Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.mft
File: 2q8P82XUvZCN6QLu2gOyecL4CdM.mft (raw, json)
Hash identifier: O5X3+6f9Wo0dwBojXqKbkYn9gNSFd9dtankuPt0LzsU=
Subject key identifier: 4C:7C:68:5C:50:F6:6C:0F:82:8F:0F:E7:CB:7E:7C:12:49:46:CF:ED
Authority key identifier: DA:AF:0F:F3:65:D4:BD:90:8D:E9:02:EE:DA:03:B2:79:C2:F8:09:D3
Certificate issuer: /CN=daaf0ff365d4bd908de902eeda03b279c2f809d3
Certificate serial: 0197846AAD16217F60BA5F2CBDB5A1270D3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8P82XUvZCN6QLu2gOyecL4CdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.mft
Manifest number: 0D3A
Signing time: Wed 18 Jun 2025 19:01:13 +0000
Manifest this update: Wed 18 Jun 2025 19:01:13 +0000
Manifest next update: Thu 19 Jun 2025 19:01:13 +0000
Files and hashes: 1: 2q8P82XUvZCN6QLu2gOyecL4CdM.crl (hash: hM7G0c1sgPddW+WHFA+Bdj+a4bAGceQSOUaGIir6l6g=)
2: ydjVuxhclCo9WITtZ8reVakuUyk.roa (hash: xSeH/WCDjMoX4ZrZ3Xlx1/Z9w0yzrfN0W1h+i1dlTy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q8P82XUvZCN6QLu2gOyecL4CdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:84:6a:ad:16:21:7f:60:ba:5f:2c:bd:b5:a1:27:0d:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf0ff365d4bd908de902eeda03b279c2f809d3
Validity
Not Before: Jun 18 19:01:13 2025 GMT
Not After : Jun 19 19:01:13 2025 GMT
Subject: CN=4c7c685c50f66c0f828f0fe7cb7e7c124946cfed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4a:76:13:d0:5e:11:2d:c3:c6:42:d0:14:73:
ab:7d:2d:ee:90:f6:c0:35:41:43:3f:b1:72:f2:92:
97:22:11:a3:bc:66:10:f0:d2:2a:b4:3b:31:b4:5f:
38:14:5c:dc:e8:ab:2b:98:90:17:9f:48:6d:6c:2c:
e3:c4:07:2e:ab:49:a9:ad:26:4d:c6:e4:38:3b:4a:
89:0c:e8:35:28:f1:0e:72:bd:ac:a5:2f:7e:ef:8a:
90:1d:50:52:6c:06:14:0b:1b:18:29:58:30:c2:77:
24:14:27:3c:cb:1e:b9:7d:d4:36:6e:42:9f:b3:20:
d6:bd:52:83:ae:f1:4a:d0:d3:ac:5a:9e:a0:33:04:
35:ec:23:7e:e7:04:97:a0:1b:0a:03:eb:55:d4:6a:
a4:69:24:e1:39:39:ac:15:08:99:93:de:91:63:5c:
46:c8:69:7a:67:8b:ff:cb:97:55:4d:36:64:c1:86:
af:63:c0:68:b3:17:a0:20:9c:ad:73:19:e5:1f:ac:
8b:79:d5:05:96:7a:7a:90:cf:08:c6:9b:a8:c2:eb:
06:08:7b:8b:f7:0a:32:72:36:11:3c:03:60:87:77:
96:67:84:65:eb:5a:b0:8d:53:3a:d3:39:70:3c:0f:
57:d0:22:b1:54:ab:ef:e0:c1:29:18:42:7d:8c:75:
92:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7C:68:5C:50:F6:6C:0F:82:8F:0F:E7:CB:7E:7C:12:49:46:CF:ED
X509v3 Authority Key Identifier:
keyid:DA:AF:0F:F3:65:D4:BD:90:8D:E9:02:EE:DA:03:B2:79:C2:F8:09:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8P82XUvZCN6QLu2gOyecL4CdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/779260-7be9-4b66-9df0-409176f846d3/1/2q8P82XUvZCN6QLu2gOyecL4CdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:be:19:72:be:7b:78:cb:aa:03:d7:52:94:61:ad:dc:ca:08:
