Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
File: 2YhPkq_rWP-rJkh7IyBf4NXaip8.mft (raw, json)
Hash identifier: h7oCgfbavULqX0ZWoWFxOmd6JUYDeKqeIVG0Zob5cVA=
Subject key identifier: AC:D0:E1:EF:A6:B1:76:88:42:53:6D:3F:AC:DD:D9:EC:81:FA:40:D2
Authority key identifier: D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
Certificate issuer: /CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Certificate serial: 0196778D15CC9FEC422ED1D21A07FC748DF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
Manifest number: 0DF3
Signing time: Sun 27 Apr 2025 14:00:56 +0000
Manifest this update: Sun 27 Apr 2025 14:00:56 +0000
Manifest next update: Mon 28 Apr 2025 14:00:56 +0000
Files and hashes: 1: 2YhPkq_rWP-rJkh7IyBf4NXaip8.crl (hash: uj1BL9pQf7z51TsP1MpAplWfUKJ+bC8dnffGlzEq1bk=)
2: CYLgyzMsYi7lgn_Q5Gp7OFp3YLo.roa (hash: KpU4uZLnHzH71nuh4tR8vuJUqVXwmRrydoVr8tnF92Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8d:15:cc:9f:ec:42:2e:d1:d2:1a:07:fc:74:8d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Validity
Not Before: Apr 27 14:00:56 2025 GMT
Not After : Apr 28 14:00:56 2025 GMT
Subject: CN=acd0e1efa6b1768842536d3facddd9ec81fa40d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1d:8f:8e:fb:79:bf:9d:92:12:7d:0b:5b:bd:
e6:57:14:f6:b0:ed:d6:2c:d3:b3:be:f3:e2:b6:94:
3c:15:c9:be:7d:b9:43:82:11:df:70:e1:15:ca:e1:
9d:24:a0:1b:48:b1:13:42:ae:ba:a1:f1:d8:52:a3:
2b:95:0a:7d:28:d4:d0:c6:66:ce:3b:ad:bd:d1:0f:
11:e6:d4:f3:5b:22:3e:95:f7:76:f2:e7:57:22:35:
96:ff:c9:14:2c:a4:6f:b2:af:32:35:ca:ea:33:6c:
d0:f7:eb:b9:c6:3f:a1:0c:14:08:b4:81:7c:2d:65:
08:ae:43:de:fc:81:9d:ed:48:67:3d:5d:7d:8a:7f:
77:e1:5b:43:22:08:d8:b0:ca:55:2b:70:9f:42:43:
6d:2f:0b:88:a3:56:d2:0d:a3:8b:7d:51:79:e6:be:
3c:b9:84:d8:f6:c8:eb:fb:a7:a3:c5:ac:2b:f7:bf:
d1:e9:89:a9:95:9a:00:32:e9:12:d4:83:88:58:b3:
1c:e9:d1:d5:dc:9c:d1:b3:f4:f8:be:65:77:df:12:
44:a7:b0:97:2d:81:7f:d0:f3:e9:4e:4a:c8:f8:31:
f6:26:9d:8d:6a:28:06:6d:43:22:2d:40:9c:6f:20:
b9:d8:27:0e:b9:61:e4:41:a6:0e:ba:c1:85:6e:61:
72:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D0:E1:EF:A6:B1:76:88:42:53:6D:3F:AC:DD:D9:EC:81:FA:40:D2
X509v3 Authority Key Identifier:
keyid:D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c6:36:ba:2b:e8:e7:9e:43:ee:53:6b:8b:ec:e1:9f:cb:77:
8d:e0:68:33:88:31:e3:ca:ca:c4:94:a8:44:e4:e9:e3:82:57:
