Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
File: 3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft (raw, json)
Hash identifier: 2XjOoi7inkL601y1S27/WWYY07/6wQRJRGrmu9hIBNs=
Subject key identifier: 1D:BB:6E:84:9A:22:B9:C0:E4:48:DB:0A:BE:1A:FC:D2:C1:DD:14:2B
Authority key identifier: DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24
Certificate issuer: /CN=dc36631ca20ec92d195c16a8d70a63f372e59f24
Certificate serial: 019655A57D48D378697F87E304AD4384A5BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
Manifest number: 0435
Signing time: Mon 21 Apr 2025 00:00:30 +0000
Manifest this update: Mon 21 Apr 2025 00:00:30 +0000
Manifest next update: Tue 22 Apr 2025 00:00:30 +0000
Files and hashes: 1: 3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl (hash: ddw9W3K/vzJ9QUYeKgZalDJrvYm7VaMsvqBqjmiK8ZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:7d:48:d3:78:69:7f:87:e3:04:ad:43:84:a5:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc36631ca20ec92d195c16a8d70a63f372e59f24
Validity
Not Before: Apr 21 00:00:30 2025 GMT
Not After : Apr 22 00:00:30 2025 GMT
Subject: CN=1dbb6e849a22b9c0e448db0abe1afcd2c1dd142b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b8:8c:e2:d7:e8:c0:3f:2b:e1:38:a2:09:9e:
e0:a7:81:3b:96:d0:07:88:9d:1b:aa:c6:8f:6f:58:
43:1b:cf:af:88:94:6f:49:52:dc:72:e5:de:8f:5c:
d1:5d:28:e1:20:de:e4:49:52:2f:45:56:d6:cf:6e:
06:68:1f:26:b8:0d:c9:ca:81:df:4a:4c:19:83:93:
a0:c7:f3:6a:c8:e3:bb:ce:95:88:6c:23:2e:18:e3:
10:95:fd:3d:a9:46:25:f6:39:96:c2:aa:ed:7c:79:
f6:66:21:78:59:17:b1:58:24:9e:5b:f3:74:a4:2d:
c3:87:1a:51:6e:d4:6a:ba:4c:4e:55:68:fc:3b:c4:
d4:7f:d6:c5:37:a3:0a:59:c9:bd:c0:93:bd:7d:99:
30:f7:d1:ff:31:d2:49:0f:69:77:1e:05:e9:82:61:
dd:02:35:c1:3a:85:0d:65:26:3c:a5:bd:c0:cc:f6:
fb:75:bc:69:a6:31:5b:bf:43:78:fc:09:84:ce:11:
a4:58:f5:ee:aa:3a:bd:d2:18:ed:bb:87:0f:19:1e:
a7:34:4d:28:ca:a1:c3:0a:1a:af:c2:32:85:6b:32:
5f:14:12:d6:d4:02:3f:d6:e2:43:87:15:e2:5b:0a:
6c:7a:92:42:2c:c5:55:6a:25:11:c2:a4:5b:74:e8:
69:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:BB:6E:84:9A:22:B9:C0:E4:48:DB:0A:BE:1A:FC:D2:C1:DD:14:2B
X509v3 Authority Key Identifier:
keyid:DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:8b:1a:7e:02:3a:cd:09:7f:af:64:8d:64:c3:61:e9:0c:fb:
21:bc:11:cb:ba:97:a7:f9:14:ef:5e:1a:c9:7c:c9:26:1c:f2:
b3:dd:19:78:72:3d:40:3b:c8:17:bb:ad:22:fd:35:8c:dc:0a:
31:d3:9c:ce:c3:52:ee:71:24:cb:9a:7d:af:c7:f5:2d:58:74:
08:6a:f2:15:10:8e:be:2f:2c:3d:b3:0b:c3:67:2d:fc:a2:76:
e6:50:7a:cb:89:8f:87:ed:44:7d:36:6a:2b:0c:f5:d3:d4:f1:
b7:aa:72:d1:08:32:cf:3e:38:86:19:8f:57:f7:1d:e3:bd:d1:
1e:23:70:95:27:df:b8:61:99:c3:39:a8:4d:6d:d2:ce:7a:c1:
6f:00:43:4a:39:77:77:2f:9b:44:1d:d2:aa:5c:8c:89:71:70:
b4:67:ac:d2:28:b4:7f:c5:c5:3e:7d:cb:90:66:b1:c4:39:c5:
34:85:04:a4:b4:92:ef:63:c5:15:47:09:37:b2:f7:c6:32:71:
db:d8:67:ca:61:db:a0:1b:bb:8c:37:f3:82:a6:e7:2e:6d:1b:
0e:3f:dc:18:6d:47:3c:27:d2:d2:05:3d:67:8c:11:f4:1f:7d:
0f:36:8a:bf:e2:fd:d4:7f:14:1c:40:e3:01:7b:1e:c1:09:81:
0c:d1:10:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVpX1I03hpf4fjBK1DhKW7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMzY2MzFjYTIwZWM5MmQxOTVjMTZhOGQ3MGE2M2YzNzJl
NTlmMjQwHhcNMjUwNDIxMDAwMDMwWhcNMjUwNDIyMDAwMDMwWjAzMTEwLwYDVQQD
EygxZGJiNmU4NDlhMjJiOWMwZTQ0OGRiMGFiZTFhZmNkMmMxZGQxNDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnriM4tfowD8r4TiiCZ7gp4E7ltAH
iJ0bqsaPb1hDG8+viJRvSVLccuXej1zRXSjhIN7kSVIvRVbWz24GaB8muA3JyoHf
SkwZg5Ogx/NqyOO7zpWIbCMuGOMQlf09qUYl9jmWwqrtfHn2ZiF4WRexWCSeW/N0
pC3DhxpRbtRqukxOVWj8O8TUf9bFN6MKWcm9wJO9fZkw99H/MdJJD2l3HgXpgmHd
AjXBOoUNZSY8pb3AzPb7dbxppjFbv0N4/AmEzhGkWPXuqjq90hjtu4cPGR6nNE0o
yqHDChqvwjKFazJfFBLW1AI/1uJDhxXiWwpsepJCLMVVaiURwqRbdOhpMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB27boSaIrnA5EjbCr4a/NLB3RQrMB8GA1UdIwQY
MBaAFNw2YxyiDsktGVwWqNcKY/Ny5Z8kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0RaakhLSU95UzBaWEJhbzF3cGo4M0xsbnlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80YWMxNjItZTE2ZS00MDZlLWI5ODUt
NWVmNTZmODZhYjgzLzEvM0RaakhLSU95UzBaWEJhbzF3cGo4M0xsbnlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS80YWMxNjItZTE2ZS00MDZlLWI5ODUtNWVmNTZmODZhYjgz
LzEvM0RaakhLSU95UzBaWEJhbzF3cGo4M0xsbnlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATIsafgI6
zQl/r2SNZMNh6Qz7IbwRy7qXp/kU714ayXzJJhzys90ZeHI9QDvIF7utIv01jNwK
MdOczsNS7nEky5p9r8f1LVh0CGryFRCOvi8sPbMLw2ct/KJ25lB6y4mPh+1EfTZq
Kwz109Txt6py0Qgyzz44hhmPV/cd473RHiNwlSffuGGZwzmoTW3SznrBbwBDSjl3
dy+bRB3SqlyMiXFwtGes0ii0f8XFPn3LkGaxxDnFNIUEpLSS72PFFUcJN7L3xjJx
29hnymHboBu7jDfzgqbnLm0bDj/cGG1HPCfS0gU9Z4wR9B99DzaKv+L91H8UHEDj
AXsewQmBDNEQMw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 04:12:15 2025 by rpki-client