Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: E2kylb//KxxdrgasSlCYnbdD/+WzVXJ2WOehqwOeQek=
Subject key identifier: 3A:0E:29:B3:5F:8C:75:94:DD:82:08:24:63:3E:30:29:DC:DD:47:A3
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 01968ADCBFADDE9767EC89237C1EE3B399FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 06C1
Signing time: Thu 01 May 2025 08:00:44 +0000
Manifest this update: Thu 01 May 2025 08:00:44 +0000
Manifest next update: Fri 02 May 2025 08:00:44 +0000
Files and hashes: 1: 1tdaIrt9xypJtReKdxeXXdM964s.roa (hash: 2jF3CjF80ww6ITNBk+zVZgXhV0QGg1umOnc7I4ePaOY=)
2: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: DLExA2noBip821ZUVzKzydsBOg4ukvUHxf9nKbl6/Lo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:dc:bf:ad:de:97:67:ec:89:23:7c:1e:e3:b3:99:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: May 1 08:00:44 2025 GMT
Not After : May 2 08:00:44 2025 GMT
Subject: CN=3a0e29b35f8c7594dd820824633e3029dcdd47a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f8:b1:2d:d3:19:fc:77:e6:1e:35:36:67:a7:
b0:60:fe:ce:dd:7b:b1:36:2a:39:50:d5:f7:3e:4d:
94:5e:69:18:97:b5:75:d5:af:97:00:da:45:f3:ec:
fc:4c:9e:03:1f:60:98:12:82:74:fd:54:24:88:36:
4b:1e:67:0e:29:78:8f:33:ab:58:cb:32:10:80:db:
f6:af:68:49:d0:d0:8a:eb:02:3b:3d:13:72:43:3b:
26:d6:92:c3:87:41:da:98:95:6f:21:2c:a0:b4:95:
05:9a:f3:52:12:8b:4c:35:29:1f:f9:5a:ec:8d:8b:
b4:6f:da:d0:64:50:a3:e5:33:e8:7c:da:34:84:6e:
56:db:39:3f:4e:7d:90:04:16:ac:70:c0:6f:33:87:
6b:21:ed:71:41:48:f7:6c:01:de:0e:af:e4:17:a2:
08:2a:ad:dd:56:4e:e6:2e:a6:a1:76:00:7f:2a:6b:
f0:dc:7d:e4:0b:05:a2:13:30:f1:2c:06:fc:fc:3a:
f1:56:f7:f0:9f:e9:89:5e:87:9b:a0:e8:95:67:2a:
87:5a:35:23:9e:9a:dc:e8:4b:77:27:de:40:d9:b9:
b7:4a:6a:9e:32:07:41:c0:30:f0:a4:eb:03:1b:5a:
e8:95:29:82:fc:b9:cd:39:22:63:97:50:86:25:31:
12:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:0E:29:B3:5F:8C:75:94:DD:82:08:24:63:3E:30:29:DC:DD:47:A3
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:73:5d:83:7c:2f:1b:e5:61:5a:7b:4d:ea:c8:9f:32:48:04:
7b:a9:04:d9:4e:4d:7f:e5:cd:ce:70:89:94:a1:a3:77:d4:d9:
a3:f8:7b:a7:48:74:b2:94:16:85:92:bc:12:5a:b0:7e:72:fc:
76:31:7c:b9:3b:a8:33:61:42:83:8f:5e:a4:2b:a3:d4:e8:92:
96:d4:a3:69:c8:35:2e:69:6a:60:be:1e:d7:73:ef:93:4e:2d:
0e:4a:f5:fb:f4:ed:df:b7:10:03:88:de:b9:d2:64:65:8c:f2:
11:e4:0f:52:d9:2d:c5:5c:4f:93:1f:c9:ea:5c:2c:42:ed:bc:
12:f7:b6:bc:c0:63:78:0d:a0:bb:b4:53:7b:f7:ec:fd:59:a4:
e7:17:a5:d8:4f:d2:5e:00:18:7f:5d:7a:63:7e:b7:be:5f:c5:
0f:91:37:51:3c:1e:1f:8f:01:52:af:4f:de:de:c3:ef:f8:af:
56:a6:43:1e:98:fa:bd:19:6b:9d:e2:85:5d:cc:eb:d9:5a:86:
4e:91:5c:16:4c:7e:9c:67:85:6e:13:e9:46:02:4f:1f:96:94:
3d:68:4e:33:41:17:85:d3:de:f4:60:35:56:34:ee:eb:bf:1c:
cb:d5:d2:ae:1e:ed:50:2d:fa:9f:6e:67:5a:51:5d:1e:62:a6:
5a:e5:de:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaK3L+t3pdn7IkjfB7js5n9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MmIyODQ2ZjA5M2JjOTQxNjA0MWJlNjhhMmM3ODMxNjFl
YjA0ZGYwHhcNMjUwNTAxMDgwMDQ0WhcNMjUwNTAyMDgwMDQ0WjAzMTEwLwYDVQQD
EygzYTBlMjliMzVmOGM3NTk0ZGQ4MjA4MjQ2MzNlMzAyOWRjZGQ0N2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/ixLdMZ/HfmHjU2Z6ewYP7O3Xux
Nio5UNX3Pk2UXmkYl7V11a+XANpF8+z8TJ4DH2CYEoJ0/VQkiDZLHmcOKXiPM6tY
yzIQgNv2r2hJ0NCK6wI7PRNyQzsm1pLDh0HamJVvISygtJUFmvNSEotMNSkf+Vrs
jYu0b9rQZFCj5TPofNo0hG5W2zk/Tn2QBBascMBvM4drIe1xQUj3bAHeDq/kF6II
Kq3dVk7mLqahdgB/Kmvw3H3kCwWiEzDxLAb8/DrxVvfwn+mJXoeboOiVZyqHWjUj
nprc6Et3J95A2bm3SmqeMgdBwDDwpOsDG1rolSmC/LnNOSJjl1CGJTESUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDoOKbNfjHWU3YIIJGM+MCnc3UejMB8GA1UdIwQY
MBaAFNgrKEbwk7yUFgQb5ooseDFh6wTfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgt
NTQ3M2VlMWRhYTliLzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy81YjJkNmUtODI0Ny00NDhmLWEzNTgtNTQ3M2VlMWRhYTli
LzEvMkNzb1J2Q1R2SlFXQkJ2bWlpeDRNV0hyQk44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXnNdg3wv
G+VhWntN6sifMkgEe6kE2U5Nf+XNznCJlKGjd9TZo/h7p0h0spQWhZK8ElqwfnL8
djF8uTuoM2FCg49epCuj1OiSltSjacg1LmlqYL4e13Pvk04tDkr1+/Tt37cQA4je
udJkZYzyEeQPUtktxVxPkx/J6lwsQu28Eve2vMBjeA2gu7RTe/fs/Vmk5xel2E/S
XgAYf116Y363vl/FD5E3UTweH48BUq9P3t7D7/ivVqZDHpj6vRlrneKFXczr2VqG
TpFcFkx+nGeFbhPpRgJPH5aUPWhOM0EXhdPe9GA1VjTu678cy9XSrh7tUC36n25n
WlFdHmKmWuXetA==
-----END CERTIFICATE-----
Generated at Thu May 1 16:21:14 2025 by rpki-client