4c:e5:d6:09:f7:9e:6d:b9:23:40:0b:02:92:36:ad:be:c3:1d:
57:aa:ac:98:92:ae:3b:c4:d2:44:be:4b:ae:84:09:f3:9c:a8:
4c:de:a0:13:d6:79:58:9e:bc:f9:4b:18:09:cc:df:bc:bd:ec:
b7:9d:de:a7:ae:eb:41:9c:d0:f0:80:a7:2b:38:b8:9f:79:fe:
6f:e5:fb:66:42:58:e5:80:25:ed:dd:33:78:5a:b4:df:75:43:
a3:e1:7c:de:6c:81:24:9a:44:3e:7b:17:bd:af:8e:39:c9:1b:
5c:c3:39:09:ec:f4:17:0d:88:7e:04:70:10:98:a7:5e:24:5c:
f3:2c:c8:59:7d:11:fa:bb:c8:fd:25:ff:b9:c1:8c:f8:bf:5b:
7b:33:9d:36:a6:9c:5a:0f:b6:f9:9b:09:e2:3e:99:ca:7b:81:
34:86:ee:c5:4f:58:26:f9:f8:69:f4:8d:f8:23:44:4d:ef:ed:
f7:1b:f5:56:b5:9a:4a:6a:7e:9c:77:a8:a0:20:48:69:67:e0:
b1:d5:8e:81:f5:85:cd:10:6e:e4:9f:12:53:a7:13:57:7a:03:
33:a4:e9:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3jRXMn+xCLtHSGgf8dI31MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ODg0ZjkyYWZlYjU4ZmZhYjI2NDg3YjIzMjA1ZmUwZDVk
YThhOWYwHhcNMjUwNDI3MTQwMDU2WhcNMjUwNDI4MTQwMDU2WjAzMTEwLwYDVQQD
EyhhY2QwZTFlZmE2YjE3Njg4NDI1MzZkM2ZhY2RkZDllYzgxZmE0MGQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwx2Pjvt5v52SEn0LW73mVxT2sO3W
LNOzvvPitpQ8Fcm+fblDghHfcOEVyuGdJKAbSLETQq66ofHYUqMrlQp9KNTQxmbO
O6290Q8R5tTzWyI+lfd28udXIjWW/8kULKRvsq8yNcrqM2zQ9+u5xj+hDBQItIF8
LWUIrkPe/IGd7UhnPV19in934VtDIgjYsMpVK3CfQkNtLwuIo1bSDaOLfVF55r48
uYTY9sjr+6ejxawr97/R6YmplZoAMukS1IOIWLMc6dHV3JzRs/T4vmV33xJEp7CX
LYF/0PPpTkrI+DH2Jp2NaigGbUMiLUCcbyC52CcOuWHkQaYOusGFbmFylwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKzQ4e+msXaIQlNtP6zd2eyB+kDSMB8GA1UdIwQY
MBaAFNmIT5Kv61j/qyZIeyMgX+DV2oqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlloUGtxX3JXUC1ySmtoN0l5QmY0TlhhaXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83Y2MzZjgtMDA4Yi00MDdjLWJlZWYt
NzY1MzMyNDVmMmJlLzEvMlloUGtxX3JXUC1ySmtoN0l5QmY0TlhhaXA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS83Y2MzZjgtMDA4Yi00MDdjLWJlZWYtNzY1MzMyNDVmMmJl
LzEvMlloUGtxX3JXUC1ySmtoN0l5QmY0TlhhaXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGMY2uivo
555D7lNri+zhn8t3jeBoM4gx48rKxJSoROTp44JXTOXWCfeebbkjQAsCkjatvsMd
V6qsmJKuO8TSRL5LroQJ85yoTN6gE9Z5WJ68+UsYCczfvL3st53ep67rQZzQ8ICn
Kzi4n3n+b+X7ZkJY5YAl7d0zeFq033VDo+F83myBJJpEPnsXva+OOckbXMM5Cez0
Fw2IfgRwEJinXiRc8yzIWX0R+rvI/SX/ucGM+L9bezOdNqacWg+2+ZsJ4j6ZynuB
NIbuxU9YJvn4afSN+CNETe/t9xv1VrWaSmp+nHeooCBIaWfgsdWOgfWFzRBu5J8S
U6cTV3oDM6TphA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 18:31:41 2025 by rpki-client