=
Subject key identifier: 51:61:31:30:2D:11:65:5E:78:9B:50:60:78:9D:D9:81:77:7C:3B:14
Authority key identifier: DA:AF:0F:F3:65:D4:BD:90:8D:E9:02:EE:DA:03:B2:79:C2:F8:09:D3
Certificate issuer: /CN=daaf0ff365d4bd908de902eeda03b279c2f809d3
Certificate serial: 01968D3994C5978D6708340BCD42F401E0F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8P82XUvZCN6QLu2gOyecL4CdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.mft
Manifest number: 0CBA
Signing time: Thu 01 May 2025 19:01:23 +0000
Manifest this update: Thu 01 May 2025 19:01:23 +0000
Manifest next update: Fri 02 May 2025 19:01:23 +0000
Files and hashes: 1: 2q8P82XUvZCN6QLu2gOyecL4CdM.crl (hash: uIyzdWSWG/qCDDzNIK5WlxIXH3tTWG3DyTWGcQ4mhrI=)
2: ydjVuxhclCo9WITtZ8reVakuUyk.roa (hash: xSeH/WCDjMoX4ZrZ3Xlx1/Z9w0yzrfN0W1h+i1dlTy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q8P82XUvZCN6QLu2gOyecL4CdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8d:39:94:c5:97:8d:67:08:34:0b:cd:42:f4:01:e0:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf0ff365d4bd908de902eeda03b279c2f809d3
Validity
Not Before: May 1 19:01:23 2025 GMT
Not After : May 2 19:01:23 2025 GMT
Subject: CN=516131302d11655e789b5060789dd981777c3b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:7e:bb:15:41:77:3a:f3:d5:34:0b:b0:3c:44:
4b:28:1e:11:a5:12:7a:3f:06:2f:83:5b:84:34:0b:
77:10:c2:54:e5:40:34:ee:c5:83:97:0a:04:08:df:
04:37:53:79:b3:a6:e3:0a:b9:7e:a5:2a:41:0b:82:
7f:67:15:30:d7:99:2e:8c:a7:16:60:a6:8e:ad:ef:
e8:d4:7b:51:27:93:19:92:1a:2b:6c:8f:83:7e:40:
57:d5:29:ac:1e:39:71:de:ff:d0:d9:b2:39:cf:20:
88:98:34:b2:0e:b3:3c:0d:d4:f9:9d:1c:dd:5b:fd:
6c:54:d2:6c:71:64:be:b5:a5:a1:46:97:8b:37:82:
5e:e5:96:be:c7:e2:47:09:8a:06:46:6f:c3:d0:a5:
5f:e8:34:ad:69:6e:1d:11:78:bc:17:82:3f:8c:25:
e6:31:c1:2a:f8:02:c9:2c:db:a3:be:4b:d8:e7:c9:
2d:00:31:28:96:43:fc:7e:f4:20:b0:17:80:a3:f8:
c4:c1:c7:6e:24:52:bd:67:0a:d2:c2:f2:f2:f9:10:
b2:b0:4b:17:f0:82:ef:1e:e5:b1:67:9c:55:d4:ff:
73:7d:cf:1b:fd:7b:36:94:75:aa:59:99:52:8e:07:
12:14:7e:f4:f1:19:88:ee:de:9b:a4:e2:13:54:05:
63:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:61:31:30:2D:11:65:5E:78:9B:50:60:78:9D:D9:81:77:7C:3B:14
X509v3 Authority Key Identifier:
keyid:DA:AF:0F:F3:65:D4:BD:90:8D:E9:02:EE:DA:03:B2:79:C2:F8:09:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8P82XUvZCN6QLu2gOyecL4CdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:8c:e7:4c:33:5f:6a:26:9d:4d:ba:5f:9c:bd:a4:09:b6:f9:
