Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json)
Hash identifier: 1AiJ5mXb4fRO6vVXwiwuAHhtwLFPYc1J8yh8/cMa12U=
Subject key identifier: 86:11:9B:0C:99:31:26:CC:04:C0:4D:60:0E:B1:B3:07:A3:6F:2C:69
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 019610FBC3351BC0E8529C79EA06B0C1D153
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
Manifest number: 12FE
Signing time: Mon 07 Apr 2025 16:00:57 +0000
Manifest this update: Mon 07 Apr 2025 16:00:57 +0000
Manifest next update: Tue 08 Apr 2025 16:00:57 +0000
Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: oyKDIFREdho+ktyIQf+Uc7p+Lq2IZ+d4/4OU3K6K7PI=)
2: WwmcE7wGl7pyI1JEZUrcMqc8ydE.roa (hash: eYdzJRuLYCeHIGBMM52itYWmfWw58ujov0m3EgFoPMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:fb:c3:35:1b:c0:e8:52:9c:79:ea:06:b0:c1:d1:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: Apr 7 16:00:57 2025 GMT
Not After : Apr 8 16:00:57 2025 GMT
Subject: CN=86119b0c993126cc04c04d600eb1b307a36f2c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ed:4b:87:82:3c:55:5f:65:dd:28:66:e2:3a:
3f:bf:1f:39:e7:a9:c7:13:b8:7e:3a:2d:ba:36:64:
0a:14:9e:45:75:4a:8e:c4:bc:ea:a4:db:59:27:39:
4e:ca:38:f3:b6:0f:66:9d:cb:65:5c:e6:30:b4:40:
a4:e5:e0:30:74:11:85:1f:16:53:0e:c0:f8:92:d9:
fa:84:4f:d8:f5:60:2a:56:a7:8a:d0:47:a3:3d:a5:
5a:ef:ac:02:c4:72:fc:91:02:60:d0:cd:d9:a5:1c:
31:d2:65:00:8c:45:67:a1:97:47:1f:be:b5:af:a9:
1b:4d:e7:65:0d:13:98:a2:7f:e5:df:fe:b1:f6:d1:
47:ae:78:9d:b3:3b:76:7c:2b:68:4f:3b:38:70:f5:
26:86:ab:4e:9f:67:02:73:94:0c:39:bc:f4:f4:f7:
44:01:b8:63:b2:53:f8:e2:a5:b7:0d:ef:63:af:7c:
a9:2d:11:63:14:f1:88:b3:bf:d8:0b:b4:90:a6:d4:
ce:5f:ac:bb:b1:7c:09:06:64:de:15:78:71:f5:18:
dd:2e:01:2a:95:f2:8c:17:7b:6b:8a:64:28:11:2c:
65:9b:e1:1f:49:a9:78:4b:f3:5b:1e:67:4c:ad:96:
ec:45:67:7e:8c:74:71:f3:77:c1:cc:9b:10:73:2d:
23:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:11:9B:0C:99:31:26:CC:04:C0:4D:60:0E:B1:B3:07:A3:6F:2C:69
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:c9:b1:9d:6a:cf:d6:74:87:b2:42:22:84:ac:3a:ea:c3:3f:
66:2f:bc:47:c6:41:4a:d0:69:b5:03:5f:8b:5f:d1:aa:77:16:
05:0d:eb:53:28:bb:73:5a:8c:37:24:78:1b:fa:2c:7f:c3:0a:
2f:88:1e:c2:e6:c5:1b:0e:ad:46:6c:49:64:4e:bd:8f:8a:23:
d1:20:bd:5e:0d:84:54:7a:5d:96:59:36:b1:e9:2e:b9:44:ab:
c6:3a:23:d9:eb:1d:f0:88:ed:97:a4:d8:bf:c2:e1:32:1e:fa:
b5:5b:1d:73:b1:c8:02:ec:11:58:c7:d8:0b:d3:70:4e:e8:cc:
36:ed:60:24:71:2c:b4:fb:9d:7a:30:c3:37:d1:77:f7:73:8f:
c2:dc:84:e8:31:98:38:bf:a2:60:93:bc:64:9c:81:af:24:a6:
b8:b4:f5:db:34:d0:98:ca:56:60:6b:58:2e:6a:9e:6f:f7:a5:
be:87:3d:c9:f9:e7:12:a2:1d:59:48:75:1e:57:51:24:38:08:
9f:bb:d5:98:1b:e6:ae:19:23:a5:e8:48:2a:3d:52:7d:dc:7c:
c9:27:e1:53:c6:04:b5:f8:1f:04:71:ad:06:06:a0:0c:47:75:
7b:c7:03:2e:38:c5:3f:67:d0:08:ee:46:4d:f2:40:11:a1:4b:
02:27:fe:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYQ+8M1G8DoUpx56gawwdFTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMTJmOTY1YTllYzMzZTJjMmU4N2I2MTYxYmVlZmI4YmUy
ODZjYTMwHhcNMjUwNDA3MTYwMDU3WhcNMjUwNDA4MTYwMDU3WjAzMTEwLwYDVQQD
Eyg4NjExOWIwYzk5MzEyNmNjMDRjMDRkNjAwZWIxYjMwN2EzNmYyYzY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+1Lh4I8VV9l3Shm4jo/vx8556nH
E7h+Oi26NmQKFJ5FdUqOxLzqpNtZJzlOyjjztg9mnctlXOYwtECk5eAwdBGFHxZT
DsD4ktn6hE/Y9WAqVqeK0EejPaVa76wCxHL8kQJg0M3ZpRwx0mUAjEVnoZdHH761
r6kbTedlDROYon/l3/6x9tFHrnidszt2fCtoTzs4cPUmhqtOn2cCc5QMObz09PdE
AbhjslP44qW3De9jr3ypLRFjFPGIs7/YC7SQptTOX6y7sXwJBmTeFXhx9RjdLgEq
lfKMF3trimQoESxlm+EfSal4S/NbHmdMrZbsRWd+jHRx83fBzJsQcy0jSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIYRmwyZMSbMBMBNYA6xswejbyxpMB8GA1UdIwQY
MBaAFN4S+WWp7DPiwuh7YWG+77i+KGyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8wZjAzNzMtZGI2ZC00Nzk3LTgyMGQt
YjZkMTJhYzY2ODMxLzEvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8wZjAzNzMtZGI2ZC00Nzk3LTgyMGQtYjZkMTJhYzY2ODMx
LzEvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK8mxnWrP
1nSHskIihKw66sM/Zi+8R8ZBStBptQNfi1/RqncWBQ3rUyi7c1qMNyR4G/osf8MK
L4gewubFGw6tRmxJZE69j4oj0SC9Xg2EVHpdllk2sekuuUSrxjoj2esd8Ijtl6TY
v8LhMh76tVsdc7HIAuwRWMfYC9NwTujMNu1gJHEstPudejDDN9F393OPwtyE6DGY
OL+iYJO8ZJyBrySmuLT12zTQmMpWYGtYLmqeb/elvoc9yfnnEqIdWUh1HldRJDgI
n7vVmBvmrhkjpehIKj1Sfdx8ySfhU8YEtfgfBHGtBgagDEd1e8cDLjjFP2fQCO5G
TfJAEaFLAif++Q==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:12:55 2025 by rpki-client