Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: dB2mjRt/ZA3L+fRZk1JiJT5EEh1LJyJHp54jjWGCsJk=
Subject key identifier: 09:0B:EC:B2:D5:15:00:1E:5B:D0:69:72:03:36:F5:82:1E:6E:94:E9
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 0196760C9661AB4CBAFA04DBD47C03AEF6F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0914
Signing time: Sun 27 Apr 2025 07:00:58 +0000
Manifest this update: Sun 27 Apr 2025 07:00:58 +0000
Manifest next update: Mon 28 Apr 2025 07:00:58 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: cOAmXIeKvy1EZ16tOygHfrf0VRvaKXy39oLWjcuA3+c=)
2: EiOjn6Cn36HWuMJFodH0EVbfYdc.roa (hash: prKCNtfilLl42pcGEF7Kjg7za6QhPHVZeIUhroTyVuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:96:61:ab:4c:ba:fa:04:db:d4:7c:03:ae:f6:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Apr 27 07:00:58 2025 GMT
Not After : Apr 28 07:00:58 2025 GMT
Subject: CN=090becb2d515001e5bd069720336f5821e6e94e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:81:48:9b:6e:5d:28:73:35:f5:9b:1e:43:52:
1a:54:72:c8:50:0b:66:a0:d0:47:53:89:72:e6:e0:
4c:40:41:91:0f:58:2d:71:3f:4d:fc:a4:ab:81:d8:
2e:7f:30:a9:12:d3:6c:91:71:ab:78:e2:0f:bd:ec:
89:29:53:80:f6:79:f4:96:0e:ea:43:51:d6:3d:0c:
47:80:33:b5:0c:1f:4c:3c:c3:99:8b:c7:07:4c:bb:
8b:25:b8:fe:c4:1f:bc:56:c8:f3:fe:94:94:8b:56:
65:fa:ee:bd:d2:8e:99:7f:a8:79:9e:e1:ad:b7:8a:
2d:71:64:21:fd:1c:7c:88:23:96:86:66:93:ae:c4:
49:ba:16:ce:c5:5a:cb:c4:5c:8d:80:e1:3a:bb:82:
21:d8:d8:09:0d:8f:cc:a0:c5:3f:c0:15:b8:c5:13:
15:c9:81:d4:e9:98:31:9e:30:0e:25:57:3c:65:88:
fe:1b:32:81:c3:28:70:ba:75:c9:ce:b9:c7:2f:a5:
ed:3c:12:f4:9b:c7:cf:a2:c3:c8:4c:17:02:4e:bc:
38:04:1c:5b:d8:f2:35:95:ca:5a:ac:3f:c2:b1:e6:
ee:03:31:d6:ad:8b:de:1e:80:c1:86:bb:9c:f3:e0:
ba:2e:84:97:8b:c8:3a:ce:98:4b:37:c4:f8:fd:bd:
70:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:0B:EC:B2:D5:15:00:1E:5B:D0:69:72:03:36:F5:82:1E:6E:94:E9
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:8f:a4:bd:a0:2e:43:2f:12:f2:21:9b:10:6e:55:85:7b:37:
cd:d4:96:2a:74:d9:c4:99:99:9d:ff:8f:37:01:21:00:f4:d0:
b1:c9:af:4a:0b:c4:54:7b:2e:42:21:7e:70:52:4c:8e:0d:db:
d1:c6:99:89:c9:95:7b:c1:3c:f5:12:7c:ba:2b:69:02:8e:73:
ec:0e:ea:da:b8:c8:80:61:4d:2a:cd:1f:a4:58:ba:71:58:09:
8a:a1:f2:58:0e:78:c3:70:f6:e0:32:4b:7b:f2:30:3b:e6:cc:
6e:a3:b5:3f:72:ed:83:12:ed:ad:e3:84:89:93:04:ce:f6:77:
1e:1b:4e:41:49:85:f9:a3:f9:38:40:4f:58:21:b9:43:1f:58:
78:88:b0:33:69:f5:01:fb:42:12:3d:ae:9f:a7:a3:9e:a4:f0:
64:ba:89:18:1f:2b:d4:5c:76:23:6a:85:a0:9f:12:db:03:50:
7a:92:26:91:2f:f9:8b:dd:ba:28:ce:10:d9:a4:4e:cc:e3:a8:
7e:dd:4f:37:a4:ee:d0:cc:d6:46:ae:ed:54:de:1e:19:e5:25:
68:bc:f0:be:ba:69:c6:f3:21:c1:6c:31:cb:a8:22:20:b2:ae:
b3:28:8f:ca:3f:49:fb:5b:10:b5:38:34:bd:a3:86:e9:f9:15:
a3:e9:71:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2DJZhq0y6+gTb1HwDrvbzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMGI1OWZiNjgxNTFlMjFkYzk5ZDYyZmFmMDM1ODliZTQx
ZmJlYTIwHhcNMjUwNDI3MDcwMDU4WhcNMjUwNDI4MDcwMDU4WjAzMTEwLwYDVQQD
EygwOTBiZWNiMmQ1MTUwMDFlNWJkMDY5NzIwMzM2ZjU4MjFlNmU5NGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIFIm25dKHM19ZseQ1IaVHLIUAtm
oNBHU4ly5uBMQEGRD1gtcT9N/KSrgdgufzCpEtNskXGreOIPveyJKVOA9nn0lg7q
Q1HWPQxHgDO1DB9MPMOZi8cHTLuLJbj+xB+8Vsjz/pSUi1Zl+u690o6Zf6h5nuGt
t4otcWQh/Rx8iCOWhmaTrsRJuhbOxVrLxFyNgOE6u4Ih2NgJDY/MoMU/wBW4xRMV
yYHU6ZgxnjAOJVc8ZYj+GzKBwyhwunXJzrnHL6XtPBL0m8fPosPITBcCTrw4BBxb
2PI1lcparD/CsebuAzHWrYveHoDBhruc8+C6LoSXi8g6zphLN8T4/b1wEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAkL7LLVFQAeW9BpcgM29YIebpTpMB8GA1UdIwQY
MBaAFN4LWftoFR4h3JnWL68DWJvkH76iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2d0Wi0yZ1ZIaUhjbWRZdnJ3TlltLVFmdnFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi85YWQ1MDgtYmZjMS00YjhhLWJhZmMt
Y2QwMjQ3ODhlZDNjLzEvM2d0Wi0yZ1ZIaUhjbWRZdnJ3TlltLVFmdnFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi85YWQ1MDgtYmZjMS00YjhhLWJhZmMtY2QwMjQ3ODhlZDNj
LzEvM2d0Wi0yZ1ZIaUhjbWRZdnJ3TlltLVFmdnFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtY+kvaAu
Qy8S8iGbEG5VhXs3zdSWKnTZxJmZnf+PNwEhAPTQscmvSgvEVHsuQiF+cFJMjg3b
0caZicmVe8E89RJ8uitpAo5z7A7q2rjIgGFNKs0fpFi6cVgJiqHyWA54w3D24DJL
e/IwO+bMbqO1P3LtgxLtreOEiZMEzvZ3HhtOQUmF+aP5OEBPWCG5Qx9YeIiwM2n1
AftCEj2un6ejnqTwZLqJGB8r1Fx2I2qFoJ8S2wNQepImkS/5i926KM4Q2aROzOOo
ft1PN6Tu0MzWRq7tVN4eGeUlaLzwvrppxvMhwWwxy6giILKusyiPyj9J+1sQtTg0
vaOG6fkVo+lx5w==
-----END CERTIFICATE-----
Generated at Sun Apr 27 15:20:31 2025 by rpki-client