Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
File: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft (raw, json)
Hash identifier: aeazZsMlhaiPCwExz/EeCmRuYiq/QzZcr8uj53v7O3Q=
Subject key identifier: 36:AC:3E:B9:B1:51:49:EB:15:95:7C:80:35:43:87:44:F1:54:25:CF
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 01969071533F54A8B27A02655C02E9A25C3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
Manifest number: 0C3E
Signing time: Fri 02 May 2025 10:01:08 +0000
Manifest this update: Fri 02 May 2025 10:01:08 +0000
Manifest next update: Sat 03 May 2025 10:01:08 +0000
Files and hashes: 1: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl (hash: EVEdqEnYodkiRT/taixO5S9w7XwUslcW984ew1O7SKw=)
2: GhbIbk50hv6g93dh7hGhzK6K_74.roa (hash: nXi3Gj76e6GTyqlSijwexlGEZ4aKaxuj/QihrtfAHS8=)
3: R5r0xeVYQuyhFWywaHju63NvX88.roa (hash: gil6oFrijLp6JqgDOMjfduAOivvAur9Q9eunuVq1Ysg=)
4: TofwY-R4zO7hCFwhNRcFqFccDIA.roa (hash: CO89XYgmv4EUpm6JNaIOn/T7FUsKcLGJGFWRoloHQXo=)
5: kEveC8WkpMXtAhCjQYal_7N8cqU.roa (hash: 36t2IiG5a0ru6GNWxSIKI2twOH4WabuzXbDN7PDUMCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:90:71:53:3f:54:a8:b2:7a:02:65:5c:02:e9:a2:5c:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: May 2 10:01:08 2025 GMT
Not After : May 3 10:01:08 2025 GMT
Subject: CN=36ac3eb9b15149eb15957c8035438744f15425cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e1:d7:16:ff:1a:0a:b9:1a:79:81:94:3c:2c:
45:0f:8a:e8:4f:4f:dd:f9:84:85:cd:10:c0:c6:84:
e5:8d:57:45:50:12:a4:26:1a:b1:d7:b5:12:7a:b2:
05:95:e6:0c:f0:9a:7c:8e:a4:fd:75:ba:97:c9:98:
d3:2a:11:07:24:0f:7c:3a:48:bd:46:04:b0:06:70:
0e:b9:5d:95:b8:25:fa:42:9f:00:2f:01:1d:80:eb:
ab:89:d9:5e:ae:9f:87:85:44:f6:f4:1b:d9:59:57:
28:e0:4f:78:09:ab:48:6a:b2:37:47:63:14:74:56:
90:06:0d:5e:52:5a:bd:8f:8d:e0:ad:4a:51:82:3f:
cb:5f:b7:dd:c4:42:02:53:47:d3:7f:4a:85:4c:de:
ed:ab:14:b6:2d:61:7a:e9:d2:9e:0a:34:fc:be:36:
af:5b:99:5f:73:a5:b0:ec:b6:6e:9a:b6:34:40:73:
d9:6f:eb:fd:d1:09:e7:90:50:c6:8f:f1:a9:01:e1:
eb:10:57:af:f0:c8:77:69:d3:25:7a:47:2a:b2:5d:
13:9a:fc:7c:10:12:16:a0:65:02:8b:93:6b:c1:07:
6c:5a:13:cb:2f:5d:b7:1e:4f:05:ce:49:49:12:c0:
26:db:0e:1a:72:76:83:05:a8:6a:65:23:b2:9b:6f:
9d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:AC:3E:B9:B1:51:49:EB:15:95:7C:80:35:43:87:44:F1:54:25:CF
