Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: CyGrUm4muVmBqicq5JFpS2s/4tW3AjFIdsUghhDt3do=
Subject key identifier: BC:7E:53:F1:03:09:F0:4C:AB:6D:30:9D:02:E1:4F:F9:99:A1:AC:3B
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 01984A77B14007697DC6E5578DA6E9A2D3E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 1603
Signing time: Sun 27 Jul 2025 06:00:14 +0000
Manifest this update: Sun 27 Jul 2025 06:00:14 +0000
Manifest next update: Mon 28 Jul 2025 06:00:14 +0000
Files and hashes: 1: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: vKlmebEIkDuJ8Vv/C6cAlRsROQoIiZ6B1D8/9d+mKXo=)
2: FzwFRP4-A3VF1cOjtYqnBZUlK8Y.roa (hash: arVJNSKTx0owboHk87Pz6q3TsmBB0DVqu8a1mnGjuAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:77:b1:40:07:69:7d:c6:e5:57:8d:a6:e9:a2:d3:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: Jul 27 06:00:14 2025 GMT
Not After : Jul 28 06:00:14 2025 GMT
Subject: CN=bc7e53f10309f04cab6d309d02e14ff999a1ac3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:56:ad:03:c7:f2:ed:5b:e9:11:ac:37:9a:c4:
02:6f:75:05:4e:4f:fc:1f:df:8a:77:99:0b:22:ed:
5b:9a:71:08:ba:33:89:4f:d4:0c:bd:63:58:a2:b2:
15:13:7a:5b:67:f0:8c:0c:d3:6b:99:71:7c:aa:9d:
90:68:41:d7:aa:7e:0e:c0:de:f8:77:3e:ec:b7:53:
df:aa:15:89:ef:66:40:3c:95:8f:82:b6:94:ef:af:
af:d5:ab:26:a3:06:78:5f:e4:4a:c3:69:a9:b2:36:
25:ac:59:91:8c:4f:13:45:e3:03:73:42:d1:25:45:
0f:66:44:de:20:f3:b5:1e:05:18:d2:12:cf:6e:4c:
e1:b5:86:64:d5:35:bd:82:47:f2:7d:60:57:d3:90:
ce:72:7d:29:03:70:e4:67:ba:ba:b5:fe:e2:e4:f7:
a0:7b:85:05:8e:d8:91:dc:e0:de:b9:7f:85:50:d8:
f1:d9:50:ba:ad:72:ba:4b:c1:34:ba:07:55:a5:70:
9a:6b:7c:9a:46:15:34:2e:dc:07:7a:11:02:e5:09:
b2:d2:bf:7c:a1:ff:ef:8d:8b:de:de:4d:14:cc:fc:
74:ae:ca:66:56:b1:0b:cd:ec:f0:a7:47:4e:02:39:
ca:95:45:36:46:ea:cf:c2:51:7a:9c:0d:4d:a4:ab:
b9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:7E:53:F1:03:09:F0:4C:AB:6D:30:9D:02:E1:4F:F9:99:A1:AC:3B
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:e9:68:d1:37:bf:80:fd:43:df:ac:c3:1b:01:27:53:87:38:
4d:08:13:f6:42:48:1d:60:fb:36:b2:ba:13:57:ab:2c:82:55:
2f:98:3a:6c:b0:93:da:5a:12:c9:a1:2e:2c:56:2c:db:08:7b:
76:dc:10:d6:8e:31:0a:25:04:06:c1:89:f8:c3:4c:ec:24:1c:
b7:02:ca:47:7c:0b:be:96:d2:38:b8:7b:78:81:97:89:eb:e1:
61:8f:d1:d3:12:49:92:82:3c:bf:8b:68:e3:12:6c:0d:67:d7:
8f:c6:1b:a8:c0:03:50:ec:e2:f6:2e:14:db:18:2b:b7:6b:fa:
0e:15:a7:37:d9:bc:9c:50:4b:9d:fd:31:3f:55:a0:66:ef:7a:
66:61:ae:13:98:45:85:10:b1:09:24:c3:73:67:cb:df:f0:b1:
e3:71:ab:06:44:d8:9b:a1:1f:f3:1e:6d:f7:a9:46:c2:15:75:
30:98:69:31:92:09:d0:65:57:60:25:8d:fe:ff:4a:3a:a3:87:
0f:03:e6:85:40:a8:d1:85:91:f9:60:8d:ea:92:75:9d:3d:93:
e2:bb:8f:ac:3f:f8:95:23:d4:ce:5a:41:39:01:da:18:2f:dc:
d6:f1:69:dc:25:4a:a1:b2:09:2f:38:33:d4:9d:2f:ca:88:66:
c5:e6:e0:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhKd7FAB2l9xuVXjabpotPmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMDU5NzBlNjUwYzJhYWYxYWI2YTNhMzNhODM3MzI0NjZh
MTUxMmUwHhcNMjUwNzI3MDYwMDE0WhcNMjUwNzI4MDYwMDE0WjAzMTEwLwYDVQQD
EyhiYzdlNTNmMTAzMDlmMDRjYWI2ZDMwOWQwMmUxNGZmOTk5YTFhYzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFatA8fy7VvpEaw3msQCb3UFTk/8
H9+Kd5kLIu1bmnEIujOJT9QMvWNYorIVE3pbZ/CMDNNrmXF8qp2QaEHXqn4OwN74
dz7st1PfqhWJ72ZAPJWPgraU76+v1asmowZ4X+RKw2mpsjYlrFmRjE8TReMDc0LR
JUUPZkTeIPO1HgUY0hLPbkzhtYZk1TW9gkfyfWBX05DOcn0pA3DkZ7q6tf7i5Peg
e4UFjtiR3ODeuX+FUNjx2VC6rXK6S8E0ugdVpXCaa3yaRhU0LtwHehEC5Qmy0r98
of/vjYve3k0UzPx0rspmVrELzezwp0dOAjnKlUU2RurPwlF6nA1NpKu5aQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLx+U/EDCfBMq20wnQLhT/mZoaw7MB8GA1UdIwQY
MBaAFNwFlw5lDCqvGrajozqDcyRmoVEuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0FXWERtVU1LcThhdHFPak9vTnpKR2FoVVM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zYjlhNDgtOGI2My00ZDNiLWEzYTkt
NjdhNTQwZTI5N2YwLzEvM0FXWERtVU1LcThhdHFPak9vTnpKR2FoVVM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8zYjlhNDgtOGI2My00ZDNiLWEzYTktNjdhNTQwZTI5N2Yw
LzEvM0FXWERtVU1LcThhdHFPak9vTnpKR2FoVVM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY+lo0Te/
gP1D36zDGwEnU4c4TQgT9kJIHWD7NrK6E1erLIJVL5g6bLCT2loSyaEuLFYs2wh7
dtwQ1o4xCiUEBsGJ+MNM7CQctwLKR3wLvpbSOLh7eIGXievhYY/R0xJJkoI8v4to
4xJsDWfXj8YbqMADUOzi9i4U2xgrt2v6DhWnN9m8nFBLnf0xP1WgZu96ZmGuE5hF
hRCxCSTDc2fL3/Cx43GrBkTYm6Ef8x5t96lGwhV1MJhpMZIJ0GVXYCWN/v9KOqOH
DwPmhUCo0YWR+WCN6pJ1nT2T4ruPrD/4lSPUzlpBOQHaGC/c1vFp3CVKobIJLzgz
1J0vyohmxebgVA==
-----END CERTIFICATE-----
Generated at Sun Jul 27 07:25:18 2025 by rpki-client