Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
File: 3YqroPRrqhRP2wk46RwU-UxhZQw.mft (raw, json)
Hash identifier: FkivcmTyQPz6viwLKaaB3n/UK/GKK1cxN023UwjU7oE=
Subject key identifier: BA:79:8B:00:27:0D:08:7F:D6:A2:97:08:80:BB:37:84:40:9B:B3:B5
Authority key identifier: DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
Certificate issuer: /CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Certificate serial: 01974BC460B62DF568E4D9938FC2C7653163
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
Manifest number: 0CDE
Signing time: Sat 07 Jun 2025 19:00:50 +0000
Manifest this update: Sat 07 Jun 2025 19:00:50 +0000
Manifest next update: Sun 08 Jun 2025 19:00:50 +0000
Files and hashes: 1: 3YqroPRrqhRP2wk46RwU-UxhZQw.crl (hash: Wd0m1vUXxjIZ4RFReQprOhXWQ1mHrIfCeOKl0FmCxzg=)
2: jyRFM9_T_syhJNdrBbZtEXQjBxY.roa (hash: 3sN/6EgdGuf6mYlFqORSiJaf85S1hh85EE3f4pncjgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:60:b6:2d:f5:68:e4:d9:93:8f:c2:c7:65:31:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Validity
Not Before: Jun 7 19:00:50 2025 GMT
Not After : Jun 8 19:00:50 2025 GMT
Subject: CN=ba798b00270d087fd6a2970880bb3784409bb3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a6:cc:ba:fa:54:59:38:a9:3d:78:c8:d1:b7:
13:05:0f:c0:79:c3:81:43:46:3a:cb:6e:be:e7:08:
9f:bd:3b:21:02:99:fd:65:20:2e:e3:82:d2:bf:cd:
d8:5c:ae:a8:13:27:fe:87:b7:eb:c6:27:51:e0:07:
0a:0b:35:04:52:4d:07:0b:63:b2:ca:04:9a:34:15:
f5:04:63:32:65:65:02:f1:6b:5a:10:ac:f2:ee:ff:
7b:64:1a:36:5f:ea:b1:ef:4d:82:ff:4f:c3:ad:eb:
ad:5b:57:db:ff:33:47:f4:7b:3f:58:cd:01:da:50:
ef:f7:3f:6e:ee:4e:48:d8:9e:c1:20:97:c7:40:43:
1c:34:c3:88:10:fa:e6:fa:02:7a:f7:78:6e:5b:f3:
f0:f5:0a:47:a3:97:4c:54:13:63:fc:2d:66:15:b7:
05:74:86:91:dd:8e:a6:f7:15:60:da:7b:aa:e2:77:
a5:aa:de:31:b8:c7:eb:e5:65:9e:ec:37:68:71:8c:
1d:c6:82:cc:ff:2c:92:26:f3:ae:cd:e8:d2:52:d3:
34:b3:33:c8:c6:71:a5:bd:45:a4:4a:cf:1c:38:ba:
6d:86:31:d2:91:e8:f5:5e:79:b2:ca:64:e3:3f:9c:
f1:79:02:c9:25:4a:16:e8:14:d7:74:ca:c2:db:20:
ff:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:79:8B:00:27:0D:08:7F:D6:A2:97:08:80:BB:37:84:40:9B:B3:B5
X509v3 Authority Key Identifier:
keyid:DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:1d:96:6d:6e:d9:f8:33:fc:fb:bb:b8:3e:dc:d1:99:87:3c:
c9:9b:4e:58:da:6e:25:10:12:de:50:c3:e8:d1:e2:77:09:53:
