Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json)
Hash identifier: SZSqWlnjO8i6OSr6ZA3xk14u2pKv07z1IgNbjudLIqs=
Subject key identifier: 11:54:8B:21:F0:DC:1E:18:39:FC:7B:1C:F9:7B:F3:F3:A1:75:EF:1F
Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Certificate serial: 019750EA4E2A237CE1E88F5AC5967977FFE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
Manifest number: 14EF
Signing time: Sun 08 Jun 2025 19:00:22 +0000
Manifest this update: Sun 08 Jun 2025 19:00:22 +0000
Manifest next update: Mon 09 Jun 2025 19:00:22 +0000
Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: tqQILEfE7RxDYTxgf/fqFgoTvMmKfIngJddbYoQDBjg=)
2: 42kA1PGA8no_1otOl8ofpG12v3U.roa (hash: xUXq/2K3klfSiQDOaLNutcuHJyhv84PrwrhgM3PQUAM=)
3: LkJec_DKJKY3truWJ2sI8NcpsVM.roa (hash: b6Bvufz+fttjZflFNHVPDFRMwRxNIOBdrZIhpdVt6mI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:ea:4e:2a:23:7c:e1:e8:8f:5a:c5:96:79:77:ff:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Validity
Not Before: Jun 8 19:00:22 2025 GMT
Not After : Jun 9 19:00:22 2025 GMT
Subject: CN=11548b21f0dc1e1839fc7b1cf97bf3f3a175ef1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d5:04:60:4a:73:ec:a0:e6:68:07:86:76:ad:
14:21:3e:ab:71:ac:4b:75:a4:fb:04:6f:fe:b0:3d:
1c:8e:d8:16:4c:ee:05:c4:ac:b9:54:ec:b8:9f:1a:
5f:b4:29:14:df:77:26:82:ac:3c:fa:b4:39:cb:c0:
3e:da:67:90:55:f0:3f:ad:f0:52:5a:a5:a3:5f:84:
c9:89:87:c8:fc:16:8b:dc:10:25:91:08:0f:f6:79:
99:05:27:28:d2:24:f5:cf:f0:89:01:ba:ef:8b:56:
34:4e:22:86:fe:28:48:8f:3e:ad:20:67:c4:5e:38:
35:ca:86:27:bc:12:9a:fa:f7:9e:2b:63:97:8e:97:
d5:c0:92:27:6c:68:a5:ef:4a:76:89:41:ce:9d:64:
87:1e:66:86:64:11:71:9b:c1:d9:6c:aa:e3:90:88:
a2:0b:92:00:b2:c6:2b:67:e4:b7:dd:10:f2:28:22:
d6:77:ac:82:03:e7:6a:53:21:49:69:fa:a2:d5:e8:
5c:d2:ad:27:b2:7e:9e:d8:8a:1b:0d:0b:03:34:c8:
cc:0f:ae:7a:34:b6:18:f3:1c:77:4e:4b:21:c8:73:
1a:6d:b0:00:f7:ef:0c:87:11:8f:d9:ae:cf:66:dd:
58:8c:ef:fb:9a:a5:b5:e0:c8:a7:ae:e6:95:41:ab:
b9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:54:8B:21:F0:DC:1E:18:39:FC:7B:1C:F9:7B:F3:F3:A1:75:EF:1F
X509v3 Authority Key Identifier:
keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:95:a9:ee:61:38:8f:1c:46:68:29:66:88:03:62:bb:68:da:
2c:cc:62:5a:c4:8c:27:45:42:09:42:c1:08:e4:77:dc:25:27:
4c:e3:9f:bd:94:f5:25:fa:ae:bc:48:96:43:f1:a2:fd:5e:a7:
c8:4c:f8:67:ef:c8:66:d9:37:2f:bb:b7:5e:f8:1f:15:11:d2:
0f:9a:7d:89:59:fa:11:5a:78:15:44:51:2d:58:df:b5:fb:4c:
e3:0e:a4:ff:35:bb:e3:f4:54:c6:00:85:e7:e6:1b:47:6c:b1:
b8:67:02:ba:f3:2b:c0:26:50:97:8d:6f:41:24:79:df:e1:d9:
96:98:4d:ce:84:d4:2b:cb:56:ec:08:32:a0:a6:6b:69:10:42:
5a:4f:c6:f7:ed:f2:02:1b:4c:84:84:86:b9:2c:21:9d:a2:b5:
ba:82:10:77:f8:be:8e:f6:46:5d:b4:3b:a6:8a:f4:5d:e1:ac:
fa:66:c2:4c:25:35:a7:4b:82:ef:36:2b:9d:c0:15:f8:15:30:
f2:00:0c:f6:bc:62:bd:26:a4:b0:aa:9b:02:86:34:76:65:8a:
fc:b2:e6:38:f8:1f:33:14:65:b8:06:f4:9f:f2:33:a3:01:b4:
f7:d7:82:0a:fb:dd:91:d2:15:6b:91:3c:c4:20:52:68:0d:24:
fb:da:2d:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQ6k4qI3zh6I9axZZ5d//lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNTNmNjNmMTNhMGM5NTJhMDc5ZjQ1NzhhMTBlZGJmNmUz
YWE1OGIwHhcNMjUwNjA4MTkwMDIyWhcNMjUwNjA5MTkwMDIyWjAzMTEwLwYDVQQD
EygxMTU0OGIyMWYwZGMxZTE4MzlmYzdiMWNmOTdiZjNmM2ExNzVlZjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgtUEYEpz7KDmaAeGdq0UIT6rcaxL
daT7BG/+sD0cjtgWTO4FxKy5VOy4nxpftCkU33cmgqw8+rQ5y8A+2meQVfA/rfBS
WqWjX4TJiYfI/BaL3BAlkQgP9nmZBSco0iT1z/CJAbrvi1Y0TiKG/ihIjz6tIGfE
Xjg1yoYnvBKa+veeK2OXjpfVwJInbGil70p2iUHOnWSHHmaGZBFxm8HZbKrjkIii
C5IAssYrZ+S33RDyKCLWd6yCA+dqUyFJafqi1ehc0q0nsn6e2IobDQsDNMjMD656
NLYY8xx3TkshyHMabbAA9+8MhxGP2a7PZt1YjO/7mqW14MinruaVQau5NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBFUiyHw3B4YOfx7HPl78/Ohde8fMB8GA1UdIwQY
MBaAFN1T9j8ToMlSoHn0V4oQ7b9uOqWLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYt
NWNkZmExMTdhZWM2LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYtNWNkZmExMTdhZWM2
LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAApWp7mE4
jxxGaClmiANiu2jaLMxiWsSMJ0VCCULBCOR33CUnTOOfvZT1JfquvEiWQ/Gi/V6n
yEz4Z+/IZtk3L7u3XvgfFRHSD5p9iVn6EVp4FURRLVjftftM4w6k/zW74/RUxgCF
5+YbR2yxuGcCuvMrwCZQl41vQSR53+HZlphNzoTUK8tW7AgyoKZraRBCWk/G9+3y
AhtMhISGuSwhnaK1uoIQd/i+jvZGXbQ7por0XeGs+mbCTCU1p0uC7zYrncAV+BUw
8gAM9rxivSaksKqbAoY0dmWK/LLmOPgfMxRluAb0n/IzowG099eCCvvdkdIVa5E8
xCBSaA0k+9othA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 21:34:48 2025 by rpki-client