Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
File: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft (raw, json)
Hash identifier: /Ssv4P3N+w2tkGpjwMHK06byKmrIGmRjZclMaLryHnA=
Subject key identifier: 93:D1:EA:2E:EE:09:4A:CE:63:CE:9C:49:BA:1A:94:D5:07:06:A3:93
Authority key identifier: D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
Certificate issuer: /CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Certificate serial: 019768F2EC6CC7FE096B3BD5730B158D0187
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
Manifest number: 0ACA
Signing time: Fri 13 Jun 2025 11:00:40 +0000
Manifest this update: Fri 13 Jun 2025 11:00:40 +0000
Manifest next update: Sat 14 Jun 2025 11:00:40 +0000
Files and hashes: 1: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl (hash: rKmQAWPjXx9WUsV/iA8EEAYT5tFf8G6BlUK7GYZbuOs=)
2: 9QEKfiqhzH-bmQh5b6rMdNbStYc.roa (hash: MpYTZwjsTnNyFZWB4RSLKA3k60L/jvvVARMaXOoFY4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:ec:6c:c7:fe:09:6b:3b:d5:73:0b:15:8d:01:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Validity
Not Before: Jun 13 11:00:40 2025 GMT
Not After : Jun 14 11:00:40 2025 GMT
Subject: CN=93d1ea2eee094ace63ce9c49ba1a94d50706a393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ab:6b:ec:8b:0d:d0:8f:50:9d:66:ef:2d:1e:
b9:d4:4b:66:f7:b3:83:65:87:68:fc:e0:4c:e7:b6:
48:bf:8f:3f:e8:de:59:fe:a3:6a:53:34:8f:81:96:
7f:60:35:6d:47:90:b8:9b:91:2d:ff:82:af:9f:81:
12:59:9b:80:ef:a3:ce:c7:1d:76:36:89:1a:ee:76:
fc:3f:b8:97:02:39:a1:33:dc:b9:cb:cd:61:7c:fd:
e6:e8:a9:e1:e0:a8:10:20:97:63:b7:bb:75:66:e5:
42:68:ce:2e:b8:34:32:4d:5d:fd:bc:80:d0:9f:a2:
1e:9f:94:47:24:16:27:30:c6:8e:b9:d7:09:c8:ec:
f9:af:9e:31:20:46:15:8d:f9:69:89:c3:6c:ca:06:
d5:c1:8a:6f:87:cf:a1:d5:32:c1:f3:2b:04:ac:2b:
da:a8:5a:d0:82:82:42:75:7c:0e:fe:65:fe:36:e7:
92:1f:d4:28:a1:b3:5a:a0:fc:3b:09:c4:40:20:6f:
ed:dd:1c:39:66:fa:f7:7a:4b:63:b7:b0:a8:37:d5:
42:c9:47:1e:9a:6b:8d:f4:6e:a1:3f:0d:0e:2b:e1:
39:df:e4:8d:34:1b:e0:0f:df:5f:29:02:b4:77:9f:
04:e4:d9:eb:93:7b:eb:61:8d:9f:6a:d9:b4:9c:85:
57:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D1:EA:2E:EE:09:4A:CE:63:CE:9C:49:BA:1A:94:D5:07:06:A3:93
X509v3 Authority Key Identifier:
keyid:D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c0:0c:90:d2:67:57:d2:e7:b6:99:10:a8:0a:22:56:f9:21:
59:16:18:6b:b0:18:af:59:42:cf:ad:54:76:09:f6:8e:4e:98:
