Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: 9Jvk5WrKthN6zKYSSNcwUxPqDO1mmzeqJxs7LDfRY4E=
Subject key identifier: 72:25:4A:8A:71:74:68:F8:F5:8E:4A:96:7E:F6:04:5D:7A:E8:A3:B4
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 01964D470F0BD31254F9C02CC90874AEB3A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 148B
Signing time: Sat 19 Apr 2025 09:00:24 +0000
Manifest this update: Sat 19 Apr 2025 09:00:24 +0000
Manifest next update: Sun 20 Apr 2025 09:00:24 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: 5caSisVhjuu2WBxhu8ECbLAVQ8GofMdsDwHLyoUwmd4=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:0f:0b:d3:12:54:f9:c0:2c:c9:08:74:ae:b3:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Apr 19 09:00:24 2025 GMT
Not After : Apr 20 09:00:24 2025 GMT
Subject: CN=72254a8a717468f8f58e4a967ef6045d7ae8a3b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9d:fa:f1:7d:62:07:f7:7b:d0:b6:a3:83:05:
6e:7e:e2:45:3d:d6:92:06:33:c2:fe:87:a7:84:ce:
6e:42:40:b8:d6:a9:8f:47:84:3e:a3:a4:44:d8:c2:
2c:cb:44:da:d5:46:22:4f:e3:40:7f:0d:b9:d7:a7:
19:25:93:cb:12:5a:eb:38:f6:67:ef:52:ed:28:f6:
60:0d:80:03:dd:c8:f0:bd:97:67:04:89:95:02:ce:
5a:84:d8:a2:91:7e:f7:2e:d7:56:2f:90:7e:0b:7e:
88:63:70:06:bc:c9:9e:01:9f:00:28:f5:85:c0:80:
ca:f5:0f:2e:81:75:70:87:c4:d7:5a:5a:cd:49:69:
56:68:7d:77:02:69:3b:cb:da:3c:c8:52:1f:73:38:
09:2c:8a:24:ec:4a:8d:8d:06:f2:05:66:b6:ec:db:
52:85:20:b8:a5:a3:97:06:09:b6:52:20:5a:a6:9c:
e1:cd:11:d9:a0:e3:2d:28:a3:2e:1e:88:d3:f6:c3:
94:d5:94:5c:8e:7e:f3:7b:1b:ce:aa:36:44:bc:81:
3d:57:42:87:5e:df:18:33:17:af:27:a0:df:02:be:
6c:bc:3f:aa:ee:19:fd:ee:b0:cd:07:46:aa:86:3c:
d6:66:6f:69:7b:04:38:66:ae:4e:89:bd:c9:e9:a7:
6d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:25:4A:8A:71:74:68:F8:F5:8E:4A:96:7E:F6:04:5D:7A:E8:A3:B4
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:dc:6d:5e:54:d5:fb:e5:bb:f6:ef:bb:f2:fb:5a:34:f1:82:
53:c5:52:4a:ef:1e:01:f4:d4:94:5c:75:cb:e4:e9:02:0b:d0:
cc:f4:bc:d5:e1:ad:3e:56:12:3d:3e:52:0b:3e:3d:9b:d0:9a:
aa:71:0a:1e:20:f5:54:8a:c8:4f:24:f7:33:9d:7b:df:ad:52:
5a:fe:a2:55:73:e7:b2:2a:dd:a4:66:f2:33:98:08:b8:bd:b0:
0f:6e:0c:da:e5:1a:aa:48:94:f2:4f:e3:1c:00:84:dd:b5:5e:
65:31:55:d3:07:1f:a7:6d:91:f2:52:5b:39:28:31:f7:d8:0b:
14:e8:0d:4b:27:dc:f4:69:f5:f7:5b:ae:b0:3d:ba:7d:5f:64:
15:dd:f3:32:b2:fb:c2:d3:f2:ac:59:8e:26:4d:35:11:da:25:
97:92:c3:b3:3c:dc:41:35:af:33:22:06:f1:72:66:e6:e9:ff:
f2:dc:12:50:c8:bb:64:91:2e:58:25:f1:ab:f4:ee:42:f9:64:
ca:71:2c:83:8a:35:0a:26:a0:bb:bb:da:f9:c9:bc:4b:33:e5:
01:d0:a3:6e:11:83:05:d5:cf:36:fb:e3:b7:36:fa:f5:78:b5:
9d:65:64:2b:4e:3f:a7:80:e5:8e:50:65:ab:8a:19:55:d1:1a:
4b:96:04:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNRw8L0xJU+cAsyQh0rrOgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNjZkOGI5ZDM4ZDViYjE5Y2ZhMGM0NjQ0YjQ1MjkzZDFl
OGI2ZmEwHhcNMjUwNDE5MDkwMDI0WhcNMjUwNDIwMDkwMDI0WjAzMTEwLwYDVQQD
Eyg3MjI1NGE4YTcxNzQ2OGY4ZjU4ZTRhOTY3ZWY2MDQ1ZDdhZThhM2I0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ368X1iB/d70LajgwVufuJFPdaS
BjPC/oenhM5uQkC41qmPR4Q+o6RE2MIsy0Ta1UYiT+NAfw2516cZJZPLElrrOPZn
71LtKPZgDYAD3cjwvZdnBImVAs5ahNiikX73LtdWL5B+C36IY3AGvMmeAZ8AKPWF
wIDK9Q8ugXVwh8TXWlrNSWlWaH13Amk7y9o8yFIfczgJLIok7EqNjQbyBWa27NtS
hSC4paOXBgm2UiBappzhzRHZoOMtKKMuHojT9sOU1ZRcjn7zexvOqjZEvIE9V0KH
Xt8YMxevJ6DfAr5svD+q7hn97rDNB0aqhjzWZm9pewQ4Zq5Oib3J6adt9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHIlSopxdGj49Y5Kln72BF166KO0MB8GA1UdIwQY
MBaAFNxm2LnTjVuxnPoMRkS0UpPR6Lb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUt
NDc3MWQxYTRkZGYwLzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUtNDc3MWQxYTRkZGYw
LzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgtxtXlTV
++W79u+78vtaNPGCU8VSSu8eAfTUlFx1y+TpAgvQzPS81eGtPlYSPT5SCz49m9Ca
qnEKHiD1VIrITyT3M517361SWv6iVXPnsirdpGbyM5gIuL2wD24M2uUaqkiU8k/j
HACE3bVeZTFV0wcfp22R8lJbOSgx99gLFOgNSyfc9Gn191uusD26fV9kFd3zMrL7
wtPyrFmOJk01Edoll5LDszzcQTWvMyIG8XJm5un/8twSUMi7ZJEuWCXxq/TuQvlk
ynEsg4o1Ciagu7va+cm8SzPlAdCjbhGDBdXPNvvjtzb69Xi1nWVkK04/p4DljlBl
q4oZVdEaS5YElg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 11:21:55 2025 by rpki-client