Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
File: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft (raw, json)
Hash identifier: 0yBksS5p3fyX1gkwJO3LFq0U0O5/Kfva1rGl5S8PfSc=
Subject key identifier: E0:7B:AB:F0:85:68:D0:8D:C6:62:43:44:E9:CC:9D:09:92:4C:65:DC
Authority key identifier: DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
Certificate issuer: /CN=de23f18c576d6fa609133533c0d0e38d7732c652
Certificate serial: 0196594B0D7915286F4B8601856B1870D44B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
Manifest number: 01A8
Signing time: Mon 21 Apr 2025 17:00:12 +0000
Manifest this update: Mon 21 Apr 2025 17:00:12 +0000
Manifest next update: Tue 22 Apr 2025 17:00:12 +0000
Files and hashes: 1: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl (hash: 1jdsBStsfNsdJ6yd+yvZY5kLGQ2EnTJbw9xTMlFfCHc=)
2: _uzKcHUnRqCblBfJ7LQOWwPDs9E.roa (hash: QtEg8CgvNKFjK8sDnq+KQm/gvMScP6wDUlBc5heZNlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 17:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:4b:0d:79:15:28:6f:4b:86:01:85:6b:18:70:d4:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de23f18c576d6fa609133533c0d0e38d7732c652
Validity
Not Before: Apr 21 17:00:12 2025 GMT
Not After : Apr 22 17:00:12 2025 GMT
Subject: CN=e07babf08568d08dc6624344e9cc9d09924c65dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:44:94:76:65:55:29:2c:88:44:fe:0b:f5:fc:
0e:41:0d:f4:d6:7d:3d:38:22:8b:b9:8a:de:b1:8d:
ae:b0:72:c9:a0:c3:94:65:db:ee:8e:12:c9:d9:d3:
1b:e8:49:1d:03:f5:37:ed:7a:ed:51:15:ee:10:ec:
52:c4:11:24:8a:91:55:57:4d:ca:c8:b3:8f:38:f7:
23:03:31:5a:9a:0b:fb:c3:c0:b4:d1:6b:e4:e8:c8:
34:1d:b1:89:7a:01:c8:2c:6c:9f:10:61:ea:27:54:
5e:08:31:b7:7d:76:b0:27:80:dd:82:a8:0b:ea:a2:
26:f4:00:9a:52:f2:de:9b:d9:ce:61:0b:33:4e:52:
26:cb:30:6d:c4:fb:87:9f:04:ab:bb:02:95:22:f7:
86:0a:9d:21:5f:62:3d:1b:e5:4f:44:84:74:0d:6a:
34:91:c3:47:85:64:f8:f7:21:68:72:99:8d:67:32:
de:59:0d:3f:24:4e:38:b8:36:e5:8e:ef:0e:f7:c1:
90:c3:e9:50:82:9b:21:19:d8:45:28:77:5a:66:1f:
cc:be:77:49:5c:15:64:33:fc:81:8a:ed:5a:0c:10:
6d:8b:0a:72:f5:47:93:0d:c3:9d:ba:b6:63:fe:3e:
94:40:18:4d:c7:30:57:b3:18:fe:04:0c:a6:84:12:
fb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:7B:AB:F0:85:68:D0:8D:C6:62:43:44:E9:CC:9D:09:92:4C:65:DC
X509v3 Authority Key Identifier:
keyid:DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:6c:89:59:68:5e:6a:61:6c:30:7b:0b:8b:66:5d:1d:d2:41:
d2:c9:3e:15:83:5b:bb:10:16:eb:01:0f:4a:b5:bc:0c:7d:b7:
a4:e2:e0:aa:fb:ae:43:37:e8:14:8b:78:8c:52:ea:90:cb:1b:
9d:e9:82:98:a4:09:00:d3:6c:d8:28:53:b1:e4:92:79:8d:f2:
f6:10:91:f4:6e:d3:a4:b8:25:c4:3e:9b:9d:64:a3:b2:b5:48:
c7:5f:4e:c6:d1:a1:ed:d0:f1:28:7d:8e:cf:2c:26:36:69:7d:
cc:fc:fd:b0:d6:08:db:78:65:8b:db:97:9f:78:cd:38:d9:b5:
60:10:41:a3:51:0d:a7:28:e2:9c:86:19:9e:1b:67:2f:28:55:
5a:30:08:6a:69:64:32:13:c8:57:69:5c:ef:41:0e:81:34:5b:
66:64:08:60:e0:29:e4:7e:25:07:db:f0:16:91:72:ff:fb:22:
f1:dd:cd:43:d1:ca:b7:fb:77:2e:6a:c0:b2:71:fb:4f:cc:2c:
35:58:08:85:c9:5a:bf:73:fe:3f:12:b3:57:49:74:7c:86:25:
c5:69:87:93:a3:83:f2:c4:d8:f2:e1:ca:65:02:50:8c:0d:80:
97:47:c1:bb:34:3b:f4:e8:12:da:4d:a2:73:a8:0e:ed:94:3b:
a8:89:10:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZZSw15FShvS4YBhWsYcNRLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMjNmMThjNTc2ZDZmYTYwOTEzMzUzM2MwZDBlMzhkNzcz
MmM2NTIwHhcNMjUwNDIxMTcwMDEyWhcNMjUwNDIyMTcwMDEyWjAzMTEwLwYDVQQD
EyhlMDdiYWJmMDg1NjhkMDhkYzY2MjQzNDRlOWNjOWQwOTkyNGM2NWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0SUdmVVKSyIRP4L9fwOQQ301n09
OCKLuYresY2usHLJoMOUZdvujhLJ2dMb6EkdA/U37XrtURXuEOxSxBEkipFVV03K
yLOPOPcjAzFamgv7w8C00Wvk6Mg0HbGJegHILGyfEGHqJ1ReCDG3fXawJ4DdgqgL
6qIm9ACaUvLem9nOYQszTlImyzBtxPuHnwSruwKVIveGCp0hX2I9G+VPRIR0DWo0
kcNHhWT49yFocpmNZzLeWQ0/JE44uDblju8O98GQw+lQgpshGdhFKHdaZh/MvndJ
XBVkM/yBiu1aDBBtiwpy9UeTDcOdurZj/j6UQBhNxzBXsxj+BAymhBL7ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOB7q/CFaNCNxmJDROnMnQmSTGXcMB8GA1UdIwQY
MBaAFN4j8YxXbW+mCRM1M8DQ4413MsZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi85OGM1ZDktZTJiZS00OTNiLTg2NTct
NWU4NjAwNmUyMGFlLzEvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi85OGM1ZDktZTJiZS00OTNiLTg2NTctNWU4NjAwNmUyMGFl
LzEvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMGyJWWhe
amFsMHsLi2ZdHdJB0sk+FYNbuxAW6wEPSrW8DH23pOLgqvuuQzfoFIt4jFLqkMsb
nemCmKQJANNs2ChTseSSeY3y9hCR9G7TpLglxD6bnWSjsrVIx19OxtGh7dDxKH2O
zywmNml9zPz9sNYI23hli9uXn3jNONm1YBBBo1ENpyjinIYZnhtnLyhVWjAIamlk
MhPIV2lc70EOgTRbZmQIYOAp5H4lB9vwFpFy//si8d3NQ9HKt/t3LmrAsnH7T8ws
NVgIhclav3P+PxKzV0l0fIYlxWmHk6OD8sTY8uHKZQJQjA2Al0fBuzQ79OgS2k2i
c6gO7ZQ7qIkQoA==
-----END CERTIFICATE-----
Generated at Tue Apr 22 01:52:23 2025 by rpki-client