Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
File: g-3hynyzX11h-NWctQNumT6kO3A.mft (raw, json)
Hash identifier: c9pIZUZZviqy2TmAeRy0Fsc/LgLnPH3hA1s/Do51OPc=
Subject key identifier: E0:DA:51:3C:9A:6A:D4:5A:A7:39:7A:CF:C7:EE:24:CF:CA:26:FD:98
Authority key identifier: 83:ED:E1:CA:7C:B3:5F:5D:61:F8:D5:9C:B5:03:6E:99:3E:A4:3B:70
Certificate issuer: /CN=83ede1ca7cb35f5d61f8d59cb5036e993ea43b70
Certificate serial: 01984588BBE3E3E7FBFD67CFD22EC883BF03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-3hynyzX11h-NWctQNumT6kO3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
Manifest number: 0E26
Signing time: Sat 26 Jul 2025 07:00:45 +0000
Manifest this update: Sat 26 Jul 2025 07:00:45 +0000
Manifest next update: Sun 27 Jul 2025 07:00:45 +0000
Files and hashes: 1: g-3hynyzX11h-NWctQNumT6kO3A.crl (hash: 6Vs7yi9lNoTNCKa3+e1G122ZiWAeZDDkZZujbOmonJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/g-3hynyzX11h-NWctQNumT6kO3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:88:bb:e3:e3:e7:fb:fd:67:cf:d2:2e:c8:83:bf:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83ede1ca7cb35f5d61f8d59cb5036e993ea43b70
Validity
Not Before: Jul 26 07:00:45 2025 GMT
Not After : Jul 27 07:00:45 2025 GMT
Subject: CN=e0da513c9a6ad45aa7397acfc7ee24cfca26fd98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f5:1b:0a:d1:40:9e:85:c0:03:8f:a5:dc:ed:
22:a7:30:10:1e:ea:24:e0:07:43:19:4a:0a:50:76:
68:69:84:08:9a:48:fa:c9:84:79:98:1a:ba:07:4a:
1b:e5:5d:02:83:83:09:71:a4:8e:f3:af:54:ac:44:
22:8b:75:6c:18:d2:54:fc:12:7f:66:b7:70:2e:13:
a1:01:64:79:50:47:be:22:91:9d:1c:a0:84:ad:17:
f8:a6:08:60:7a:a9:46:b6:6d:34:41:f9:c9:92:83:
bc:22:24:9e:ff:20:ed:cb:41:d0:e9:10:b9:b9:95:
9d:e8:be:cd:61:5c:86:cf:35:f4:ee:5d:2f:1b:c7:
ab:41:af:d9:eb:0a:65:5d:08:b9:2d:d3:6f:e1:eb:
e6:44:fe:1a:b0:39:8c:5f:b4:5f:ef:42:dc:1f:88:
48:4d:b0:76:d8:29:f4:fb:2e:20:8d:13:6a:a9:40:
30:da:aa:8b:3b:48:3c:76:60:9a:f8:03:48:b4:64:
f9:69:41:9d:a7:9d:09:87:78:74:06:e7:c2:fd:25:
e2:d2:62:7a:9e:34:55:39:2c:0c:af:53:20:02:7a:
fe:83:34:08:6e:ed:a9:c6:6b:dc:19:cb:a0:54:83:
c5:46:02:61:7f:f6:ed:04:67:fe:7e:5d:b4:aa:3b:
3d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:DA:51:3C:9A:6A:D4:5A:A7:39:7A:CF:C7:EE:24:CF:CA:26:FD:98
X509v3 Authority Key Identifier:
keyid:83:ED:E1:CA:7C:B3:5F:5D:61:F8:D5:9C:B5:03:6E:99:3E:A4:3B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-3hynyzX11h-NWctQNumT6kO3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f3eb19-85ee-487f-ad12-8b3660ed5ed0/1/g-3hynyzX11h-NWctQNumT6kO3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:f7:cd:c7:ce:bf:85:8d:21:77:c9:d5:47:02:d9:23:57:f9:
60:ac:0a:ba:56:56:9a:ae:4e:a7:0f:0b:c5:1b:3d:6c:ad:bb:
98:f3:41:20:f8:d8:c1:af:55:35:f0:c3:8e:f4:9a:02:22:ee:
79:c3:14:90:53:1e:f3:4d:1a:b6:ff:ac:b6:fd:64:18:4b:6c:
fb:30:20:97:a7:c1:66:75:31:3f:da:f9:24:3e:42:5a:10:ef:
45:26:04:a9:8c:9c:80:91:26:f1:b7:e2:cd:92:a7:e1:3c:c6:
41:b8:f7:31:3a:c9:b2:24:21:9d:5a:58:14:bd:88:27:8b:06:
90:84:f2:9d:f1:e4:53:fe:67:c3:1c:75:1e:4c:2c:84:f5:94:
c9:0c:5c:5b:16:ea:8f:bc:5e:12:c5:8a:bf:b7:35:73:7b:1e:
81:e5:bd:c2:ea:a9:81:2f:d6:58:f4:07:0c:98:e2:9f:91:4c:
af:c9:24:40:93:90:84:d3:69:f4:69:63:a9:02:74:46:38:6a:
54:79:11:ec:fb:b7:d2:19:55:2a:b7:75:16:87:1d:20:12:4e:
a7:aa:e1:d4:da:60:c3:2d:07:aa:39:67:4c:26:e7:99:ad:c1:
cf:af:46:d8:06:b8:ec:1a:65:b7:fb:45:b9:de:19:11:21:77:
27:84:75:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhFiLvj4+f7/WfP0i7Ig78DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzZWRlMWNhN2NiMzVmNWQ2MWY4ZDU5Y2I1MDM2ZTk5M2Vh
NDNiNzAwHhcNMjUwNzI2MDcwMDQ1WhcNMjUwNzI3MDcwMDQ1WjAzMTEwLwYDVQQD
EyhlMGRhNTEzYzlhNmFkNDVhYTczOTdhY2ZjN2VlMjRjZmNhMjZmZDk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfUbCtFAnoXAA4+l3O0ipzAQHuok
4AdDGUoKUHZoaYQImkj6yYR5mBq6B0ob5V0Cg4MJcaSO869UrEQii3VsGNJU/BJ/
ZrdwLhOhAWR5UEe+IpGdHKCErRf4pghgeqlGtm00QfnJkoO8IiSe/yDty0HQ6RC5
uZWd6L7NYVyGzzX07l0vG8erQa/Z6wplXQi5LdNv4evmRP4asDmMX7Rf70LcH4hI
TbB22Cn0+y4gjRNqqUAw2qqLO0g8dmCa+ANItGT5aUGdp50Jh3h0BufC/SXi0mJ6
njRVOSwMr1MgAnr+gzQIbu2pxmvcGcugVIPFRgJhf/btBGf+fl20qjs9dwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFODaUTyaatRapzl6z8fuJM/KJv2YMB8GA1UdIwQY
MBaAFIPt4cp8s19dYfjVnLUDbpk+pDtwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZy0zaHlueXpYMTFoLU5XY3RRTnVtVDZrTzNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9mM2ViMTktODVlZS00ODdmLWFkMTIt
OGIzNjYwZWQ1ZWQwLzEvZy0zaHlueXpYMTFoLU5XY3RRTnVtVDZrTzNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9mM2ViMTktODVlZS00ODdmLWFkMTItOGIzNjYwZWQ1ZWQw
LzEvZy0zaHlueXpYMTFoLU5XY3RRTnVtVDZrTzNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjPfNx86/
hY0hd8nVRwLZI1f5YKwKulZWmq5Opw8LxRs9bK27mPNBIPjYwa9VNfDDjvSaAiLu
ecMUkFMe800atv+stv1kGEts+zAgl6fBZnUxP9r5JD5CWhDvRSYEqYycgJEm8bfi
zZKn4TzGQbj3MTrJsiQhnVpYFL2IJ4sGkITynfHkU/5nwxx1HkwshPWUyQxcWxbq
j7xeEsWKv7c1c3segeW9wuqpgS/WWPQHDJjin5FMr8kkQJOQhNNp9GljqQJ0Rjhq
VHkR7Pu30hlVKrd1FocdIBJOp6rh1Npgwy0HqjlnTCbnma3Bz69G2Aa47Bplt/tF
ud4ZESF3J4R1xg==
-----END CERTIFICATE-----
Generated at Sat Jul 26 11:38:33 2025 by rpki-client