82:29:08:55:df:2f:2b:10:93:f7:1a:ac:75:aa:2c:9d:bb:96:
c7:fb:1c:5f:36:02:65:24:6e:96:c0:da:66:2c:cf:1e:9f:07:
b4:5c:b3:37:fa:db:d3:a6:c4:cd:c1:b5:09:02:94:75:36:6d:
e6:10:d1:31:e1:24:87:95:62:ea:e9:3b:db:db:a1:2d:22:cc:
dd:e0:c1:ff:e8:cc:14:16:fb:f8:a3:4f:14:c9:ad:31:0e:b0:
22:e9:cf:06:2a:f6:f4:9f:a3:79:74:f7:a5:c2:d6:a7:7a:9c:
37:d4:67:fa:b1:0e:f5:14:32:55:c7:e4:e5:93:88:96:1d:5d:
e7:60:3b:1e:d6:94:41:56:54:b0:52:11:1b:d7:11:8c:63:4d:
9e:b4:e7:65:e6:7a:88:dd:89:cf:a7:0e:72:05:7f:df:3b:ec:
0e:20:ae:52:91:70:09:5a:24:89:c6:b7:8e:61:f5:50:75:2e:
39:18:66:ce:21:0c:d4:5f:b4:23:2f:db:d6:e9:e8:65:98:6e:
4d:c9:d9:3b:86:3c:8c:82:a1:e9:1a:6c:20:8c:f6:57:d6:f1:
52:4e:c8:59:2e:03:3d:d8:18:f1:e6:a4:07:30:7c:df:f6:aa:
86:82:91:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaNOZTFl41nCDQLzUL0AeD3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYWYwZmYzNjVkNGJkOTA4ZGU5MDJlZWRhMDNiMjc5YzJm
ODA5ZDMwHhcNMjUwNTAxMTkwMTIzWhcNMjUwNTAyMTkwMTIzWjAzMTEwLwYDVQQD
Eyg1MTYxMzEzMDJkMTE2NTVlNzg5YjUwNjA3ODlkZDk4MTc3N2MzYjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhX67FUF3OvPVNAuwPERLKB4RpRJ6
PwYvg1uENAt3EMJU5UA07sWDlwoECN8EN1N5s6bjCrl+pSpBC4J/ZxUw15kujKcW
YKaOre/o1HtRJ5MZkhorbI+DfkBX1SmsHjlx3v/Q2bI5zyCImDSyDrM8DdT5nRzd
W/1sVNJscWS+taWhRpeLN4Je5Za+x+JHCYoGRm/D0KVf6DStaW4dEXi8F4I/jCXm
McEq+ALJLNujvkvY58ktADEolkP8fvQgsBeAo/jEwcduJFK9ZwrSwvLy+RCysEsX
8ILvHuWxZ5xV1P9zfc8b/Xs2lHWqWZlSjgcSFH708RmI7t6bpOITVAVjXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFFhMTAtEWVeeJtQYHid2YF3fDsUMB8GA1UdIwQY
MBaAFNqvD/Nl1L2QjekC7toDsnnC+AnTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnE4UDgyWFV2WkNONlFMdTJnT3llY0w0Q2RNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS83NzkyNjAtN2JlOS00YjY2LTlkZjAt
NDA5MTc2Zjg0NmQzLzEvMnE4UDgyWFV2WkNONlFMdTJnT3llY0w0Q2RNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS83NzkyNjAtN2JlOS00YjY2LTlkZjAtNDA5MTc2Zjg0NmQz
LzEvMnE4UDgyWFV2WkNONlFMdTJnT3llY0w0Q2RNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfoznTDNf
aiadTbpfnL2kCbb5gikIVd8vKxCT9xqsdaosnbuWx/scXzYCZSRulsDaZizPHp8H
tFyzN/rb06bEzcG1CQKUdTZt5hDRMeEkh5Vi6uk729uhLSLM3eDB/+jMFBb7+KNP
FMmtMQ6wIunPBir29J+jeXT3pcLWp3qcN9Rn+rEO9RQyVcfk5ZOIlh1d52A7HtaU
QVZUsFIRG9cRjGNNnrTnZeZ6iN2Jz6cOcgV/3zvsDiCuUpFwCVokica3jmH1UHUu
ORhmziEM1F+0Iy/b1unoZZhuTcnZO4Y8jIKh6RpsIIz2V9bxUk7IWS4DPdgY8eak
BzB83/aqhoKRrQ==
-----END CERTIFICATE-----
Generated at Thu May 1 21:47:21 2025 by rpki-client