Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
File: 2sMmMqqRVCU8bc0jMemtaSC2vcw.mft (raw, json)
Hash identifier: YMDZrtxn1AhwEuhQn+U0RIL1uRiJHabrSus1QUWBjtQ=
Subject key identifier: 63:BF:FA:DB:8F:CF:01:38:C3:95:0F:11:54:31:82:67:D4:0F:1C:0F
Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Certificate serial: 0196718AE6AADCD735E8BF18C6988A936359
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
Manifest number: 0CA1
Signing time: Sat 26 Apr 2025 10:00:50 +0000
Manifest this update: Sat 26 Apr 2025 10:00:50 +0000
Manifest next update: Sun 27 Apr 2025 10:00:50 +0000
Files and hashes: 1: 2sMmMqqRVCU8bc0jMemtaSC2vcw.crl (hash: F1ZXF2hSfCP4Vdo0oT/1XgSLP9M/p3kBYdhw7M953wM=)
2: CW5XXGbSHLy5qht82EbGk600atQ.roa (hash: 8xLLW0wHU24TMYAN26pfip52tQpmGJnJ6m5zJ2CIta8=)
3: WB4VFJtMdRQ8LPD-pPSCHzrXGms.roa (hash: cwVGAvm4ISTc3hrZPIqP9LBQXHGGf2V0XCAeWNsC/Qc=)
4: teW-DT8zdzN4G6q3ot7ZU_q2aDU.roa (hash: vMh/kxEkmKzqOFqR68vsoiN3gzaKBX7vYAgPza9p9cw=)
5: xHovsWco0FWia8DWR-GvNsYSrNI.roa (hash: tby+FFpFl1LGlp9XQyXnHjYmVkeUGYGKTrQzTYqHrLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 10:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:71:8a:e6:aa:dc:d7:35:e8:bf:18:c6:98:8a:93:63:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Validity
Not Before: Apr 26 10:00:50 2025 GMT
Not After : Apr 27 10:00:50 2025 GMT
Subject: CN=63bffadb8fcf0138c3950f1154318267d40f1c0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c0:d4:8c:8f:86:11:9b:6f:0c:9d:b2:d0:70:
59:23:db:ca:96:43:17:78:73:17:c2:49:e7:1c:7c:
89:19:e3:18:ae:93:ff:22:72:c1:19:55:8d:ea:cd:
6b:cf:57:76:3f:c3:8d:36:7a:1a:c9:92:9f:66:27:
58:5b:88:e3:05:9a:b2:1c:12:45:75:79:ba:e5:99:
04:62:14:b2:91:b2:25:79:0e:9c:47:25:10:66:94:
24:59:26:6f:3b:3b:28:be:1b:49:15:b4:3f:a7:a7:
9d:73:c1:73:ab:a4:14:42:65:a5:c6:64:5e:bc:f3:
8d:15:4c:8b:27:30:02:34:76:1f:64:66:e5:0d:3b:
2d:57:7f:56:32:c0:55:d7:93:6f:4a:e6:d5:29:a7:
5f:54:17:d4:02:0e:71:cc:40:0f:57:37:67:52:d1:
56:db:43:d6:1d:db:8b:4e:c6:97:2f:dd:03:75:11:
4f:91:d2:68:a3:6c:75:cb:f7:a4:66:b0:fa:f0:5f:
e9:3d:e7:55:77:77:f3:2c:bc:82:07:49:9e:9e:f7:
35:35:c3:84:68:2b:61:4f:7f:56:6f:e5:59:12:86:
c6:bd:87:0d:ec:98:0a:26:14:55:ec:81:e6:77:fc:
56:6d:29:6a:84:6c:2c:01:a6:70:46:9b:a3:5f:24:
aa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:BF:FA:DB:8F:CF:01:38:C3:95:0F:11:54:31:82:67:D4:0F:1C:0F
