Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
File: Ma-3caS5EQsRSqgHr7cIaxplN54.mft (raw, json)
Hash identifier: ZBm6pcwOUGE4kiCsJiOkzT/6UuGgEm6NzzRWxj+8B8s=
Subject key identifier: 43:0D:DA:75:C2:BA:0A:85:DE:0A:81:C7:03:09:72:91:77:CF:19:E1
Authority key identifier: 31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
Certificate issuer: /CN=31afb771a4b9110b114aa807afb7086b1a65379e
Certificate serial: 0197469ED675FBE5DBD52E5CD6EB6F3BD45D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
Manifest number: 0337
Signing time: Fri 06 Jun 2025 19:01:44 +0000
Manifest this update: Fri 06 Jun 2025 19:01:44 +0000
Manifest next update: Sat 07 Jun 2025 19:01:44 +0000
Files and hashes: 1: Ma-3caS5EQsRSqgHr7cIaxplN54.crl (hash: zEnJ0JSsWheOPWnLvS79KjtvrnJGMpWWUJ1kIr3EyLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:d6:75:fb:e5:db:d5:2e:5c:d6:eb:6f:3b:d4:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31afb771a4b9110b114aa807afb7086b1a65379e
Validity
Not Before: Jun 6 19:01:44 2025 GMT
Not After : Jun 7 19:01:44 2025 GMT
Subject: CN=430dda75c2ba0a85de0a81c70309729177cf19e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d4:5f:03:83:c5:03:ea:24:e3:bc:94:0f:7c:
5e:14:2e:02:8f:e9:a7:9e:e0:6a:ca:bf:11:47:ce:
e2:cb:d5:a4:ba:72:af:65:3f:a1:d3:29:58:49:f5:
04:e6:1b:9c:d8:87:c7:b2:c3:88:22:d4:55:c4:f1:
b4:46:c5:92:80:3d:73:74:22:64:ab:0a:4f:04:41:
8e:ac:95:bb:60:a2:de:c5:3c:df:1e:e6:7f:ab:74:
2c:b3:a2:52:0d:38:14:10:e4:7f:0c:c2:2f:e6:5a:
81:28:3c:a4:85:79:84:42:49:a5:9c:f8:6f:22:70:
c0:ee:19:aa:b0:04:b4:a1:87:86:a5:a3:ba:31:62:
a0:13:bd:14:01:0b:ee:1c:ba:05:9a:40:83:59:af:
9a:77:18:c2:4f:4c:78:7b:4f:51:b4:27:0b:32:51:
f7:b4:67:36:a3:31:91:68:7e:e5:89:68:fc:01:d0:
7b:95:d3:2f:04:08:f1:d6:37:af:a6:5f:3b:ff:94:
74:93:90:2f:fc:7b:f1:f3:62:b7:5b:69:0c:f4:cf:
1f:e7:ff:d3:86:27:79:e3:58:3a:c8:6a:6c:49:d0:
8a:09:07:b0:87:a9:08:28:7b:9d:7d:12:81:8f:19:
52:e8:0c:3f:87:31:e9:00:ca:aa:d9:82:5b:e8:99:
93:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0D:DA:75:C2:BA:0A:85:DE:0A:81:C7:03:09:72:91:77:CF:19:E1
X509v3 Authority Key Identifier:
keyid:31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:98:78:c1:6d:28:13:7e:f4:cf:a3:b2:e0:ec:e8:78:ec:40:
9f:19:ad:e9:de:12:17:3d:c3:1f:40:5b:c6:ef:de:82:e6:59:
06:1d:ac:0d:07:1f:11:b5:19:22:15:d2:c9:9a:f5:2e:1a:0a:
