
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
File: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft (raw, json)
Hash identifier: PZhAUvEudbwZUW6x0veUqF3EYami7pfya2J/+qVV9C8=
Subject key identifier: 48:0D:8A:7C:F7:B9:2A:1E:9C:86:B6:BD:BB:A5:4C:E5:14:F1:91:83
Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
Certificate issuer: /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Certificate serial: 0197640361028C395745DDA66C2E8147E77A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
Manifest number: 151E
Signing time: Thu 12 Jun 2025 12:00:32 +0000
Manifest this update: Thu 12 Jun 2025 12:00:32 +0000
Manifest next update: Fri 13 Jun 2025 12:00:32 +0000
Files and hashes: 1: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl (hash: OAsMdydOrLr1z5wWBJ7IF55HQJ3HCr14OZcrvBrrqY8=)
2: RZ4xmYAJVpVRLfuQVLFQGXgbrQE.roa (hash: aFDGOW4Qu6MNo6mtPQc9Lw/jPxt+lcHM9Vl2lskSnz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 12:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:03:61:02:8c:39:57:45:dd:a6:6c:2e:81:47:e7:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Validity
Not Before: Jun 12 12:00:32 2025 GMT
Not After : Jun 13 12:00:32 2025 GMT
Subject: CN=480d8a7cf7b92a1e9c86b6bdbba54ce514f19183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a5:bc:1b:6c:1b:15:ac:e8:88:b2:15:f2:5e:
39:a9:f5:58:78:1f:11:ad:c3:5a:f1:be:40:ef:e2:
d6:62:54:f6:20:b5:73:fb:9a:cd:c0:f9:3d:56:5e:
cb:87:1e:8c:a1:8a:cd:d0:88:15:ca:fe:24:80:e0:
6e:64:0d:ef:e4:48:de:17:37:11:e9:e5:f2:0c:f5:
bb:b9:26:49:82:44:90:c2:10:01:c3:8c:9b:bb:95:
c4:1a:c1:bf:40:70:b6:85:fb:8e:1c:a7:fa:4f:9a:
25:b1:4f:5d:24:18:62:a6:41:5f:24:4f:0f:14:26:
d9:1a:d2:ba:ca:4b:98:7a:65:f8:b5:31:08:55:d1:
81:c4:e3:51:15:da:a0:66:ac:78:35:40:3d:6a:e8:
b7:05:74:79:83:52:c1:1d:18:a0:dc:7e:f7:21:74:
f6:62:42:f1:6d:3c:a0:1b:06:24:0a:ee:b6:0a:a4:
70:5f:d1:1b:4f:17:b5:2d:40:4c:c6:35:d2:dd:84:
ad:0d:70:66:2c:bc:49:37:ea:f4:d8:48:26:08:4a:
66:f0:9c:b6:21:e5:4d:5f:56:00:ef:ec:37:f8:5b:
ef:c5:1e:77:99:e5:14:47:9f:39:8c:24:8c:67:d7:
dd:a5:95:8e:01:61:b8:3c:08:bf:13:ad:60:90:11:
23:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0D:8A:7C:F7:B9:2A:1E:9C:86:B6:BD:BB:A5:4C:E5:14:F1:91:83
X509v3 Authority Key Identifier:
keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:8c:7f:f8:ba:6a:fc:70:08:7b:ed:ff:89:9e:ca:d1:06:ad:
37:3c:eb:f9:b7:e1:16:11:48:bd:47:06:4b:64:79:88:13:a9:
0d:cf:b2:c9:b4:38:ff:27:cf:0b:48:23:72:7f:0f:84:73:b9:
7d:e0:f4:a3:4e:0b:d9:31:8f:32:ae:68:33:33:8b:cb:34:22:
e2:03:a9:86:ab:3a:e9:a6:0c:99:d1:13:4e:d0:0a:be:60:a7:
05:b0:90:cd:2a:b6:17:bd:c1:0c:e1:6b:29:fc:28:f9:1e:20:
69:d6:2d:65:e5:f6:ee:77:3e:b2:aa:69:19:14:0d:54:53:88:
91:40:87:df:29:f1:d4:98:0f:af:23:0e:97:9f:1f:df:8b:a8:
1f:cb:e9:3a:d2:8e:17:81:bc:11:e9:70:30:54:59:03:15:9b:
74:a4:6d:b5:b2:ce:17:fa:61:1c:36:44:d1:40:14:0b:0a:cb:
ff:18:52:08:1f:16:89:da:68:49:d0:a3:f4:7a:ed:b2:7d:04:
a0:60:92:fb:2f:9d:26:48:ef:2a:b8:11:c8:6b:59:4b:5d:cc:
11:65:2c:80:82:65:48:91:eb:e6:aa:f3:2f:91:a8:4b:ee:f2:
b4:42:06:82:5d:25:af:a8:fb:ae:e6:fb:94:c0:a5:76:d2:21:
e2:ad:b7:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdkA2ECjDlXRd2mbC6BR+d6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMTY5OTUyZjk3ZjQ5NGNmZTBmNmI1NDI3Y2E1NmU4MTBj
MDVjZTAwHhcNMjUwNjEyMTIwMDMyWhcNMjUwNjEzMTIwMDMyWjAzMTEwLwYDVQQD
Eyg0ODBkOGE3Y2Y3YjkyYTFlOWM4NmI2YmRiYmE1NGNlNTE0ZjE5MTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKW8G2wbFazoiLIV8l45qfVYeB8R
rcNa8b5A7+LWYlT2ILVz+5rNwPk9Vl7Lhx6MoYrN0IgVyv4kgOBuZA3v5EjeFzcR
6eXyDPW7uSZJgkSQwhABw4ybu5XEGsG/QHC2hfuOHKf6T5olsU9dJBhipkFfJE8P
FCbZGtK6ykuYemX4tTEIVdGBxONRFdqgZqx4NUA9aui3BXR5g1LBHRig3H73IXT2
YkLxbTygGwYkCu62CqRwX9EbTxe1LUBMxjXS3YStDXBmLLxJN+r02EgmCEpm8Jy2
IeVNX1YA7+w3+FvvxR53meUUR585jCSMZ9fdpZWOAWG4PAi/E61gkBEjfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEgNinz3uSoenIa2vbulTOUU8ZGDMB8GA1UdIwQY
MBaAFN4WmVL5f0lM/g9rVCfKVugQwFzgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9lNzg5NTQtMzFmZC00ZmQwLTlmYzEt
MGY0YjI4Yjg4NmY3LzEvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9lNzg5NTQtMzFmZC00ZmQwLTlmYzEtMGY0YjI4Yjg4NmY3
LzEvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAv4x/+Lpq
/HAIe+3/iZ7K0QatNzzr+bfhFhFIvUcGS2R5iBOpDc+yybQ4/yfPC0gjcn8PhHO5
feD0o04L2TGPMq5oMzOLyzQi4gOphqs66aYMmdETTtAKvmCnBbCQzSq2F73BDOFr
Kfwo+R4gadYtZeX27nc+sqppGRQNVFOIkUCH3ynx1JgPryMOl58f34uoH8vpOtKO
F4G8EelwMFRZAxWbdKRttbLOF/phHDZE0UAUCwrL/xhSCB8WidpoSdCj9Hrtsn0E
oGCS+y+dJkjvKrgRyGtZS13MEWUsgIJlSJHr5qrzL5GoS+7ytEIGgl0lr6j7rub7
lMCldtIh4q23og==
-----END CERTIFICATE-----
Generated at Thu Jun 12 18:08:20 2025 by rpki-client