90:46:73:56:81:dc:39:dd:34:fc:ed:fa:2c:96:fa:1e:90:64:
9c:50:4c:36:f8:9b:44:a1:7b:25:52:f2:92:85:01:78:3c:1c:
17:8a:1e:0f:94:fa:13:56:d5:a8:d2:58:93:47:cf:d7:33:02:
38:1a:f7:a7:d4:b4:9c:c0:14:95:d8:65:07:74:a1:6a:4f:aa:
b9:ff:ab:b0:e7:a9:eb:72:77:71:81:5c:d1:33:70:13:6c:e0:
e2:35:e1:33:b1:66:4f:46:90:7e:96:05:11:5b:e7:c7:15:a6:
89:81:9d:fe:31:eb:cd:f1:73:40:58:15:26:ea:55:25:97:63:
4e:98:88:c7:88:c0:b6:0b:e7:24:c2:40:a0:a8:15:0b:62:ae:
e6:13:74:6c:5f:00:59:8b:55:10:38:79:92:33:17:d0:0a:20:
04:23:a2:00:8f:50:68:88:21:77:9c:63:eb:67:14:db:af:d0:
2f:49:56:2d:a4:7a:e9:4b:ad:66:53:3f:33:d9:a9:cc:f6:16:
62:2a:c6:b7:a3:10:cb:13:d4:28:6a:14:cb:57:36:2c:95:f9:
a1:b3:59:db:61:fb:ea:f1:a1:8c:e7:e7:cf:0b:e3:42:7f:1d:
9b:5b:44:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeEaq0WIX9gul8svbWhJw08MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYWYwZmYzNjVkNGJkOTA4ZGU5MDJlZWRhMDNiMjc5YzJm
ODA5ZDMwHhcNMjUwNjE4MTkwMTEzWhcNMjUwNjE5MTkwMTEzWjAzMTEwLwYDVQQD
Eyg0YzdjNjg1YzUwZjY2YzBmODI4ZjBmZTdjYjdlN2MxMjQ5NDZjZmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUp2E9BeES3DxkLQFHOrfS3ukPbA
NUFDP7Fy8pKXIhGjvGYQ8NIqtDsxtF84FFzc6KsrmJAXn0htbCzjxAcuq0mprSZN
xuQ4O0qJDOg1KPEOcr2spS9+74qQHVBSbAYUCxsYKVgwwnckFCc8yx65fdQ2bkKf
syDWvVKDrvFK0NOsWp6gMwQ17CN+5wSXoBsKA+tV1GqkaSThOTmsFQiZk96RY1xG
yGl6Z4v/y5dVTTZkwYavY8BosxegIJytcxnlH6yLedUFlnp6kM8IxpuowusGCHuL
9woycjYRPANgh3eWZ4Rl61qwjVM60zlwPA9X0CKxVKvv4MEpGEJ9jHWS0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEx8aFxQ9mwPgo8P58t+fBJJRs/tMB8GA1UdIwQY
MBaAFNqvD/Nl1L2QjekC7toDsnnC+AnTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnE4UDgyWFV2WkNONlFMdTJnT3llY0w0Q2RNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS83NzkyNjAtN2JlOS00YjY2LTlkZjAt
NDA5MTc2Zjg0NmQzLzEvMnE4UDgyWFV2WkNONlFMdTJnT3llY0w0Q2RNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS83NzkyNjAtN2JlOS00YjY2LTlkZjAtNDA5MTc2Zjg0NmQz
LzEvMnE4UDgyWFV2WkNONlFMdTJnT3llY0w0Q2RNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmr4Zcr57
eMuqA9dSlGGt3MoIkEZzVoHcOd00/O36LJb6HpBknFBMNvibRKF7JVLykoUBeDwc
F4oeD5T6E1bVqNJYk0fP1zMCOBr3p9S0nMAUldhlB3Shak+quf+rsOep63J3cYFc
0TNwE2zg4jXhM7FmT0aQfpYFEVvnxxWmiYGd/jHrzfFzQFgVJupVJZdjTpiIx4jA
tgvnJMJAoKgVC2Ku5hN0bF8AWYtVEDh5kjMX0AogBCOiAI9QaIghd5xj62cU26/Q
L0lWLaR66UutZlM/M9mpzPYWYirGt6MQyxPUKGoUy1c2LJX5obNZ22H76vGhjOfn
zwvjQn8dm1tEmQ==
-----END CERTIFICATE-----
Generated at Thu Jun 19 00:47:18 2025 by rpki-client