Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: v/NINc5kr5qRulM+So5q5p6txytLHAafdTKP40tJNWA=
Subject key identifier: F2:23:6F:D6:96:0A:02:7D:38:DD:43:F2:D6:02:CA:3A:2F:65:80:F6
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 01976A06152E6EB92F7A5A6972CA3E0FDF37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 159B
Signing time: Fri 13 Jun 2025 16:01:12 +0000
Manifest this update: Fri 13 Jun 2025 16:01:12 +0000
Manifest next update: Sat 14 Jun 2025 16:01:12 +0000
Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: Vb7k+BOj6M7XczQY6A9fpR1IHaPJop7bjhCFEx2i7/w=)
2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
4: KYs_VMmQL9k2rQHns_O4m4f35bc.roa (hash: 1ns98Zta2gRWyrvr5wyrj8EwmfBa9CnA+/wYUmR2SA0=)
5: ThB5ArM42WkjWUEQcQYsflTBSWo.roa (hash: bddz7FyKEk1/5lgcU0RqcQHG7LiGlbilafV868t6FT4=)
6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
7: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
8: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:06:15:2e:6e:b9:2f:7a:5a:69:72:ca:3e:0f:df:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Jun 13 16:01:12 2025 GMT
Not After : Jun 14 16:01:12 2025 GMT
Subject: CN=f2236fd6960a027d38dd43f2d602ca3a2f6580f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fd:0f:2f:31:68:6a:13:0c:97:43:eb:fe:6d:
54:bf:6f:17:20:68:01:d5:8e:d3:65:14:7a:17:ee:
18:99:d6:2a:c5:04:57:ee:6a:93:93:0a:49:2e:e6:
1f:ca:8d:63:3c:5c:dd:2e:3f:8f:b6:55:b9:6f:39:
0b:ba:21:a6:e1:65:5e:dd:91:e8:ab:4c:62:72:e5:
a0:85:d6:a3:fc:e4:f1:a9:b1:4f:8f:fc:c8:23:47:
3a:45:eb:f5:77:33:ba:b7:f7:96:07:33:b7:e3:aa:
07:14:ab:99:72:f5:87:c9:30:b1:a1:d0:82:45:e4:
20:0b:d3:b5:22:78:04:40:e9:b8:3f:9a:f5:69:04:
c0:a8:5e:60:f6:7b:67:fd:fe:8d:5d:cc:08:70:cd:
72:36:59:4a:18:7d:49:1b:1e:30:43:df:2a:e4:bc:
ed:73:a2:58:e4:6b:b9:bf:1b:79:ba:45:10:d0:0a:
52:a4:ad:a6:f6:f6:11:23:ce:e4:45:e1:01:69:da:
f0:a1:e9:9a:79:0a:97:b8:99:4a:0e:82:1e:b8:f7:
e4:06:e0:35:1e:cf:c1:ac:ed:89:92:c5:a7:74:0c:
f3:c7:49:39:22:3b:65:33:55:ed:58:c3:8e:82:d3:
6a:03:6a:f8:15:dc:9a:df:df:de:d7:f9:13:98:51:
d6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:23:6F:D6:96:0A:02:7D:38:DD:43:F2:D6:02:CA:3A:2F:65:80:F6
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:df:5d:e9:3c:f5:70:08:5f:3e:fe:1a:c3:7c:3a:7b:42:11:
31:ea:08:57:29:a3:a5:4f:b9:2f:fb:10:6a:ec:26:ea:b8:4b:
44:0f:c4:d7:30:37:a8:bd:a2:b6:2a:94:6f:2b:5e:f8:e9:96:
e6:e1:d7:57:7e:f3:58:ce:62:c7:57:c7:b4:20:77:51:e9:8f:
73:19:ab:33:08:49:17:22:b5:2f:13:ee:aa:a9:75:3b:36:a0:
7c:ab:04:ea:24:99:c7:b6:ce:2c:fd:e6:94:31:6b:cf:6a:b6:
f7:52:74:ee:0e:45:76:4c:57:36:62:5f:98:b3:7e:27:f1:5e:
0a:c0:36:2c:86:f5:88:a2:48:4b:95:8a:0e:1c:12:bd:ad:e5:
2d:8a:9e:1b:b8:37:1f:49:e0:21:6b:76:76:9e:84:51:3e:2f:
21:9b:9d:f3:2b:31:17:b1:9c:5c:95:d6:79:b7:ca:7b:49:44:
76:33:f0:6d:45:f2:4c:cc:95:53:d1:2f:1b:b4:c5:6c:64:94:
f4:b5:7b:41:8b:83:5a:e8:2b:1b:6f:cd:c0:21:5a:56:38:45:
99:6b:04:9f:25:a4:3a:82:83:a0:b3:9a:b1:d0:ee:28:78:27:
85:ce:6d:b4:c8:1e:2a:61:4a:9f:c8:8a:20:e6:be:f7:94:de:
13:28:bc:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdqBhUubrkvelppcso+D983MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4
MTNjNWYwHhcNMjUwNjEzMTYwMTEyWhcNMjUwNjE0MTYwMTEyWjAzMTEwLwYDVQQD
EyhmMjIzNmZkNjk2MGEwMjdkMzhkZDQzZjJkNjAyY2EzYTJmNjU4MGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0v0PLzFoahMMl0Pr/m1Uv28XIGgB
1Y7TZRR6F+4YmdYqxQRX7mqTkwpJLuYfyo1jPFzdLj+PtlW5bzkLuiGm4WVe3ZHo
q0xicuWghdaj/OTxqbFPj/zII0c6Rev1dzO6t/eWBzO346oHFKuZcvWHyTCxodCC
ReQgC9O1IngEQOm4P5r1aQTAqF5g9ntn/f6NXcwIcM1yNllKGH1JGx4wQ98q5Lzt
c6JY5Gu5vxt5ukUQ0ApSpK2m9vYRI87kReEBadrwoemaeQqXuJlKDoIeuPfkBuA1
Hs/BrO2JksWndAzzx0k5IjtlM1XtWMOOgtNqA2r4Fdya39/e1/kTmFHWKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPIjb9aWCgJ9ON1D8tYCyjovZYD2MB8GA1UdIwQY
MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt
ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli
LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATt9d6Tz1
cAhfPv4aw3w6e0IRMeoIVymjpU+5L/sQauwm6rhLRA/E1zA3qL2itiqUbyte+OmW
5uHXV37zWM5ix1fHtCB3UemPcxmrMwhJFyK1LxPuqql1OzagfKsE6iSZx7bOLP3m
lDFrz2q291J07g5FdkxXNmJfmLN+J/FeCsA2LIb1iKJIS5WKDhwSva3lLYqeG7g3
H0ngIWt2dp6EUT4vIZud8ysxF7GcXJXWebfKe0lEdjPwbUXyTMyVU9EvG7TFbGSU
9LV7QYuDWugrG2/NwCFaVjhFmWsEnyWkOoKDoLOasdDuKHgnhc5ttMgeKmFKn8iK
IOa+95TeEyi8Gg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 21:07:13 2025 by rpki-client