Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
File: 3QtmPEXXvCck0WhIUIdYHhREj7Y.mft (raw, json)
Hash identifier: S6Po5cWfyhv7zhp0D/ZgNqRrhG7IaMtFPVDDWoYVfCc=
Subject key identifier: 78:98:BF:A4:63:93:48:F1:A5:25:10:98:34:D8:73:28:34:8D:5D:8B
Authority key identifier: DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
Certificate issuer: /CN=dd0b663c45d7bc2724d168485087581e14448fb6
Certificate serial: 019758DB04CDBA3B956C5657557FD2FFC1E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
Manifest number: 1584
Signing time: Tue 10 Jun 2025 08:00:37 +0000
Manifest this update: Tue 10 Jun 2025 08:00:37 +0000
Manifest next update: Wed 11 Jun 2025 08:00:37 +0000
Files and hashes: 1: 3QtmPEXXvCck0WhIUIdYHhREj7Y.crl (hash: cbPCu4he/x1yfMfJGVSvb2Rp2yjbv/nUK5edbyEPWi8=)
2: I9GqI9GxRbg5gyNw2oYeQXtgJJg.roa (hash: IdZbo1C2DnUJiJSpOjjTPKnvp3frNBJygc4FMjTeWHU=)
3: OJHrSjDn0A0xOyeisC7fOP_zy4g.roa (hash: 4mrlovUy+cBI29r4SEJkRQxz3HoEwjM6nDvfGvlxWBU=)
4: ie70DJhDrGYxNNPSAG6BpAZrtxY.roa (hash: HiOIeBO8KrrORXl70BQK8AAzSZ8zCob2hQpjThQB7t8=)
5: tr4Wz-5rQhPo47mTFs_LgvHDl8s.roa (hash: PZGVkTuh77FvBlVCnDa38AVdteMzJ1COvOQXzBoIS0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:db:04:cd:ba:3b:95:6c:56:57:55:7f:d2:ff:c1:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd0b663c45d7bc2724d168485087581e14448fb6
Validity
Not Before: Jun 10 08:00:37 2025 GMT
Not After : Jun 11 08:00:37 2025 GMT
Subject: CN=7898bfa4639348f1a525109834d87328348d5d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b0:a2:a3:68:30:0d:c6:38:1d:f5:6b:1e:8a:
8f:60:5b:87:d5:1c:6f:e2:45:c9:88:37:2f:ac:ea:
fe:d2:50:e1:3c:92:03:fc:be:8b:7a:dd:3d:a4:d8:
4c:9d:68:bb:de:e5:c8:e4:18:45:1a:e2:e8:bd:48:
c9:a5:cb:8b:87:db:6a:e3:30:23:7d:43:1d:63:e3:
59:4f:1b:9d:14:7a:b9:ca:b1:3e:39:6c:88:e1:5c:
ef:05:0c:17:c4:ef:28:61:9e:6e:e3:52:17:1b:15:
54:4e:43:2c:62:d8:2d:2e:2d:32:11:07:98:be:bb:
f2:9f:fa:a5:8d:fd:cf:75:d7:e0:01:6e:a2:69:78:
bf:9c:e8:d3:9f:79:38:b1:84:d0:20:dd:4a:71:45:
0a:ca:2c:31:2e:6c:3f:0d:f8:d1:dd:e7:05:d6:91:
c4:28:6e:26:76:83:e9:0a:69:6e:09:8b:cd:43:aa:
c6:aa:d2:a9:b7:11:38:9f:cb:a4:20:42:49:b8:36:
ad:db:2f:23:d8:66:79:3f:b0:02:bf:8b:97:86:f8:
c1:1c:de:ce:24:60:f4:a9:4e:fb:49:9d:43:1d:71:
8c:84:c4:ea:48:25:33:c8:c8:7d:ce:bc:db:3b:8a:
02:2c:3e:ec:07:4d:06:25:93:82:7e:4a:ca:3e:93:
f9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:98:BF:A4:63:93:48:F1:A5:25:10:98:34:D8:73:28:34:8D:5D:8B