X509v3 Authority Key Identifier:
keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:87:65:8f:1a:5d:5f:6d:9b:63:c6:64:6b:78:e8:bd:bb:4d:
2a:24:75:b0:55:20:e3:0f:93:61:75:2f:1d:4f:e2:06:33:cb:
8c:b6:41:36:dd:43:da:6e:ca:3f:28:32:ab:2e:57:1b:94:a3:
c2:54:37:2e:13:8b:04:57:cb:e2:f0:fe:1e:06:54:64:55:b6:
45:e9:b3:f0:90:0f:45:d6:d1:4f:4b:9c:d0:df:cc:b4:c3:d7:
7c:7f:95:77:b9:b7:5f:3e:60:d4:f1:bb:bb:77:b7:da:7d:eb:
b2:47:ea:a9:32:e6:35:be:58:4c:6e:3b:f1:fc:d9:08:c5:60:
fd:b1:f1:5c:aa:14:ec:d9:c8:41:2b:46:cf:34:48:97:25:ee:
6a:44:72:f1:41:8b:5f:32:d3:46:f4:11:b8:6c:1a:39:18:1d:
53:40:3f:c5:32:09:28:08:66:b0:c7:5d:af:7a:89:c2:fc:13:
34:cd:c3:b7:fc:c1:78:31:09:c4:a6:2b:15:c2:fb:5d:81:22:
a1:e3:da:b6:4d:39:06:73:00:b7:02:dc:d4:cd:50:be:63:af:
5d:24:2c:f5:80:c3:9b:f8:2a:24:61:f7:14:60:43:79:f9:3c:
ee:d1:d2:83:19:0b:8f:67:1c:40:8d:6a:dd:6a:71:b8:18:35:
df:2f:0e:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZxiuaq3Nc16L8YxpiKk2NZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYzMyNjMyYWE5MTU0MjUzYzZkY2QyMzMxZTlhZDY5MjBi
NmJkY2MwHhcNMjUwNDI2MTAwMDUwWhcNMjUwNDI3MTAwMDUwWjAzMTEwLwYDVQQD
Eyg2M2JmZmFkYjhmY2YwMTM4YzM5NTBmMTE1NDMxODI2N2Q0MGYxYzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8DUjI+GEZtvDJ2y0HBZI9vKlkMX
eHMXwknnHHyJGeMYrpP/InLBGVWN6s1rz1d2P8ONNnoayZKfZidYW4jjBZqyHBJF
dXm65ZkEYhSykbIleQ6cRyUQZpQkWSZvOzsovhtJFbQ/p6edc8Fzq6QUQmWlxmRe
vPONFUyLJzACNHYfZGblDTstV39WMsBV15NvSubVKadfVBfUAg5xzEAPVzdnUtFW
20PWHduLTsaXL90DdRFPkdJoo2x1y/ekZrD68F/pPedVd3fzLLyCB0menvc1NcOE
aCthT39Wb+VZEobGvYcN7JgKJhRV7IHmd/xWbSlqhGwsAaZwRpujXySqLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGO/+tuPzwE4w5UPEVQxgmfUDxwPMB8GA1UdIwQY
MBaAFNrDJjKqkVQlPG3NIzHprWkgtr3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2Mjct
MjQ2NTRlOTQxYzEyLzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2MjctMjQ2NTRlOTQxYzEy
LzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc4dljxpd
X22bY8Zka3jovbtNKiR1sFUg4w+TYXUvHU/iBjPLjLZBNt1D2m7KPygyqy5XG5Sj
wlQ3LhOLBFfL4vD+HgZUZFW2Remz8JAPRdbRT0uc0N/MtMPXfH+Vd7m3Xz5g1PG7
u3e32n3rskfqqTLmNb5YTG478fzZCMVg/bHxXKoU7NnIQStGzzRIlyXuakRy8UGL
XzLTRvQRuGwaORgdU0A/xTIJKAhmsMddr3qJwvwTNM3Dt/zBeDEJxKYrFcL7XYEi
oePatk05BnMAtwLc1M1QvmOvXSQs9YDDm/gqJGH3FGBDefk87tHSgxkLj2ccQI1q
3WpxuBg13y8OOQ==
-----END CERTIFICATE-----
Generated at Sat Apr 26 20:18:39 2025 by rpki-client