Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: MV44gmOlZaH20BLO9EKuLAjDQIFPRma55t2j5cRxAOs=
Subject key identifier: 88:6F:24:D7:90:18:D9:7A:8B:05:0A:5F:03:E2:5F:14:E1:83:C2:E8
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 0197499F5AFC4FFE325E1854A087E2D078E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 14BC
Signing time: Sat 07 Jun 2025 09:01:09 +0000
Manifest this update: Sat 07 Jun 2025 09:01:09 +0000
Manifest next update: Sun 08 Jun 2025 09:01:09 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: CqXDtgYwSkpC5f2ToohYy7bOiUcKMlU/a/j9OpQJhb4=)
2: RmRTHkNLraqOOzazgFQdU_YCKkM.roa (hash: 5SoXabo2aLivwm4lm+kA69S7S7+v67Nc52d80muCgcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:5a:fc:4f:fe:32:5e:18:54:a0:87:e2:d0:78:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: Jun 7 09:01:09 2025 GMT
Not After : Jun 8 09:01:09 2025 GMT
Subject: CN=886f24d79018d97a8b050a5f03e25f14e183c2e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e1:c7:59:d2:29:30:11:46:91:09:7e:e7:0c:
4f:28:e1:86:65:52:72:7e:05:24:c3:1d:c3:86:ec:
09:2c:20:f6:57:3a:ba:2c:96:44:91:7b:41:af:ae:
4d:89:2e:a7:83:15:7c:a1:02:cb:1d:3b:34:d7:21:
c0:71:57:a3:20:01:35:4d:17:52:73:25:eb:8d:d4:
4a:39:24:50:60:5a:f4:87:f8:52:15:0b:5d:10:50:
b1:1c:49:54:ce:31:94:65:57:55:87:26:cf:80:a1:
2e:59:43:53:ff:87:32:fb:51:98:fa:0c:bf:f7:0d:
c6:f7:ba:b5:5e:80:3a:00:7d:9f:19:d4:48:e1:7d:
4d:fe:4b:ca:4b:3a:e3:6c:5b:af:a6:c6:7d:65:3a:
f2:79:4b:c0:8c:75:07:6e:1f:cc:28:31:da:8d:9b:
dc:76:3d:46:ed:8f:ba:bd:a5:7c:8a:e2:34:6b:0c:
84:16:df:f6:b0:de:ca:94:76:d0:0e:d5:49:a7:6b:
fd:39:29:e7:08:85:be:92:62:21:fa:6c:3f:43:0e:
32:0f:f3:3c:32:bd:fe:30:e7:a5:b2:1b:de:ff:f6:
68:c1:4c:c4:0c:73:8c:2c:65:b9:11:af:86:23:56:
5a:56:2e:c3:f0:c4:05:46:1f:b1:db:5f:d8:57:9f:
25:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:6F:24:D7:90:18:D9:7A:8B:05:0A:5F:03:E2:5F:14:E1:83:C2:E8
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:59:34:d0:8e:5a:a3:30:1c:7b:de:d7:2f:3d:b7:b6:9c:9b:
c3:7c:ec:80:39:fa:e9:ff:e8:1d:a7:1e:b1:46:ab:6b:36:81:
de:b3:49:3e:6a:5a:1f:2b:b7:bf:7a:68:34:0e:62:a4:c6:05:
36:72:8d:16:db:01:f9:8e:b9:d8:74:fc:26:cf:c0:ba:06:6a:
89:6b:9b:41:c1:27:40:7c:1d:3d:91:5e:65:ca:d9:22:72:be:
bb:0b:00:c6:40:c2:ac:52:73:af:03:0e:ac:90:dc:56:84:57:
cf:1f:79:15:5b:24:d3:3b:40:30:c6:f3:d9:f7:ef:79:53:f7:
89:91:67:25:b5:90:78:01:73:2c:2a:53:ec:2c:e4:72:20:2f:
c6:f4:2d:82:11:c6:c3:26:5e:49:cf:8d:be:94:b1:d9:ba:c5:
ef:e6:a7:3d:65:5b:8b:a6:50:3a:5a:d0:14:4b:bf:98:6b:78:
b3:54:05:78:01:ad:df:a2:11:b9:71:ab:6d:2c:29:1d:b6:a8:
61:41:57:98:2c:bb:9f:5c:d0:bf:c3:b9:b9:d3:13:54:d3:f7:
76:cf:9b:e9:b8:68:24:56:39:90:91:f3:79:27:91:90:c9:91:
66:5d:cf:67:af:59:ec:c4:cf:cf:2a:d0:84:fa:ae:3e:32:66:
ce:55:72:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJn1r8T/4yXhhUoIfi0HjgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMmI1Y2JmOTY3YTAzNDlkODg5NzA0YmI0ZDYxZmE1MjZh
MzFkNmYwHhcNMjUwNjA3MDkwMTA5WhcNMjUwNjA4MDkwMTA5WjAzMTEwLwYDVQQD
Eyg4ODZmMjRkNzkwMThkOTdhOGIwNTBhNWYwM2UyNWYxNGUxODNjMmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5eHHWdIpMBFGkQl+5wxPKOGGZVJy
fgUkwx3DhuwJLCD2Vzq6LJZEkXtBr65NiS6ngxV8oQLLHTs01yHAcVejIAE1TRdS
cyXrjdRKOSRQYFr0h/hSFQtdEFCxHElUzjGUZVdVhybPgKEuWUNT/4cy+1GY+gy/
9w3G97q1XoA6AH2fGdRI4X1N/kvKSzrjbFuvpsZ9ZTryeUvAjHUHbh/MKDHajZvc
dj1G7Y+6vaV8iuI0awyEFt/2sN7KlHbQDtVJp2v9OSnnCIW+kmIh+mw/Qw4yD/M8
Mr3+MOelshve//ZowUzEDHOMLGW5Ea+GI1ZaVi7D8MQFRh+x21/YV58lKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIhvJNeQGNl6iwUKXwPiXxThg8LoMB8GA1UdIwQY
MBaAFN4rXL+WegNJ2IlwS7TWH6Umox1vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi82NDZlN2QtNGY0Ni00MDdjLWJkZDAt
ZmQ3MmQ5NjJkZjI3LzEvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi82NDZlN2QtNGY0Ni00MDdjLWJkZDAtZmQ3MmQ5NjJkZjI3
LzEvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS1k00I5a
ozAce97XLz23tpybw3zsgDn66f/oHacesUarazaB3rNJPmpaHyu3v3poNA5ipMYF
NnKNFtsB+Y652HT8Js/AugZqiWubQcEnQHwdPZFeZcrZInK+uwsAxkDCrFJzrwMO
rJDcVoRXzx95FVsk0ztAMMbz2ffveVP3iZFnJbWQeAFzLCpT7CzkciAvxvQtghHG
wyZeSc+NvpSx2brF7+anPWVbi6ZQOlrQFEu/mGt4s1QFeAGt36IRuXGrbSwpHbao
YUFXmCy7n1zQv8O5udMTVNP3ds+b6bhoJFY5kJHzeSeRkMmRZl3PZ69Z7MTPzyrQ
hPquPjJmzlVywA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:01:04 2025 by rpki-client