Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: jDrt3PXQGhc1Z9NXqfpO45tovFpuDEceYTVePcXQmOE=
Subject key identifier: 8A:B7:26:02:B4:0C:1F:C4:79:09:BC:F0:9B:89:64:11:F3:DC:2C:BC
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 019747B0AAF1F399501E5F37D0C91A9C9F9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 09E7
Signing time: Sat 07 Jun 2025 00:00:49 +0000
Manifest this update: Sat 07 Jun 2025 00:00:49 +0000
Manifest next update: Sun 08 Jun 2025 00:00:49 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: CTuVuxgC3qf64uG4ebqBnZ7Fd6T3FRJeh2GGY6zhxK4=)
2: PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa (hash: yxn0bsBf+yoGp2ebzQpXlOvhqAaQoPdbhmTGHyH8IaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:aa:f1:f3:99:50:1e:5f:37:d0:c9:1a:9c:9f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Jun 7 00:00:49 2025 GMT
Not After : Jun 8 00:00:49 2025 GMT
Subject: CN=8ab72602b40c1fc47909bcf09b896411f3dc2cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ec:50:7a:b5:25:53:32:42:05:ab:00:c2:8e:
67:57:88:0d:38:37:70:aa:d3:21:05:93:bb:6f:06:
d3:41:23:ef:55:17:49:58:a1:4b:90:f3:e2:1b:29:
ab:72:03:89:1c:08:83:24:42:87:4a:e5:76:51:6d:
c8:3e:7b:68:be:ae:c6:6f:be:05:9e:66:5c:30:af:
ef:4a:c5:54:99:09:72:bc:88:5b:11:f5:49:e4:7c:
f4:3d:f2:2b:7c:03:ed:d7:8b:e2:87:f0:2b:ff:88:
9f:57:7d:3e:fd:69:08:0c:fe:f0:71:26:29:b2:f1:
2b:2b:3c:ff:07:a8:34:26:b9:66:ef:5c:35:87:23:
8e:d4:d7:6e:b8:71:72:8a:46:c6:bd:69:65:62:50:
2d:d9:71:3d:4a:e9:53:5c:36:4c:ad:ca:02:32:ec:
2f:a0:7c:66:67:3a:48:3c:fb:fc:96:08:fa:06:e4:
1d:81:9a:3f:5d:64:f5:64:f6:71:d0:7d:42:f9:82:
e5:83:7e:30:ff:28:e4:b2:bf:2e:38:4e:d9:86:18:
b2:bd:97:4d:ce:01:33:84:84:80:46:26:63:23:85:
ee:dd:b8:4a:c9:d7:84:d0:e8:4a:55:9a:73:ee:ba:
cc:88:96:35:3d:ff:54:54:f3:6b:43:06:8b:d6:c3:
e3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B7:26:02:B4:0C:1F:C4:79:09:BC:F0:9B:89:64:11:F3:DC:2C:BC
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:01:54:ab:d1:bd:03:96:04:68:56:9f:b9:3e:e9:22:1e:a5:
7d:23:41:92:3d:d5:a2:b5:3b:75:c1:4b:05:88:63:79:27:79:
0f:7e:e4:d3:42:1b:90:fb:e6:88:fe:7f:08:e0:0b:7c:00:a5:
73:09:95:8b:e1:93:ce:3c:27:c7:b1:14:d2:2d:56:9e:f3:b3:
9d:13:60:e6:37:ac:ae:9d:90:f2:c6:0d:16:5e:1e:ec:cb:ab:
9b:22:0f:3a:74:2e:0f:23:7f:3f:aa:73:d0:56:b2:43:54:41:
29:23:8a:ec:18:03:93:99:1a:ba:c7:54:d8:fa:56:10:b3:3f:
73:94:75:2c:9d:fe:a8:9e:58:db:35:f9:2f:58:f5:6b:f4:aa:
54:fb:d9:9d:ca:88:f2:5c:5d:08:05:e1:70:31:1e:be:89:20:
38:98:72:a0:96:d5:49:b6:11:2e:da:3d:11:ed:ac:46:cb:63:
03:f7:df:43:a4:a3:8d:ed:c4:70:bf:41:69:cd:30:1c:63:ae:
35:4f:82:7d:07:41:30:bc:04:d3:9e:4d:67:94:50:e1:7b:ad:
9f:73:d7:36:a2:7a:f5:6b:88:0b:82:82:7a:1f:02:b7:30:bc:
dc:e0:b5:18:af:dd:f7:94:37:06:73:45:ff:61:f3:5e:07:67:
5d:c0:3b:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHsKrx85lQHl830MkanJ+aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMmJhMjlhYTAxMTNmYWZkMzcwZDg2NWZiNDQ0NDk4N2I0
NzMwOGEwHhcNMjUwNjA3MDAwMDQ5WhcNMjUwNjA4MDAwMDQ5WjAzMTEwLwYDVQQD
Eyg4YWI3MjYwMmI0MGMxZmM0NzkwOWJjZjA5Yjg5NjQxMWYzZGMyY2JjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+xQerUlUzJCBasAwo5nV4gNODdw
qtMhBZO7bwbTQSPvVRdJWKFLkPPiGymrcgOJHAiDJEKHSuV2UW3IPntovq7Gb74F
nmZcMK/vSsVUmQlyvIhbEfVJ5Hz0PfIrfAPt14vih/Ar/4ifV30+/WkIDP7wcSYp
svErKzz/B6g0Jrlm71w1hyOO1NduuHFyikbGvWllYlAt2XE9SulTXDZMrcoCMuwv
oHxmZzpIPPv8lgj6BuQdgZo/XWT1ZPZx0H1C+YLlg34w/yjksr8uOE7ZhhiyvZdN
zgEzhISARiZjI4Xu3bhKydeE0OhKVZpz7rrMiJY1Pf9UVPNrQwaL1sPjzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIq3JgK0DB/EeQm88JuJZBHz3Cy8MB8GA1UdIwQY
MBaAFN4ropqgET+v03DYZftERJh7RzCKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS85NzAwNGItYjY3MS00ZjNkLThkNTAt
ZDFhNGE0NWZhZmJjLzEvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS85NzAwNGItYjY3MS00ZjNkLThkNTAtZDFhNGE0NWZhZmJj
LzEvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARgFUq9G9
A5YEaFafuT7pIh6lfSNBkj3VorU7dcFLBYhjeSd5D37k00IbkPvmiP5/COALfACl
cwmVi+GTzjwnx7EU0i1WnvOznRNg5jesrp2Q8sYNFl4e7MurmyIPOnQuDyN/P6pz
0FayQ1RBKSOK7BgDk5kausdU2PpWELM/c5R1LJ3+qJ5Y2zX5L1j1a/SqVPvZncqI
8lxdCAXhcDEevokgOJhyoJbVSbYRLto9Ee2sRstjA/ffQ6Sjje3EcL9Bac0wHGOu
NU+CfQdBMLwE055NZ5RQ4Xutn3PXNqJ69WuIC4KCeh8CtzC83OC1GK/d95Q3BnNF
/2HzXgdnXcA7tQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 08:06:30 2025 by rpki-client