Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
File: 3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft (raw, json)
Hash identifier: jG42R056APDl2uOkC0+QrocKy+by3dyVohYaMJQaIpk=
Subject key identifier: E2:C6:5F:B6:D7:85:E3:77:B2:75:D2:8A:60:D6:D9:09:A7:02:E4:52
Authority key identifier: DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96
Certificate issuer: /CN=dc6baa601236ab9bea29f807a66920ed5656a196
Certificate serial: 0196507F63461AABE5BA6B741F75ED93153F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
Manifest number: 14FA
Signing time: Sun 20 Apr 2025 00:00:47 +0000
Manifest this update: Sun 20 Apr 2025 00:00:47 +0000
Manifest next update: Mon 21 Apr 2025 00:00:47 +0000
Files and hashes: 1: 3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl (hash: dcYSQjC+mdYELxMDuQQCUl5SLXe6XTEwLIm7denHiWU=)
2: h-YJMMunIS0_gIZ5p26lgKRQyKc.roa (hash: bR5opkzZodiPK85GQ+pJiSPCVteQ0JuW261tZcQfTgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:7f:63:46:1a:ab:e5:ba:6b:74:1f:75:ed:93:15:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc6baa601236ab9bea29f807a66920ed5656a196
Validity
Not Before: Apr 20 00:00:47 2025 GMT
Not After : Apr 21 00:00:47 2025 GMT
Subject: CN=e2c65fb6d785e377b275d28a60d6d909a702e452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:30:e0:b2:7b:d5:e4:05:41:85:b7:80:6b:6f:
f2:8a:99:bf:56:21:de:8a:c2:01:80:1a:4a:2b:5a:
75:0a:a3:02:c4:ee:eb:fb:d7:b4:3a:17:66:05:eb:
bc:70:56:24:8b:c5:cf:7e:ac:11:e5:91:ec:60:a9:
f1:b7:28:31:61:12:4f:e2:2c:84:b6:5c:c6:64:36:
45:d7:0a:69:57:b2:e2:d0:0e:ea:20:1d:9d:50:1a:
72:d4:18:4a:83:7d:81:e6:f0:5c:5c:18:7e:da:72:
ae:90:a7:da:61:2f:8e:fe:ca:0b:f2:53:ef:31:1e:
49:1f:4c:42:7e:2f:a7:65:75:b7:c1:7c:b6:cb:43:
a9:c7:e4:bf:32:fa:24:e0:eb:93:af:11:50:2e:36:
5c:a6:39:4d:30:27:46:9d:89:d7:52:de:cd:9f:bb:
3c:bd:1b:ff:aa:ed:95:11:f2:9a:4b:2c:f5:4a:02:
1d:2a:b6:40:30:1d:c1:dc:a8:bb:f1:ea:11:96:75:
40:e8:8e:fb:59:59:65:1c:fe:85:9f:89:54:92:a8:
8d:39:0a:e4:c1:b2:f2:78:ba:9f:fe:13:ec:78:ff:
67:c0:bc:e1:b8:6d:3b:13:9e:e3:74:cd:fb:db:64:
99:4f:33:32:39:32:44:06:fc:86:2d:40:73:c8:53:
49:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C6:5F:B6:D7:85:E3:77:B2:75:D2:8A:60:D6:D9:09:A7:02:E4:52
X509v3 Authority Key Identifier:
keyid:DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ed:ad:94:03:a2:99:ff:60:d0:0f:0d:88:3d:17:d2:7c:b5:
b4:a2:1b:48:a6:3f:8f:8e:61:97:29:11:79:b9:b1:79:1a:7a:
19:fe:af:eb:d1:7e:38:1c:ed:59:28:eb:e8:68:0c:5b:df:3f:
fb:ef:18:d0:72:27:f4:69:f8:4c:95:c0:93:d9:08:b9:3b:ac:
7c:87:02:88:74:94:85:91:b4:f2:8b:cc:48:e5:b4:7d:cf:68:
3d:65:26:7e:62:20:66:34:7a:67:42:da:60:8f:54:90:21:23:
19:b3:90:28:b8:10:dc:e1:4c:1e:2c:39:b3:15:07:2b:8d:8d:
5e:31:19:ac:05:11:5c:4c:ff:71:72:94:5a:11:46:3e:a7:aa:
d9:00:ea:4d:8f:56:62:14:a0:0c:73:e2:63:6f:d2:8c:39:04:
8b:dc:51:65:e7:84:74:48:d8:b0:4e:05:04:3c:71:cd:43:d9:
44:e7:01:d7:50:f4:c1:c4:a8:51:78:ef:49:2f:39:1c:3e:94:
b3:55:44:d3:28:0e:1a:c3:49:69:dd:47:ca:fe:36:c8:ac:04:
3d:91:c7:a7:02:90:ab:d3:11:d1:1f:e8:5d:3f:60:9d:3e:df:
61:ea:9f:b8:a9:6b:e8:0b:04:12:4c:4e:97:78:a5:ef:21:4c:
db:0b:e8:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZQf2NGGqvlumt0H3XtkxU/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNmJhYTYwMTIzNmFiOWJlYTI5ZjgwN2E2NjkyMGVkNTY1
NmExOTYwHhcNMjUwNDIwMDAwMDQ3WhcNMjUwNDIxMDAwMDQ3WjAzMTEwLwYDVQQD
EyhlMmM2NWZiNmQ3ODVlMzc3YjI3NWQyOGE2MGQ2ZDkwOWE3MDJlNDUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzDgsnvV5AVBhbeAa2/yipm/ViHe
isIBgBpKK1p1CqMCxO7r+9e0OhdmBeu8cFYki8XPfqwR5ZHsYKnxtygxYRJP4iyE
tlzGZDZF1wppV7Li0A7qIB2dUBpy1BhKg32B5vBcXBh+2nKukKfaYS+O/soL8lPv
MR5JH0xCfi+nZXW3wXy2y0Opx+S/Mvok4OuTrxFQLjZcpjlNMCdGnYnXUt7Nn7s8
vRv/qu2VEfKaSyz1SgIdKrZAMB3B3Ki78eoRlnVA6I77WVllHP6Fn4lUkqiNOQrk
wbLyeLqf/hPseP9nwLzhuG07E57jdM3722SZTzMyOTJEBvyGLUBzyFNJ1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOLGX7bXheN3snXSimDW2QmnAuRSMB8GA1UdIwQY
MBaAFNxrqmASNqub6in4B6ZpIO1WVqGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0d1cVlCSTJxNXZxS2ZnSHBta2c3VlpXb1pZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83YmQyZTMtZjNjNS00OTU1LWI5YTEt
MzRhMTIzN2YxNjcwLzEvM0d1cVlCSTJxNXZxS2ZnSHBta2c3VlpXb1pZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS83YmQyZTMtZjNjNS00OTU1LWI5YTEtMzRhMTIzN2YxNjcw
LzEvM0d1cVlCSTJxNXZxS2ZnSHBta2c3VlpXb1pZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATe2tlAOi
mf9g0A8NiD0X0ny1tKIbSKY/j45hlykRebmxeRp6Gf6v69F+OBztWSjr6GgMW98/
++8Y0HIn9Gn4TJXAk9kIuTusfIcCiHSUhZG08ovMSOW0fc9oPWUmfmIgZjR6Z0La
YI9UkCEjGbOQKLgQ3OFMHiw5sxUHK42NXjEZrAURXEz/cXKUWhFGPqeq2QDqTY9W
YhSgDHPiY2/SjDkEi9xRZeeEdEjYsE4FBDxxzUPZROcB11D0wcSoUXjvSS85HD6U
s1VE0ygOGsNJad1Hyv42yKwEPZHHpwKQq9MR0R/oXT9gnT7fYeqfuKlr6AsEEkxO
l3il7yFM2wvoNQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:11:04 2025 by rpki-client