d6:0f:d9:2d:87:45:16:42:54:f7:c6:d2:1c:fa:4a:d2:77:ae:
6c:5f:be:bd:ea:20:ef:64:c2:f2:df:94:2c:60:98:e7:b5:38:
a9:61:aa:23:bc:08:e6:ea:12:64:3d:80:e0:29:25:74:3b:a8:
0f:ac:4d:e6:07:11:f8:f4:0b:4e:62:28:66:62:e9:bc:0d:3d:
e6:07:8d:94:d7:77:e1:c4:2a:d1:03:ff:72:21:53:10:bb:e7:
2a:5a:bc:e8:6d:34:af:15:e8:46:db:71:41:08:c2:d7:ab:09:
05:f9:2c:20:65:9c:f4:a8:71:37:7e:b3:79:af:5d:9d:6a:aa:
25:59:f6:4b:cd:8d:32:f5:0a:a8:7e:31:8b:65:1e:ad:68:4b:
ca:17:e5:0c:05:44:37:3d:e6:79:f3:77:00:82:6d:af:e9:76:
ca:74:c0:80:d7:ae:78:7d:8f:1c:2d:b1:ee:e0:27:0d:31:27:
22:fa:38:cb:9a:30:fb:1c:0a:e2:90:14:4d:2b:62:68:a2:7b:
2d:49:8f:d4:98:18:85:d6:03:04:19:a2:6a:f8:94:79:97:04:
aa:50:43:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLxGC2LfVo5NmTj8LHZTFjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkOGFhYmEwZjQ2YmFhMTQ0ZmRiMDkzOGU5MWMxNGY5NGM2
MTY1MGMwHhcNMjUwNjA3MTkwMDUwWhcNMjUwNjA4MTkwMDUwWjAzMTEwLwYDVQQD
EyhiYTc5OGIwMDI3MGQwODdmZDZhMjk3MDg4MGJiMzc4NDQwOWJiM2I1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6bMuvpUWTipPXjI0bcTBQ/AecOB
Q0Y6y26+5wifvTshApn9ZSAu44LSv83YXK6oEyf+h7frxidR4AcKCzUEUk0HC2Oy
ygSaNBX1BGMyZWUC8WtaEKzy7v97ZBo2X+qx702C/0/DreutW1fb/zNH9Hs/WM0B
2lDv9z9u7k5I2J7BIJfHQEMcNMOIEPrm+gJ693huW/Pw9QpHo5dMVBNj/C1mFbcF
dIaR3Y6m9xVg2nuq4nelqt4xuMfr5WWe7DdocYwdxoLM/yySJvOuzejSUtM0szPI
xnGlvUWkSs8cOLpthjHSkej1XnmyymTjP5zxeQLJJUoW6BTXdMrC2yD/LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLp5iwAnDQh/1qKXCIC7N4RAm7O1MB8GA1UdIwQY
MBaAFN2Kq6D0a6oUT9sJOOkcFPlMYWUMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lxcm9QUnJxaFJQMndrNDZSd1UtVXhoWlF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xZmEyN2UtYWFmMC00YmUyLWE1MjIt
YTgwYzk0NzYxZDIzLzEvM1lxcm9QUnJxaFJQMndrNDZSd1UtVXhoWlF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi8xZmEyN2UtYWFmMC00YmUyLWE1MjItYTgwYzk0NzYxZDIz
LzEvM1lxcm9QUnJxaFJQMndrNDZSd1UtVXhoWlF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKh2WbW7Z
+DP8+7u4PtzRmYc8yZtOWNpuJRAS3lDD6NHidwlT1g/ZLYdFFkJU98bSHPpK0neu
bF++veog72TC8t+ULGCY57U4qWGqI7wI5uoSZD2A4CkldDuoD6xN5gcR+PQLTmIo
ZmLpvA095geNlNd34cQq0QP/ciFTELvnKlq86G00rxXoRttxQQjC16sJBfksIGWc
9KhxN36zea9dnWqqJVn2S82NMvUKqH4xi2UerWhLyhflDAVENz3mefN3AIJtr+l2
ynTAgNeueH2PHC2x7uAnDTEnIvo4y5ow+xwK4pAUTStiaKJ7LUmP1JgYhdYDBBmi
aviUeZcEqlBDaw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 04:00:22 2025 by rpki-client