X509v3 Authority Key Identifier:
keyid:DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:24:0b:a2:32:f8:06:45:82:f2:b8:8d:59:88:79:56:c2:4b:
14:c4:14:df:ef:a6:a8:7f:f3:01:b3:34:06:bb:4f:69:fa:be:
ea:54:ca:f2:c3:50:49:16:9d:48:7d:42:c0:14:75:89:58:57:
3c:fb:48:45:6d:c4:5f:34:14:f0:12:bf:85:62:ea:32:fd:5a:
24:6d:3b:fc:a2:5c:a6:82:18:8a:5e:6f:9a:62:0a:f5:fe:b9:
6b:06:dc:44:0a:f3:94:0e:8b:e4:f9:42:8f:6c:b6:0e:89:43:
07:cf:38:0d:5e:9a:64:15:8e:4c:5f:71:99:0b:09:48:d4:ae:
23:13:9c:5e:ad:00:9b:e6:8d:5d:48:52:06:f3:dc:0e:70:8b:
83:48:f5:f0:20:41:31:c0:40:24:80:9c:14:12:85:63:93:2a:
e0:59:8f:72:11:7b:50:07:c7:86:31:e2:79:cb:bd:ee:ce:4a:
5b:d7:06:90:37:2a:6f:ba:8a:2f:9e:86:e4:b0:f2:32:ac:bb:
36:0c:bb:bc:09:a1:60:6b:85:f2:47:2f:77:2e:78:b8:3a:71:
da:48:96:80:5b:ca:9d:b5:b0:a2:87:5a:79:3d:31:1c:ff:92:
d2:ea:21:1c:37:b6:60:cd:c1:f9:de:16:10:55:9e:b0:6d:6d:
0a:90:59:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdY2wTNujuVbFZXVX/S/8HgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMGI2NjNjNDVkN2JjMjcyNGQxNjg0ODUwODc1ODFlMTQ0
NDhmYjYwHhcNMjUwNjEwMDgwMDM3WhcNMjUwNjExMDgwMDM3WjAzMTEwLwYDVQQD
Eyg3ODk4YmZhNDYzOTM0OGYxYTUyNTEwOTgzNGQ4NzMyODM0OGQ1ZDhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLCio2gwDcY4HfVrHoqPYFuH1Rxv
4kXJiDcvrOr+0lDhPJID/L6Let09pNhMnWi73uXI5BhFGuLovUjJpcuLh9tq4zAj
fUMdY+NZTxudFHq5yrE+OWyI4VzvBQwXxO8oYZ5u41IXGxVUTkMsYtgtLi0yEQeY
vrvyn/qljf3PddfgAW6iaXi/nOjTn3k4sYTQIN1KcUUKyiwxLmw/DfjR3ecF1pHE
KG4mdoPpCmluCYvNQ6rGqtKptxE4n8ukIEJJuDat2y8j2GZ5P7ACv4uXhvjBHN7O
JGD0qU77SZ1DHXGMhMTqSCUzyMh9zrzbO4oCLD7sB00GJZOCfkrKPpP5VwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHiYv6Rjk0jxpSUQmDTYcyg0jV2LMB8GA1UdIwQY
MBaAFN0LZjxF17wnJNFoSFCHWB4URI+2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9lZGMyMzgtNGMwYS00NmVkLWJjMjQt
M2I5ZTNjOGEyZmNhLzEvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC9lZGMyMzgtNGMwYS00NmVkLWJjMjQtM2I5ZTNjOGEyZmNh
LzEvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqiQLojL4
BkWC8riNWYh5VsJLFMQU3++mqH/zAbM0BrtPafq+6lTK8sNQSRadSH1CwBR1iVhX
PPtIRW3EXzQU8BK/hWLqMv1aJG07/KJcpoIYil5vmmIK9f65awbcRArzlA6L5PlC
j2y2DolDB884DV6aZBWOTF9xmQsJSNSuIxOcXq0Am+aNXUhSBvPcDnCLg0j18CBB
McBAJICcFBKFY5Mq4FmPchF7UAfHhjHiecu97s5KW9cGkDcqb7qKL56G5LDyMqy7
Ngy7vAmhYGuF8kcvdy54uDpx2kiWgFvKnbWwoodaeT0xHP+S0uohHDe2YM3B+d4W
EFWesG1tCpBZ6g==
-----END CERTIFICATE-----
Generated at Tue Jun 10 09:50:58 2025 by rpki-client