
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: 4p/8R2CC7/ND+XKnJ9GLrALNzZbE+UdIyXL/WG9Z138=
Subject key identifier: 6A:84:69:69:18:BF:FB:47:55:5B:4F:0A:52:DE:74:C4:DE:51:0E:8A
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 0197591220176491EF1F6F48CC3002F44ACD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 0818
Signing time: Tue 10 Jun 2025 09:00:49 +0000
Manifest this update: Tue 10 Jun 2025 09:00:49 +0000
Manifest next update: Wed 11 Jun 2025 09:00:49 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: v9Bn6lhi19lPqvL+/00riszNbb7iXrLthbQn/J0tzZ8=)
2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:12:20:17:64:91:ef:1f:6f:48:cc:30:02:f4:4a:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: Jun 10 09:00:49 2025 GMT
Not After : Jun 11 09:00:49 2025 GMT
Subject: CN=6a84696918bffb47555b4f0a52de74c4de510e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:27:f1:f6:bc:c6:7d:75:2a:64:bf:8e:f7:14:
bc:81:88:b1:f8:0e:48:84:8d:ec:17:0d:0f:5b:a0:
b0:92:f4:4e:c2:28:d4:3a:8c:95:40:e9:7f:07:b0:
60:8d:d8:3a:b6:96:48:0f:a3:81:1f:50:ea:d6:c0:
f9:f8:5b:f6:c2:53:b0:5e:4c:c5:fd:44:c1:b2:7a:
d9:f6:ae:b6:0c:26:83:bd:5b:e2:df:ac:a6:c1:72:
d3:46:b0:db:2d:67:cb:72:32:e3:83:74:79:78:07:
72:29:15:c4:74:66:04:fc:71:79:64:e6:ee:8d:99:
5e:ef:55:c9:94:59:2e:3d:f3:75:c8:ec:7b:aa:75:
2b:40:a3:aa:8d:71:18:87:2e:3e:fc:8f:de:d3:de:
61:f4:d3:17:6d:fa:62:53:fd:e8:71:74:7d:ae:15:
09:6c:6f:a7:fe:8f:c5:75:80:5d:6a:6a:92:38:6b:
fb:a0:c0:8e:be:fa:38:43:61:d0:1b:c4:46:d6:8c:
0d:5f:22:3a:f1:af:1b:f2:2e:db:71:4b:15:0c:01:
a8:22:79:7d:21:fb:9e:fe:85:f7:fa:e6:c2:28:fe:
14:71:06:38:6c:17:9f:2e:04:6b:b7:8c:74:46:9d:
da:92:f1:29:06:b9:c4:08:da:fd:c8:fe:a8:1b:d0:
e1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:84:69:69:18:BF:FB:47:55:5B:4F:0A:52:DE:74:C4:DE:51:0E:8A
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:b2:42:45:c9:68:ae:fb:ab:8b:2c:56:8b:5c:d5:aa:a8:1b:
49:15:24:a6:bb:e8:fe:e2:8d:23:d8:4e:1f:4f:bc:0c:9a:b6:
49:d9:59:2e:31:46:87:2d:6a:42:82:06:0b:e3:02:fa:74:ce:
6a:f6:2d:fa:39:20:23:e5:5c:c4:41:61:77:98:86:90:91:08:
b5:ab:f0:72:d9:15:63:0d:d6:1c:89:92:e8:f1:f6:8d:4c:cf:
77:7b:e2:91:8e:ee:17:12:cf:44:7e:b2:97:4b:52:ae:09:20:
51:9c:15:24:1b:0a:74:0a:00:f5:71:d2:ea:65:88:52:79:69:
63:c6:36:70:0a:13:85:df:bd:97:8c:a5:a1:1b:8f:e6:41:89:
2b:4e:b1:37:76:15:29:45:40:91:ce:c5:76:ae:70:cd:e2:2c:
4f:ed:86:a5:34:24:99:8c:e8:75:71:b2:92:83:14:4d:26:a6:
b0:02:7e:45:f3:ff:1c:72:01:5c:5c:f1:74:48:d4:92:f2:f5:
6a:b6:c7:d8:72:3b:78:75:03:92:5a:1c:db:ab:6e:54:75:65:
8d:bd:ad:d0:24:76:4f:00:2f:99:12:59:93:cc:ce:f0:de:00:
41:b2:7d:1d:2c:67:d9:88:dc:30:ff:43:95:35:44:e4:95:d3:
90:3b:e3:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdZEiAXZJHvH29IzDAC9ErNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlYmU1MTdlNzQ3NWUxN2MwNjk2NDM5MTBmZDZmNzdiMzE3
Yjg1MzgwHhcNMjUwNjEwMDkwMDQ5WhcNMjUwNjExMDkwMDQ5WjAzMTEwLwYDVQQD
Eyg2YTg0Njk2OTE4YmZmYjQ3NTU1YjRmMGE1MmRlNzRjNGRlNTEwZThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyfx9rzGfXUqZL+O9xS8gYix+A5I
hI3sFw0PW6CwkvROwijUOoyVQOl/B7Bgjdg6tpZID6OBH1Dq1sD5+Fv2wlOwXkzF
/UTBsnrZ9q62DCaDvVvi36ymwXLTRrDbLWfLcjLjg3R5eAdyKRXEdGYE/HF5ZObu
jZle71XJlFkuPfN1yOx7qnUrQKOqjXEYhy4+/I/e095h9NMXbfpiU/3ocXR9rhUJ
bG+n/o/FdYBdamqSOGv7oMCOvvo4Q2HQG8RG1owNXyI68a8b8i7bcUsVDAGoInl9
Ifue/oX3+ubCKP4UcQY4bBefLgRrt4x0Rp3akvEpBrnECNr9yP6oG9Dh3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGqEaWkYv/tHVVtPClLedMTeUQ6KMB8GA1UdIwQY
MBaAFN6+UX50deF8BpZDkQ/W93sxe4U4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAt
ODlmNWM0ZjMyOTcwLzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAtODlmNWM0ZjMyOTcw
LzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa7JCRclo
rvuriyxWi1zVqqgbSRUkprvo/uKNI9hOH0+8DJq2SdlZLjFGhy1qQoIGC+MC+nTO
avYt+jkgI+VcxEFhd5iGkJEItavwctkVYw3WHImS6PH2jUzPd3vikY7uFxLPRH6y
l0tSrgkgUZwVJBsKdAoA9XHS6mWIUnlpY8Y2cAoThd+9l4yloRuP5kGJK06xN3YV
KUVAkc7Fdq5wzeIsT+2GpTQkmYzodXGykoMUTSamsAJ+RfP/HHIBXFzxdEjUkvL1
arbH2HI7eHUDkloc26tuVHVljb2t0CR2TwAvmRJZk8zO8N4AQbJ9HSxn2YjcMP9D
lTVE5JXTkDvjxw==
-----END CERTIFICATE-----
Generated at Tue Jun 10 15:38:14 2025 by rpki-client