Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: NDxIQ2h62PlMsxuSw+8wfGyILBODbvqnEbF9EEFXsZc=
Subject key identifier: 3C:18:89:6A:A6:6D:DC:E7:0A:21:BC:44:7E:AD:9C:8F:DC:B9:38:24
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 01964BFE4059D0FE7E9A454A4F442BC99953
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 096A
Signing time: Sat 19 Apr 2025 03:01:15 +0000
Manifest this update: Sat 19 Apr 2025 03:01:15 +0000
Manifest next update: Sun 20 Apr 2025 03:01:15 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: ykh3Wkc5U3SHZdEVJMBCzHCH5OsgCO8r6DCivFdPoRE=)
2: TOKJ7leUflS6UttAZzwZcKF4cuU.roa (hash: FbxsOsIky6908M3EghoAhEv3FVACCPzpDuJvnzX9foU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fe:40:59:d0:fe:7e:9a:45:4a:4f:44:2b:c9:99:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Apr 19 03:01:15 2025 GMT
Not After : Apr 20 03:01:15 2025 GMT
Subject: CN=3c18896aa66ddce70a21bc447ead9c8fdcb93824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6b:b5:a4:27:f9:5d:50:d8:c9:f4:63:31:63:
5d:ba:71:61:0a:5d:99:2b:b5:b3:03:f9:7c:02:df:
bf:49:cc:86:89:e5:41:65:eb:4f:a6:07:b5:7b:99:
a6:ca:5f:ab:93:49:17:b3:f4:d0:f3:cd:b2:fd:0d:
28:99:1f:86:87:5f:b3:a6:9a:82:72:02:77:db:2d:
10:46:bd:77:c6:df:9b:2f:43:fe:08:0d:b0:bc:bb:
08:7a:b3:95:a7:69:54:68:e1:b2:19:00:8c:75:7f:
2c:19:6b:6e:ef:a7:7e:2f:51:65:41:d6:c5:d5:5a:
ba:88:2c:8d:55:c5:09:6a:ba:4c:be:f0:a4:86:09:
34:9f:49:ae:d7:cd:3b:04:2a:24:bd:2b:28:50:72:
a2:7a:f5:b3:af:ad:04:ae:06:52:fd:2b:97:3c:6a:
f4:f5:31:5a:a0:96:f5:61:16:6f:33:1a:fd:d0:9f:
61:62:1f:98:28:f1:e1:5f:8d:2b:c5:04:21:b2:89:
a1:2f:ee:db:a3:ae:dd:fa:d8:a9:e9:4f:c8:c5:5a:
43:77:1a:74:d6:1f:09:ce:69:96:fa:73:fa:33:b4:
39:6d:2b:d8:45:fa:db:7e:a4:7b:55:78:3d:54:4f:
78:02:d4:dc:da:6c:f5:15:bb:0b:0e:ca:8f:91:0c:
32:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:18:89:6A:A6:6D:DC:E7:0A:21:BC:44:7E:AD:9C:8F:DC:B9:38:24
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:d2:c2:01:44:b8:79:6b:3a:c7:6b:da:ab:59:a0:e9:68:71:
60:d1:cd:c7:e5:d4:96:0c:d7:97:2e:ee:4a:49:46:b7:a4:6d:
86:b5:db:a1:9b:bf:3c:24:80:c7:56:5a:a7:ff:5f:68:7d:43:
da:a4:ff:21:80:8d:d9:10:68:dc:1e:4f:70:76:b5:b4:27:8c:
d6:a9:2d:a8:63:cd:58:9e:2c:14:39:51:21:f2:cf:3f:63:51:
42:ae:a2:35:e3:17:f9:3d:7c:b3:be:1e:96:f4:d8:94:6a:71:
4b:32:1f:33:33:5f:1e:8d:ab:f6:31:32:2e:e3:65:d4:66:52:
35:15:06:74:bc:cd:64:82:d0:5d:bc:f7:a9:1f:cb:71:de:6f:
29:71:dd:0f:06:0c:3e:69:f2:3d:fa:0a:dc:d5:5f:ad:21:9c:
93:d2:bf:8b:ca:36:3f:e1:e3:c1:91:86:cd:90:09:bc:5e:0d:
33:f1:db:50:7c:d9:a2:08:35:b3:f7:8f:e5:82:7c:ab:af:49:
78:ea:3e:b6:18:0a:25:dd:13:ed:40:f3:b0:5c:cf:37:49:6e:
6e:45:8b:fe:92:8e:8e:ef:95:52:33:ba:e5:09:28:a5:40:23:
55:ab:62:9f:53:b8:5b:48:38:e0:ac:4c:d7:37:1f:65:62:3d:
8f:da:d7:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZL/kBZ0P5+mkVKT0QryZlTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMjkyMTk4OWQ3ZDkwYzY0ZWJiMzU2NTg4MzFmZTZhOGY0
OWM5MzgwHhcNMjUwNDE5MDMwMTE1WhcNMjUwNDIwMDMwMTE1WjAzMTEwLwYDVQQD
EygzYzE4ODk2YWE2NmRkY2U3MGEyMWJjNDQ3ZWFkOWM4ZmRjYjkzODI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomu1pCf5XVDYyfRjMWNdunFhCl2Z
K7WzA/l8At+/ScyGieVBZetPpge1e5mmyl+rk0kXs/TQ882y/Q0omR+Gh1+zppqC
cgJ32y0QRr13xt+bL0P+CA2wvLsIerOVp2lUaOGyGQCMdX8sGWtu76d+L1FlQdbF
1Vq6iCyNVcUJarpMvvCkhgk0n0mu1807BCokvSsoUHKievWzr60ErgZS/SuXPGr0
9TFaoJb1YRZvMxr90J9hYh+YKPHhX40rxQQhsomhL+7bo67d+tip6U/IxVpDdxp0
1h8JzmmW+nP6M7Q5bSvYRfrbfqR7VXg9VE94AtTc2mz1FbsLDsqPkQwyoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDwYiWqmbdznCiG8RH6tnI/cuTgkMB8GA1UdIwQY
MBaAFN4pIZidfZDGTrs1ZYgx/mqPSck4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTct
MGI1ZWNiNDc0ZjE1LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTctMGI1ZWNiNDc0ZjE1
LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAatLCAUS4
eWs6x2vaq1mg6WhxYNHNx+XUlgzXly7uSklGt6RthrXboZu/PCSAx1Zap/9faH1D
2qT/IYCN2RBo3B5PcHa1tCeM1qktqGPNWJ4sFDlRIfLPP2NRQq6iNeMX+T18s74e
lvTYlGpxSzIfMzNfHo2r9jEyLuNl1GZSNRUGdLzNZILQXbz3qR/Lcd5vKXHdDwYM
PmnyPfoK3NVfrSGck9K/i8o2P+HjwZGGzZAJvF4NM/HbUHzZogg1s/eP5YJ8q69J
eOo+thgKJd0T7UDzsFzPN0lubkWL/pKOju+VUjO65QkopUAjVatin1O4W0g44KxM
1zcfZWI9j9rXfQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:39:44 2025 by rpki-client