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:ea:51:7f:98:fa:38:92:77:88:7d:13:8f:aa:5f:bf:95:a4:
88:a8:9f:97:94:07:27:5c:24:03:b6:dd:51:80:0d:55:41:23:
53:88:6b:19:c8:69:34:5c:d8:fd:90:ac:64:c9:58:8e:f0:ef:
b0:32:14:57:85:45:f2:31:62:69:1e:e0:fd:92:a7:08:b2:ba:
cb:79:b0:94:0e:6b:5f:1c:e7:6a:22:fd:1a:2e:26:c6:f4:7b:
f8:97:d5:64:62:0f:0a:26:25:89:29:ba:26:90:e6:d6:81:ce:
07:06:75:ee:4d:7d:59:a8:55:5b:c7:75:eb:0c:dd:6d:b0:61:
eb:6b:41:c6:fb:55:ac:33:9d:0b:b2:9f:62:97:92:60:0e:17:
60:8f:6c:fa:ce:97:88:74:69:5a:d3:ea:22:b5:5f:e6:00:80:
5b:13:05:87:6a:d5:20:90:43:55:67:cc:3f:6e:47:17:f8:3b:
9c:33:e7:ca:40:24:a3:83:3d:b3:d8:8f:c0:d9:92:2b:dc:89:
87:c8:a3:0c:cd:b1:92:aa:ae:e7:69:49:d9:4d:3e:65:aa:fc:
bc:09:cd:41:88:03:84:0b:fc:4e:f6:47:ca:76:b4:21:4f:f7:
15:dc:d2:16:c2:24:33:61:9c:6c:66:d5:b7:ba:a4:a6:28:fc:
10:47:69:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaQcVM/VKiyegJlXALpolw7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5YWQxOGY0YzM2MDY3MjIwZjRkODMzY2JjNzhhMTBmOTRl
YjA4ODgwHhcNMjUwNTAyMTAwMTA4WhcNMjUwNTAzMTAwMTA4WjAzMTEwLwYDVQQD
EygzNmFjM2ViOWIxNTE0OWViMTU5NTdjODAzNTQzODc0NGYxNTQyNWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOHXFv8aCrkaeYGUPCxFD4roT0/d
+YSFzRDAxoTljVdFUBKkJhqx17USerIFleYM8Jp8jqT9dbqXyZjTKhEHJA98Oki9
RgSwBnAOuV2VuCX6Qp8ALwEdgOuridlerp+HhUT29BvZWVco4E94CatIarI3R2MU
dFaQBg1eUlq9j43grUpRgj/LX7fdxEICU0fTf0qFTN7tqxS2LWF66dKeCjT8vjav
W5lfc6Ww7LZumrY0QHPZb+v90QnnkFDGj/GpAeHrEFev8Mh3adMlekcqsl0Tmvx8
EBIWoGUCi5NrwQdsWhPLL123Hk8FzklJEsAm2w4acnaDBahqZSOym2+dTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDasPrmxUUnrFZV8gDVDh0TxVCXPMB8GA1UdIwQY
MBaAFNmtGPTDYGciD02DPLx4oQ+U6wiIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9kMzUxYmYtNzFjZS00ODU3LTllNTAt
YzI2NDczODVlNzI3LzEvMmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC9kMzUxYmYtNzFjZS00ODU3LTllNTAtYzI2NDczODVlNzI3
LzEvMmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV+pRf5j6
OJJ3iH0Tj6pfv5WkiKifl5QHJ1wkA7bdUYANVUEjU4hrGchpNFzY/ZCsZMlYjvDv
sDIUV4VF8jFiaR7g/ZKnCLK6y3mwlA5rXxznaiL9Gi4mxvR7+JfVZGIPCiYliSm6
JpDm1oHOBwZ17k19WahVW8d16wzdbbBh62tBxvtVrDOdC7KfYpeSYA4XYI9s+s6X
iHRpWtPqIrVf5gCAWxMFh2rVIJBDVWfMP25HF/g7nDPnykAko4M9s9iPwNmSK9yJ
h8ijDM2xkqqu52lJ2U0+Zar8vAnNQYgDhAv8TvZHyna0IU/3FdzSFsIkM2GcbGbV
t7qkpij8EEdpNg==
-----END CERTIFICATE-----
Generated at Fri May 2 15:01:05 2025 by rpki-client