Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
File: 3dya0lC4XNOZSUZbZoGy8d8U1qM.mft (raw, json)
Hash identifier: xPN4H8a43Fpelfkm0MEzqaqc0xz/k6/EBx1hz9sptk4=
Subject key identifier: 48:DA:E9:E8:B4:0D:91:09:95:D9:3B:C8:AD:1A:41:24:2B:6B:88:66
Authority key identifier: DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
Certificate issuer: /CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Certificate serial: 01965200198C7BA00E7760A5AE6452EAB372
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
Manifest number: 03E2
Signing time: Sun 20 Apr 2025 07:01:00 +0000
Manifest this update: Sun 20 Apr 2025 07:01:00 +0000
Manifest next update: Mon 21 Apr 2025 07:01:00 +0000
Files and hashes: 1: 3dya0lC4XNOZSUZbZoGy8d8U1qM.crl (hash: mhePUwznnarvc5cWMTIAsjWr/WxctdUFkkBuNuybWjM=)
2: dA9DZPAABtlejc0G0adjQxYBv5c.roa (hash: 3UVeFl3N3ODI+QVLphkmL5y9dyL4Gw+YagDr/4SW4gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:00:19:8c:7b:a0:0e:77:60:a5:ae:64:52:ea:b3:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Validity
Not Before: Apr 20 07:01:00 2025 GMT
Not After : Apr 21 07:01:00 2025 GMT
Subject: CN=48dae9e8b40d910995d93bc8ad1a41242b6b8866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e3:09:56:7a:8c:87:d7:56:77:bd:ae:b2:34:
4e:52:c5:ef:47:48:00:64:0b:c1:20:02:6f:43:9a:
d1:6a:32:e6:88:42:b4:b6:66:21:76:24:ef:9c:0a:
00:24:03:c4:91:f8:1b:55:ba:64:02:a4:e5:5c:46:
03:91:a9:d1:15:b3:0c:47:39:b3:89:6a:2a:c8:9f:
72:b6:90:3e:16:61:39:d5:0f:1d:45:33:13:5a:7c:
a4:c6:48:db:b3:09:3a:66:e6:99:f8:5a:b2:81:ab:
21:a1:8a:5b:6a:a7:78:d4:f9:73:5c:8a:e8:8c:fb:
0a:87:2e:db:a1:ed:8e:8a:3b:95:c4:f8:1c:b8:b1:
69:a0:6a:ef:a9:e5:00:a8:63:f7:f5:e7:e1:4d:96:
03:1c:e0:e6:30:cb:0a:db:38:17:75:08:1b:1d:70:
b6:83:59:74:1b:04:cd:6a:23:f0:f6:f3:cc:5f:fa:
ae:53:87:71:06:5d:c8:b9:e2:9f:fb:d2:a3:d0:a9:
1b:b2:ce:6c:2f:6a:f9:79:9d:4c:df:60:b6:2a:7e:
12:cf:fc:9f:e9:90:f3:18:06:a3:ac:1a:7a:e7:87:
12:ec:c1:f6:53:58:aa:45:d2:62:11:2f:f6:00:3c:
99:1b:bb:b4:74:57:f1:f6:84:bd:ec:f6:d7:47:2a:
64:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DA:E9:E8:B4:0D:91:09:95:D9:3B:C8:AD:1A:41:24:2B:6B:88:66
X509v3 Authority Key Identifier:
keyid:DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:81:f8:51:75:fe:54:18:53:69:fb:3f:b7:b1:40:6c:b7:0f:
2b:33:6a:9c:56:10:05:d5:0b:b3:d9:aa:22:89:6f:58:ea:4d:
2c:2e:03:b4:04:c3:09:09:42:55:91:fe:db:d8:d4:80:e2:8e:
b8:0a:c7:01:85:ce:0e:02:f2:20:9b:b0:84:e5:88:30:c4:4f:
f0:e6:c5:c4:74:08:d6:f8:52:ac:07:0d:7f:07:fa:fc:90:fe:
e5:fa:8f:98:87:83:bc:15:f2:b0:c1:41:ac:5a:51:8f:53:e0:
cc:bc:d7:57:26:21:07:7c:f8:b9:73:3e:7d:05:2f:0d:83:a5:
ec:7d:fc:d0:70:d4:a7:63:37:fd:4d:fb:97:80:f9:bf:43:2c:
2a:f4:ce:2c:79:9e:e9:35:83:7f:f6:a4:88:59:ca:3c:10:ce:
6a:b9:66:59:9a:b3:8b:df:50:9b:fe:32:9d:83:ab:1e:d8:a0:
83:eb:36:a9:1b:9b:0d:d2:49:f4:38:eb:29:e6:41:8a:74:ae:
bb:27:f8:b8:b1:7d:82:b9:76:9c:61:32:24:12:87:96:d7:ae:
f9:45:7c:56:5f:f0:6c:31:c5:c2:ac:12:e8:80:30:74:54:b9:
f7:62:f1:7f:43:ea:96:db:32:32:1d:28:dc:ef:e5:65:02:97:
f0:19:46:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZSABmMe6AOd2ClrmRS6rNyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZGM5YWQyNTBiODVjZDM5OTQ5NDY1YjY2ODFiMmYxZGYx
NGQ2YTMwHhcNMjUwNDIwMDcwMTAwWhcNMjUwNDIxMDcwMTAwWjAzMTEwLwYDVQQD
Eyg0OGRhZTllOGI0MGQ5MTA5OTVkOTNiYzhhZDFhNDEyNDJiNmI4ODY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+MJVnqMh9dWd72usjROUsXvR0gA
ZAvBIAJvQ5rRajLmiEK0tmYhdiTvnAoAJAPEkfgbVbpkAqTlXEYDkanRFbMMRzmz
iWoqyJ9ytpA+FmE51Q8dRTMTWnykxkjbswk6ZuaZ+FqygashoYpbaqd41PlzXIro
jPsKhy7boe2OijuVxPgcuLFpoGrvqeUAqGP39efhTZYDHODmMMsK2zgXdQgbHXC2
g1l0GwTNaiPw9vPMX/quU4dxBl3IueKf+9Kj0Kkbss5sL2r5eZ1M32C2Kn4Sz/yf
6ZDzGAajrBp654cS7MH2U1iqRdJiES/2ADyZG7u0dFfx9oS97PbXRypk6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEja6ei0DZEJldk7yK0aQSQra4hmMB8GA1UdIwQY
MBaAFN3cmtJQuFzTmUlGW2aBsvHfFNajMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2R5YTBsQzRYTk9aU1VaYlpvR3k4ZDhVMXFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81YmY5NDgtOTc3Yi00YjBlLWI4ZTct
MGQ0MzE4Y2E4YzU1LzEvM2R5YTBsQzRYTk9aU1VaYlpvR3k4ZDhVMXFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81YmY5NDgtOTc3Yi00YjBlLWI4ZTctMGQ0MzE4Y2E4YzU1
LzEvM2R5YTBsQzRYTk9aU1VaYlpvR3k4ZDhVMXFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfYH4UXX+
VBhTafs/t7FAbLcPKzNqnFYQBdULs9mqIolvWOpNLC4DtATDCQlCVZH+29jUgOKO
uArHAYXODgLyIJuwhOWIMMRP8ObFxHQI1vhSrAcNfwf6/JD+5fqPmIeDvBXysMFB
rFpRj1PgzLzXVyYhB3z4uXM+fQUvDYOl7H380HDUp2M3/U37l4D5v0MsKvTOLHme
6TWDf/akiFnKPBDOarlmWZqzi99Qm/4ynYOrHtigg+s2qRubDdJJ9DjrKeZBinSu
uyf4uLF9grl2nGEyJBKHlteu+UV8Vl/wbDHFwqwS6IAwdFS592Lxf0PqltsyMh0o
3O/lZQKX8BlGkw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:17:51 2025 by rpki-client