Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
File: 3frtS0AyNuLKi-twkcug4GpUPQo.mft (raw, json)
Hash identifier: ayKydAePtqBm2rh5h9WER0CCfE7TZVl2sNYS9CCyNlY=
Subject key identifier: 53:67:E1:E4:0A:BD:16:A4:7B:34:3E:A7:A5:CA:5C:B7:A6:8F:02:41
Authority key identifier: DD:FA:ED:4B:40:32:36:E2:CA:8B:EB:70:91:CB:A0:E0:6A:54:3D:0A
Certificate issuer: /CN=ddfaed4b403236e2ca8beb7091cba0e06a543d0a
Certificate serial: 01974A7A6885DB10AB2CFCE1722E760FEED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3frtS0AyNuLKi-twkcug4GpUPQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
Manifest number: C0
Signing time: Sat 07 Jun 2025 13:00:25 +0000
Manifest this update: Sat 07 Jun 2025 13:00:25 +0000
Manifest next update: Sun 08 Jun 2025 13:00:25 +0000
Files and hashes: 1: 3frtS0AyNuLKi-twkcug4GpUPQo.crl (hash: ZBBwDe8b5+K/bvQ+n1Cxrw+TGNN+VbN0kJjVhvKJWxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3frtS0AyNuLKi-twkcug4GpUPQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:68:85:db:10:ab:2c:fc:e1:72:2e:76:0f:ee:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfaed4b403236e2ca8beb7091cba0e06a543d0a
Validity
Not Before: Jun 7 13:00:25 2025 GMT
Not After : Jun 8 13:00:25 2025 GMT
Subject: CN=5367e1e40abd16a47b343ea7a5ca5cb7a68f0241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:26:29:f6:b3:7a:00:52:dc:ff:84:58:03:00:
67:06:27:1e:60:3b:cc:6c:57:95:1f:51:fd:80:7c:
ce:78:49:76:47:fc:42:56:c5:02:1c:c9:d9:2b:e1:
54:b9:e4:01:d1:65:d7:f0:b1:d7:0a:a2:fd:d5:2b:
7f:2c:50:1c:fd:16:4f:2b:11:c5:81:bd:1b:fa:38:
32:e6:e4:ba:c1:df:a2:31:b8:94:ab:73:9a:60:ea:
b6:24:e9:57:48:e7:09:a4:8c:24:2e:d7:3c:cf:e4:
6c:e4:01:7c:f3:f4:ce:a9:62:56:b7:3b:67:4d:51:
5b:93:80:b4:15:cb:c2:5a:c6:6f:2d:b8:02:94:f1:
6e:a9:54:78:2b:e9:fa:08:13:e2:f2:22:fb:eb:27:
e6:a9:30:61:cd:20:08:ba:18:1b:c3:20:0e:0f:3e:
43:94:f6:ff:8f:56:18:4b:72:11:35:df:d5:9b:38:
85:44:a3:e3:5b:54:b0:00:ba:ca:9c:40:4e:08:45:
07:68:d9:bd:f6:c6:e5:f1:f9:ea:b5:9e:66:ab:20:
5d:b0:3a:02:e5:19:e8:88:96:5c:99:41:20:f4:65:
4e:40:fb:52:cf:73:44:c3:f4:25:b3:36:a4:03:8a:
05:91:dc:f9:e2:c5:db:23:2e:29:60:ad:41:bd:e1:
a0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:67:E1:E4:0A:BD:16:A4:7B:34:3E:A7:A5:CA:5C:B7:A6:8F:02:41
X509v3 Authority Key Identifier:
keyid:DD:FA:ED:4B:40:32:36:E2:CA:8B:EB:70:91:CB:A0:E0:6A:54:3D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3frtS0AyNuLKi-twkcug4GpUPQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:a7:43:a7:39:b6:65:90:ae:d9:08:be:d8:8f:41:73:50:9c:
fb:6c:2b:a0:a7:67:9f:b4:33:74:9d:d5:32:b5:e5:7a:de:d9:
fb:25:a1:0a:91:39:ea:69:9c:26:ce:e4:38:50:4f:84:72:7b:
e4:35:be:ef:c4:c1:88:5d:db:84:ee:97:c8:03:53:17:bb:7f:
5f:42:65:0b:35:43:66:c4:a3:4b:64:be:8c:a6:07:68:c5:d9:
9a:62:50:cb:df:ce:6f:cc:94:00:54:00:88:bb:cd:df:80:36:
6b:c5:71:85:34:c3:2f:62:ac:5e:f6:41:0d:ea:ee:e9:30:bc:
99:ae:78:68:1b:cb:0a:86:77:db:ae:9f:ef:75:6d:17:c7:3c:
a5:ec:a9:bd:f8:b8:57:ae:ee:ed:c0:c7:dd:29:63:56:94:87:
6e:8e:1f:6e:ab:2d:3e:37:ca:43:2d:fe:ea:7f:32:05:e8:45:
5d:97:8e:f0:06:c4:c0:ba:60:8c:51:64:dd:d8:65:07:44:63:
2f:59:b6:59:bc:0f:7e:49:56:f9:4b:ea:b6:84:6d:33:5e:61:
1c:fc:c4:72:e6:88:6c:97:d6:fd:16:e4:bd:da:f1:97:50:a4:
b5:42:c7:ce:d4:78:8c:f0:ea:cc:92:13:ba:20:b5:b7:8e:fd:
04:82:52:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKemiF2xCrLPzhci52D+7QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZmFlZDRiNDAzMjM2ZTJjYThiZWI3MDkxY2JhMGUwNmE1
NDNkMGEwHhcNMjUwNjA3MTMwMDI1WhcNMjUwNjA4MTMwMDI1WjAzMTEwLwYDVQQD
Eyg1MzY3ZTFlNDBhYmQxNmE0N2IzNDNlYTdhNWNhNWNiN2E2OGYwMjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9SYp9rN6AFLc/4RYAwBnBiceYDvM
bFeVH1H9gHzOeEl2R/xCVsUCHMnZK+FUueQB0WXX8LHXCqL91St/LFAc/RZPKxHF
gb0b+jgy5uS6wd+iMbiUq3OaYOq2JOlXSOcJpIwkLtc8z+Rs5AF88/TOqWJWtztn
TVFbk4C0FcvCWsZvLbgClPFuqVR4K+n6CBPi8iL76yfmqTBhzSAIuhgbwyAODz5D
lPb/j1YYS3IRNd/VmziFRKPjW1SwALrKnEBOCEUHaNm99sbl8fnqtZ5mqyBdsDoC
5RnoiJZcmUEg9GVOQPtSz3NEw/QlszakA4oFkdz54sXbIy4pYK1BveGgrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFNn4eQKvRakezQ+p6XKXLemjwJBMB8GA1UdIwQY
MBaAFN367UtAMjbiyovrcJHLoOBqVD0KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZydFMwQXlOdUxLaS10d2tjdWc0R3BVUFFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jNTY5MTctMmNjMy00MDY3LTg1MGEt
YjkzN2QxMjA1YWIxLzEvM2ZydFMwQXlOdUxLaS10d2tjdWc0R3BVUFFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS9jNTY5MTctMmNjMy00MDY3LTg1MGEtYjkzN2QxMjA1YWIx
LzEvM2ZydFMwQXlOdUxLaS10d2tjdWc0R3BVUFFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOqdDpzm2
ZZCu2Qi+2I9Bc1Cc+2wroKdnn7QzdJ3VMrXlet7Z+yWhCpE56mmcJs7kOFBPhHJ7
5DW+78TBiF3bhO6XyANTF7t/X0JlCzVDZsSjS2S+jKYHaMXZmmJQy9/Ob8yUAFQA
iLvN34A2a8VxhTTDL2KsXvZBDeru6TC8ma54aBvLCoZ3266f73VtF8c8peypvfi4
V67u7cDH3SljVpSHbo4fbqstPjfKQy3+6n8yBehFXZeO8AbEwLpgjFFk3dhlB0Rj
L1m2WbwPfklW+UvqtoRtM15hHPzEcuaIbJfW/Rbkvdrxl1CktULHztR4jPDqzJIT
uiC1t479BIJSlg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:01:35 2025 by rpki-client