5d:de:67:6c:6f:41:ec:7c:9e:f2:5d:d4:ff:ca:61:dd:62:20:
79:14:3c:9f:05:f7:20:95:d7:bd:0e:75:35:68:b8:ea:d4:10:
ee:f8:3d:63:17:48:2c:1c:0e:97:5b:95:e5:09:5e:93:d6:78:
72:80:87:d4:e9:25:be:a8:28:9f:82:a5:c0:1d:a1:dc:d6:e5:
34:ab:a0:f4:5c:d8:1a:07:2a:ff:94:5e:7d:41:92:88:c5:31:
9b:ea:2e:b7:70:1e:54:0a:a7:18:56:ed:70:e4:11:25:49:fc:
c4:a1:2c:dc:31:77:4f:70:0c:12:26:7c:f2:c3:47:f9:2a:6a:
3d:2f:1c:01:3f:bc:e1:b2:d1:9d:06:9a:4e:fb:38:1e:33:f4:
ce:ca:a8:52:25:82:8c:06:6c:aa:15:e4:c7:14:41:1e:98:4f:
32:65:00:c5:ba:ca:92:6e:c4:b9:bf:13:a7:be:af:d1:ec:dd:
54:5d:99:7f:17:37:87:40:cb:32:9d:2a:d7:a6:fc:a5:f1:53:
d3:4c:61:4d:7d:66:25:9a:3d:65:ae:f6:16:44:f0:15:64:56:
2c:3e:37:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdo8uxsx/4JazvVcwsVjQGHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5NDljYWJhM2Q0MzE1NjA3ZjRhNmQ2MjdlY2UxZWNlYThj
YmMzMTkwHhcNMjUwNjEzMTEwMDQwWhcNMjUwNjE0MTEwMDQwWjAzMTEwLwYDVQQD
Eyg5M2QxZWEyZWVlMDk0YWNlNjNjZTljNDliYTFhOTRkNTA3MDZhMzkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6tr7IsN0I9QnWbvLR651Etm97OD
ZYdo/OBM57ZIv48/6N5Z/qNqUzSPgZZ/YDVtR5C4m5Et/4Kvn4ESWZuA76POxx12
Noka7nb8P7iXAjmhM9y5y81hfP3m6Knh4KgQIJdjt7t1ZuVCaM4uuDQyTV39vIDQ
n6Ien5RHJBYnMMaOudcJyOz5r54xIEYVjflpicNsygbVwYpvh8+h1TLB8ysErCva
qFrQgoJCdXwO/mX+NueSH9QoobNaoPw7CcRAIG/t3Rw5Zvr3ektjt7CoN9VCyUce
mmuN9G6hPw0OK+E53+SNNBvgD99fKQK0d58E5Nnrk3vrYY2fatm0nIVXJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJPR6i7uCUrOY86cSboalNUHBqOTMB8GA1UdIwQY
MBaAFNlJyro9QxVgf0ptYn7OHs6oy8MZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlVuS3VqMURGV0JfU20xaWZzNGV6cWpMd3hrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9mZTY5MDQtZWI1Ni00NDkzLTkyOWMt
MWE5ZGYzOGY1OTAxLzEvMlVuS3VqMURGV0JfU20xaWZzNGV6cWpMd3hrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS9mZTY5MDQtZWI1Ni00NDkzLTkyOWMtMWE5ZGYzOGY1OTAx
LzEvMlVuS3VqMURGV0JfU20xaWZzNGV6cWpMd3hrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGMAMkNJn
V9LntpkQqAoiVvkhWRYYa7AYr1lCz61Udgn2jk6YXd5nbG9B7Hye8l3U/8ph3WIg
eRQ8nwX3IJXXvQ51NWi46tQQ7vg9YxdILBwOl1uV5Qlek9Z4coCH1Oklvqgon4Kl
wB2h3NblNKug9FzYGgcq/5RefUGSiMUxm+out3AeVAqnGFbtcOQRJUn8xKEs3DF3
T3AMEiZ88sNH+SpqPS8cAT+84bLRnQaaTvs4HjP0zsqoUiWCjAZsqhXkxxRBHphP
MmUAxbrKkm7Eub8Tp76v0ezdVF2Zfxc3h0DLMp0q16b8pfFT00xhTX1mJZo9Za72
FkTwFWRWLD43mw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:11:36 2025 by rpki-client