Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: qKgTEeoMLz2i+ALgRvU7vJjEN1R3I73rhTEQ1P4JajU=
Subject key identifier: 67:AC:21:9D:47:E0:06:92:78:F2:47:BC:F7:98:E4:BB:CF:4D:10:C0
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 01964E23426593E40D8EA83EE0464FCFDEDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 14F9
Signing time: Sat 19 Apr 2025 13:00:55 +0000
Manifest this update: Sat 19 Apr 2025 13:00:55 +0000
Manifest next update: Sun 20 Apr 2025 13:00:55 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: /ycT699QYw/KHUdE/vdH29hgkrtNzZRLtol4sbe2+9A=)
2: OwG4_h94ip7CzANECDf39dfwNGk.roa (hash: XIXqYD1CZdADAiBPHja+pimegzmDxikS2efUTrBV4t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:23:42:65:93:e4:0d:8e:a8:3e:e0:46:4f:cf:de:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: Apr 19 13:00:55 2025 GMT
Not After : Apr 20 13:00:55 2025 GMT
Subject: CN=67ac219d47e0069278f247bcf798e4bbcf4d10c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:03:80:4e:f9:30:71:12:11:3c:c7:9b:2f:a8:
23:f0:a1:fa:bc:55:7c:96:de:15:1a:25:5d:dc:ce:
7a:9c:52:f8:00:38:c6:9e:37:44:97:3f:ed:04:7d:
91:f7:2c:f0:54:26:a3:7c:34:ae:c8:4e:86:20:1f:
ab:cf:78:de:b5:1d:57:47:a4:93:7e:d4:c6:de:65:
f7:54:41:28:b2:4f:47:73:4f:84:51:7e:41:33:b3:
f5:c4:7a:91:2f:d7:85:5a:54:d0:ec:72:13:37:84:
c2:b5:ec:56:72:19:9a:0c:45:f7:e1:5f:39:65:db:
be:8f:c3:d5:b3:20:b0:85:3c:ed:3e:26:07:bb:eb:
78:89:63:f2:a3:21:35:1e:4d:4d:8b:74:82:8d:13:
7b:97:88:95:fd:65:3f:68:60:1e:85:1c:d0:a0:47:
ba:7c:30:9e:a3:c3:e4:81:38:75:79:a0:9b:4c:22:
6a:a7:09:ad:b6:69:6b:2a:ab:1a:37:4c:49:cc:11:
88:23:24:9f:99:c7:db:78:82:02:07:3d:6f:b4:d4:
fd:a2:91:85:5f:66:89:94:f3:b1:76:e8:01:4f:09:
8a:2b:3e:13:91:6f:fc:a0:59:4b:f7:1d:60:b6:a4:
b6:2c:4b:4a:3c:03:3b:28:81:e6:96:65:72:12:7d:
1f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:AC:21:9D:47:E0:06:92:78:F2:47:BC:F7:98:E4:BB:CF:4D:10:C0
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:fb:96:07:97:4e:77:42:61:22:16:21:58:60:6d:33:77:e8:
4d:28:67:46:a8:27:ac:96:b0:48:c1:a5:b9:39:5c:12:b5:6d:
36:bd:78:11:b1:12:19:86:40:74:25:b5:61:74:9f:9a:02:7b:
35:3b:69:d5:bd:6b:65:a7:bc:9f:4e:11:d1:37:e2:cf:ce:10:
bb:42:54:ee:91:a7:f2:6a:29:e8:2a:b7:e4:5c:63:49:b1:79:
55:c3:9b:8f:d5:8d:ae:23:4e:85:6d:77:5d:13:74:bc:7e:55:
39:1f:68:0f:47:39:2a:58:c5:35:76:01:66:3b:bf:64:8c:37:
9f:0c:18:cc:5a:38:e5:13:4c:c8:88:33:3b:cb:05:a6:3c:64:
c1:f4:2f:19:57:89:89:a5:58:e4:1b:0a:bb:88:60:1c:54:d9:
2f:d2:16:07:42:8e:85:4c:1a:01:4d:a1:7e:32:e7:02:a9:9f:
7e:91:6a:57:6c:d3:3a:04:76:fb:53:d4:86:92:51:55:e5:2e:
48:86:a2:b8:35:a3:30:6a:76:bf:b5:48:8c:b8:b0:98:f9:bf:
53:d1:29:13:79:5c:30:15:30:9e:0a:cf:f4:9b:7d:64:19:13:
ab:0a:8a:24:9b:8c:33:4f:0d:a5:da:6c:8c:95:70:2e:3b:89:
c9:07:61:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZOI0Jlk+QNjqg+4EZPz97dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNzFhMTI5YzhiMDg5OTU5NDIxOTllYTZkMWIyMjgyNjUz
NTBkMGIwHhcNMjUwNDE5MTMwMDU1WhcNMjUwNDIwMTMwMDU1WjAzMTEwLwYDVQQD
Eyg2N2FjMjE5ZDQ3ZTAwNjkyNzhmMjQ3YmNmNzk4ZTRiYmNmNGQxMGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAOATvkwcRIRPMebL6gj8KH6vFV8
lt4VGiVd3M56nFL4ADjGnjdElz/tBH2R9yzwVCajfDSuyE6GIB+rz3jetR1XR6ST
ftTG3mX3VEEosk9Hc0+EUX5BM7P1xHqRL9eFWlTQ7HITN4TCtexWchmaDEX34V85
Zdu+j8PVsyCwhTztPiYHu+t4iWPyoyE1Hk1Ni3SCjRN7l4iV/WU/aGAehRzQoEe6
fDCeo8PkgTh1eaCbTCJqpwmttmlrKqsaN0xJzBGIIySfmcfbeIICBz1vtNT9opGF
X2aJlPOxdugBTwmKKz4TkW/8oFlL9x1gtqS2LEtKPAM7KIHmlmVyEn0fdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGesIZ1H4AaSePJHvPeY5LvPTRDAMB8GA1UdIwQY
MBaAFN1xoSnIsImVlCGZ6m0bIoJlNQ0LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1hHaEtjaXdpWldVSVpucWJSc2lnbVUxRFFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9iNDk5YjYtMDFmNC00NDJjLWJlNzYt
YzBkOGM4NjY4OTNmLzEvM1hHaEtjaXdpWldVSVpucWJSc2lnbVUxRFFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9iNDk5YjYtMDFmNC00NDJjLWJlNzYtYzBkOGM4NjY4OTNm
LzEvM1hHaEtjaXdpWldVSVpucWJSc2lnbVUxRFFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABfuWB5dO
d0JhIhYhWGBtM3foTShnRqgnrJawSMGluTlcErVtNr14EbESGYZAdCW1YXSfmgJ7
NTtp1b1rZae8n04R0Tfiz84Qu0JU7pGn8mop6Cq35FxjSbF5VcObj9WNriNOhW13
XRN0vH5VOR9oD0c5KljFNXYBZju/ZIw3nwwYzFo45RNMyIgzO8sFpjxkwfQvGVeJ
iaVY5BsKu4hgHFTZL9IWB0KOhUwaAU2hfjLnAqmffpFqV2zTOgR2+1PUhpJRVeUu
SIaiuDWjMGp2v7VIjLiwmPm/U9EpE3lcMBUwngrP9Jt9ZBkTqwqKJJuMM08Npdps
jJVwLjuJyQdhHg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:13:34 2025 by rpki-client