3d:c6:d2:06:07:20:3f:89:8d:1f:8b:d2:b9:02:ea:aa:9a:2b:
f3:99:47:6f:b0:72:18:6f:32:c7:a4:0e:a7:08:45:bb:d0:61:
32:97:ae:04:8f:aa:06:d8:a6:00:5e:c3:76:3c:e7:5c:49:57:
1e:2c:5a:aa:e9:d1:49:74:2d:20:50:fc:5d:0d:0a:df:a5:bc:
a7:70:0d:3c:7a:9c:50:6e:1b:2b:86:45:be:d7:8e:a4:9d:3c:
d9:d8:80:08:75:40:33:5c:69:4e:43:54:3a:1c:cc:8c:0f:18:
74:cc:ae:a9:88:05:2e:8e:a8:5e:ef:8f:a2:a4:43:aa:2c:5c:
3c:8e:7d:43:d4:11:03:85:10:0c:a2:1d:14:f5:20:19:35:2b:
89:e6:f6:c1:18:96:5a:b6:e5:0f:03:77:6a:57:75:3c:9b:ab:
a8:1e:6f:ab:b9:76:30:b1:b3:1f:89:75:5d:24:b1:6e:d7:8b:
88:21:d6:8f:29:ed:fb:db:43:0f:8c:89:e0:9e:f2:a8:a8:93:
48:f9:cd:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGntZ1++Xb1S5c1utvO9RdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxYWZiNzcxYTRiOTExMGIxMTRhYTgwN2FmYjcwODZiMWE2
NTM3OWUwHhcNMjUwNjA2MTkwMTQ0WhcNMjUwNjA3MTkwMTQ0WjAzMTEwLwYDVQQD
Eyg0MzBkZGE3NWMyYmEwYTg1ZGUwYTgxYzcwMzA5NzI5MTc3Y2YxOWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi9RfA4PFA+ok47yUD3xeFC4Cj+mn
nuBqyr8RR87iy9WkunKvZT+h0ylYSfUE5huc2IfHssOIItRVxPG0RsWSgD1zdCJk
qwpPBEGOrJW7YKLexTzfHuZ/q3Qss6JSDTgUEOR/DMIv5lqBKDykhXmEQkmlnPhv
InDA7hmqsAS0oYeGpaO6MWKgE70UAQvuHLoFmkCDWa+adxjCT0x4e09RtCcLMlH3
tGc2ozGRaH7liWj8AdB7ldMvBAjx1jevpl87/5R0k5Av/Hvx82K3W2kM9M8f5//T
hid541g6yGpsSdCKCQewh6kIKHudfRKBjxlS6Aw/hzHpAMqq2YJb6JmTLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEMN2nXCugqF3gqBxwMJcpF3zxnhMB8GA1UdIwQY
MBaAFDGvt3GkuRELEUqoB6+3CGsaZTeeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWEtM2NhUzVFUXNSU3FnSHI3Y0lheHBsTjU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8xM2Q0OGEtZDBlZS00ZDU1LWEzM2It
YjBlYjRjMDZhMWU3LzEvTWEtM2NhUzVFUXNSU3FnSHI3Y0lheHBsTjU0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8xM2Q0OGEtZDBlZS00ZDU1LWEzM2ItYjBlYjRjMDZhMWU3
LzEvTWEtM2NhUzVFUXNSU3FnSHI3Y0lheHBsTjU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArph4wW0o
E370z6Oy4OzoeOxAnxmt6d4SFz3DH0Bbxu/eguZZBh2sDQcfEbUZIhXSyZr1LhoK
PcbSBgcgP4mNH4vSuQLqqpor85lHb7ByGG8yx6QOpwhFu9BhMpeuBI+qBtimAF7D
djznXElXHixaqunRSXQtIFD8XQ0K36W8p3ANPHqcUG4bK4ZFvteOpJ082diACHVA
M1xpTkNUOhzMjA8YdMyuqYgFLo6oXu+PoqRDqixcPI59Q9QRA4UQDKIdFPUgGTUr
ieb2wRiWWrblDwN3ald1PJurqB5vq7l2MLGzH4l1XSSxbteLiCHWjynt+9tDD4yJ
4J7yqKiTSPnNmw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:03:52 2025 by rpki-client