Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
File: 2sMmMqqRVCU8bc0jMemtaSC2vcw.mft (raw, json)
Hash identifier: lLU4+SAofcE2SOwAEy/0YDXfKFWELzi8ICd/kFhRXKU=
Subject key identifier: FD:39:89:3E:CA:8F:F5:C2:E3:48:98:5C:14:E0:3A:9A:8E:02:EB:35
Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Certificate serial: 0198733D41A5E86DBBDE337C40B819FB37F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
Manifest number: 0DAB
Signing time: Mon 04 Aug 2025 04:00:50 +0000
Manifest this update: Mon 04 Aug 2025 04:00:50 +0000
Manifest next update: Tue 05 Aug 2025 04:00:50 +0000
Files and hashes: 1: 2sMmMqqRVCU8bc0jMemtaSC2vcw.crl (hash: 7PGRylvRwO6jZO2l95HnW5Pl2/hDh5elmirF2cF6cQ4=)
2: CW5XXGbSHLy5qht82EbGk600atQ.roa (hash: 8xLLW0wHU24TMYAN26pfip52tQpmGJnJ6m5zJ2CIta8=)
3: WB4VFJtMdRQ8LPD-pPSCHzrXGms.roa (hash: cwVGAvm4ISTc3hrZPIqP9LBQXHGGf2V0XCAeWNsC/Qc=)
4: teW-DT8zdzN4G6q3ot7ZU_q2aDU.roa (hash: vMh/kxEkmKzqOFqR68vsoiN3gzaKBX7vYAgPza9p9cw=)
5: xHovsWco0FWia8DWR-GvNsYSrNI.roa (hash: tby+FFpFl1LGlp9XQyXnHjYmVkeUGYGKTrQzTYqHrLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:41:a5:e8:6d:bb:de:33:7c:40:b8:19:fb:37:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Validity
Not Before: Aug 4 04:00:50 2025 GMT
Not After : Aug 5 04:00:50 2025 GMT
Subject: CN=fd39893eca8ff5c2e348985c14e03a9a8e02eb35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ba:f0:c0:2b:4a:53:32:58:60:0d:7d:07:85:
36:d2:96:03:41:36:bd:98:22:bd:88:c8:a2:49:1d:
f6:81:d2:57:26:79:96:d5:d5:55:61:88:e6:b4:f0:
3c:cd:0a:c8:14:c2:f6:ef:cf:69:5e:9f:8d:6e:f0:
52:fe:0f:96:f9:93:20:37:67:59:0f:21:d4:c0:d9:
42:16:02:bf:e6:2a:7c:2c:42:2b:27:05:ef:6a:d6:
8f:51:69:9b:a0:72:02:9c:c7:71:bd:1d:54:f0:f3:
ef:6e:40:3f:eb:65:50:8b:7c:e5:83:ad:bf:40:da:
51:26:ae:da:7d:4d:30:d2:08:03:bb:a2:3b:36:14:
c7:1c:6e:20:c7:44:36:29:1f:fd:9e:e4:e6:aa:96:
6f:56:2b:73:bf:d8:b8:b0:0a:b2:1e:57:fe:92:15:
d6:32:af:85:0e:f7:ea:23:d5:2a:3b:d0:77:6f:01:
4b:84:ff:e3:a4:74:ee:ea:0a:27:53:aa:3e:97:61:
21:a9:47:32:ea:3f:4b:3b:a1:ae:33:8c:49:d0:9b:
19:49:b5:f1:e8:26:36:69:1b:44:20:a7:c0:a4:42:
26:3d:37:46:69:94:7c:b1:d6:86:ef:e1:fa:b4:99:
40:2a:3e:eb:d5:6f:fa:b9:87:b1:e0:1f:03:21:73:
2e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:39:89:3E:CA:8F:F5:C2:E3:48:98:5C:14:E0:3A:9A:8E:02:EB:35
X509v3 Authority Key Identifier:
keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:65:e7:d1:44:80:86:91:8b:e5:bb:c3:0f:bd:e7:ea:c6:f1:
36:4f:74:4b:2d:35:39:90:77:60:ac:74:07:4e:c5:fd:13:ee:
29:f2:aa:9e:c6:13:b2:2f:35:3c:8a:2c:e7:81:76:7b:34:93:
75:ef:fe:33:b5:e8:6c:eb:f0:7f:1c:cf:a6:21:57:fa:31:89:
6c:56:c7:68:14:d3:bf:96:fa:52:7c:06:4a:d4:98:56:52:6a:
a6:6e:3f:9e:81:4f:1d:fc:33:f9:70:ba:09:ba:ed:4f:da:93:
03:e7:6d:93:9f:cf:11:64:04:3b:b8:9a:34:54:f2:cc:b3:09:
67:e8:5b:e7:0e:a5:07:f9:df:90:19:f2:1d:68:a3:4f:c9:51:
2d:30:0d:0a:be:fa:17:7e:47:09:54:b6:da:e6:c2:c3:c4:40:
32:b0:60:7f:c9:a4:8c:c4:fa:45:78:15:25:39:52:f2:f9:44:
f5:9b:2f:bd:e5:d7:8b:e9:26:da:8b:39:d1:8a:bc:c4:b7:3f:
af:47:39:6d:cb:e5:fe:cd:e0:ce:56:b3:16:e0:76:72:09:e0:
dc:de:8f:11:a5:d4:bb:fb:cf:aa:01:10:c1:98:96:f0:bd:05:
de:7e:dc:65:b6:af:2e:b6:d6:95:fd:51:c7:3a:f5:d6:99:f9:
aa:3c:9a:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzPUGl6G273jN8QLgZ+zf1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYzMyNjMyYWE5MTU0MjUzYzZkY2QyMzMxZTlhZDY5MjBi
NmJkY2MwHhcNMjUwODA0MDQwMDUwWhcNMjUwODA1MDQwMDUwWjAzMTEwLwYDVQQD
EyhmZDM5ODkzZWNhOGZmNWMyZTM0ODk4NWMxNGUwM2E5YThlMDJlYjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4rrwwCtKUzJYYA19B4U20pYDQTa9
mCK9iMiiSR32gdJXJnmW1dVVYYjmtPA8zQrIFML2789pXp+NbvBS/g+W+ZMgN2dZ
DyHUwNlCFgK/5ip8LEIrJwXvataPUWmboHICnMdxvR1U8PPvbkA/62VQi3zlg62/
QNpRJq7afU0w0ggDu6I7NhTHHG4gx0Q2KR/9nuTmqpZvVitzv9i4sAqyHlf+khXW
Mq+FDvfqI9UqO9B3bwFLhP/jpHTu6gonU6o+l2EhqUcy6j9LO6GuM4xJ0JsZSbXx
6CY2aRtEIKfApEImPTdGaZR8sdaG7+H6tJlAKj7r1W/6uYex4B8DIXMupwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP05iT7Kj/XC40iYXBTgOpqOAus1MB8GA1UdIwQY
MBaAFNrDJjKqkVQlPG3NIzHprWkgtr3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2Mjct
MjQ2NTRlOTQxYzEyLzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2MjctMjQ2NTRlOTQxYzEy
LzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcmXn0USA
hpGL5bvDD73n6sbxNk90Sy01OZB3YKx0B07F/RPuKfKqnsYTsi81PIos54F2ezST
de/+M7XobOvwfxzPpiFX+jGJbFbHaBTTv5b6UnwGStSYVlJqpm4/noFPHfwz+XC6
CbrtT9qTA+dtk5/PEWQEO7iaNFTyzLMJZ+hb5w6lB/nfkBnyHWijT8lRLTANCr76
F35HCVS22ubCw8RAMrBgf8mkjMT6RXgVJTlS8vlE9ZsvveXXi+km2os50Yq8xLc/
r0c5bcvl/s3gzlazFuB2cgng3N6PEaXUu/vPqgEQwZiW8L0F3n7cZbavLrbWlf1R
xzr11pn5qjyaqA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:07:38 2025 by rpki-client