Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
File: 3o44GHrnDLx77WlXWfDgMpn7swI.mft (raw, json)
Hash identifier: yEIsT1/EmORQmG9EVjScucJHPKOKC35+wbsjcsoH1dI=
Subject key identifier: 78:51:60:14:AE:DA:AC:8D:32:31:FA:B0:A6:9A:3D:83:18:3B:B1:DF
Authority key identifier: DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
Certificate issuer: /CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Certificate serial: 01976D7475940280AE0230D83041254E03C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
Manifest number: 0217
Signing time: Sat 14 Jun 2025 08:00:38 +0000
Manifest this update: Sat 14 Jun 2025 08:00:38 +0000
Manifest next update: Sun 15 Jun 2025 08:00:38 +0000
Files and hashes: 1: 3o44GHrnDLx77WlXWfDgMpn7swI.crl (hash: N2yUHarY2XxGYMWxDp/kyp0QehNew+y5Mr+e+KwiDhg=)
2: wSO8Qf5_v1p-oNDifbsTI9tUaPY.roa (hash: t8VFb4R1YuauyoB16s9G5smfDaNXuP879i5idHgDRZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:74:75:94:02:80:ae:02:30:d8:30:41:25:4e:03:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Validity
Not Before: Jun 14 08:00:38 2025 GMT
Not After : Jun 15 08:00:38 2025 GMT
Subject: CN=78516014aedaac8d3231fab0a69a3d83183bb1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:fa:76:b7:1f:7b:27:ad:2e:53:75:4d:4d:6c:
95:44:06:12:5c:52:c4:96:f0:c0:7e:b1:3a:be:e2:
63:c2:13:66:66:ef:45:c1:3a:de:ee:bd:ae:64:3d:
48:fa:21:14:67:f1:b7:24:57:3a:f4:36:1e:ae:8b:
ca:b1:75:55:31:fd:83:c1:73:5e:f3:3e:1f:d8:73:
5b:38:08:8b:04:a9:2d:ce:72:54:59:6e:1b:cb:cc:
a6:33:f8:0f:a1:2f:30:bf:9a:22:f1:aa:4c:3f:76:
77:24:fe:62:77:f5:d5:ef:1a:6a:da:58:57:08:ce:
72:ae:ad:44:e6:d3:a2:07:9a:4e:ed:0f:b0:85:df:
99:2f:b5:4a:45:6c:ec:69:ff:e2:d5:a8:09:d6:6d:
29:c1:15:f3:4c:92:ff:53:fc:42:cb:39:0a:fc:29:
7d:cb:ba:0a:e2:1c:82:d8:11:c7:65:a2:01:53:b3:
98:01:fd:86:b6:b1:59:ed:83:8a:db:92:f4:25:db:
96:4d:0c:6b:a7:10:fd:5c:cc:3f:e5:02:af:51:d5:
84:4e:43:37:a4:58:0b:53:11:69:83:3e:44:56:52:
85:b2:78:17:8e:25:08:4d:7a:33:f6:70:34:12:95:
cf:29:e7:52:65:a6:41:aa:14:15:12:f7:cf:e3:4b:
e9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:51:60:14:AE:DA:AC:8D:32:31:FA:B0:A6:9A:3D:83:18:3B:B1:DF
X509v3 Authority Key Identifier:
keyid:DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:85:ff:a0:f9:52:68:2d:a9:71:c7:a3:59:ad:11:92:55:94:
33:b8:84:dd:43:f7:05:02:84:05:a1:09:2e:dc:79:94:60:6f:
cc:c8:fe:44:2f:22:1c:16:40:9c:c7:f9:9a:0a:29:63:3d:e3:
06:5b:4e:8f:95:ff:b0:63:75:f6:88:a5:35:1b:95:a5:1a:aa:
4a:f0:7e:d7:9f:69:0f:98:b3:61:46:76:8f:f6:8d:13:26:b9:
02:31:79:32:d8:97:d4:15:6d:38:42:47:7a:ca:45:c5:6e:a7:
f1:1a:1e:db:f9:a1:f6:92:ed:a2:65:99:30:60:91:3c:5f:17:
60:f0:64:82:83:60:80:8e:83:a8:ee:29:b9:90:7d:f4:b0:66:
96:cc:28:af:07:1f:88:ef:67:b4:23:c2:53:d1:ff:aa:d0:3e:
a6:44:95:0a:7d:3b:59:c5:83:90:a2:96:ef:14:c6:29:95:1f:
86:dd:8a:3e:67:00:c6:8a:52:ba:67:6e:6a:04:31:8d:1f:63:
cd:2b:c6:de:6f:78:71:de:b4:71:8f:33:7d:8a:40:c5:2f:53:
50:c5:0d:70:4b:2c:69:94:36:2a:b9:dd:35:3c:25:4b:ba:40:
92:21:ab:4e:db:ac:7b:06:c8:01:3f:02:9a:61:fe:c3:02:7c:
b1:ab:5b:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtdHWUAoCuAjDYMEElTgPBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlOGUzODE4N2FlNzBjYmM3YmVkNjk1NzU5ZjBlMDMyOTlm
YmIzMDIwHhcNMjUwNjE0MDgwMDM4WhcNMjUwNjE1MDgwMDM4WjAzMTEwLwYDVQQD
Eyg3ODUxNjAxNGFlZGFhYzhkMzIzMWZhYjBhNjlhM2Q4MzE4M2JiMWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+Pp2tx97J60uU3VNTWyVRAYSXFLE
lvDAfrE6vuJjwhNmZu9FwTre7r2uZD1I+iEUZ/G3JFc69DYerovKsXVVMf2DwXNe
8z4f2HNbOAiLBKktznJUWW4by8ymM/gPoS8wv5oi8apMP3Z3JP5id/XV7xpq2lhX
CM5yrq1E5tOiB5pO7Q+whd+ZL7VKRWzsaf/i1agJ1m0pwRXzTJL/U/xCyzkK/Cl9
y7oK4hyC2BHHZaIBU7OYAf2GtrFZ7YOK25L0JduWTQxrpxD9XMw/5QKvUdWETkM3
pFgLUxFpgz5EVlKFsngXjiUITXoz9nA0EpXPKedSZaZBqhQVEvfP40vpYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHhRYBSu2qyNMjH6sKaaPYMYO7HfMB8GA1UdIwQY
MBaAFN6OOBh65wy8e+1pV1nw4DKZ+7MCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM280NEdIcm5ETHg3N1dsWFdmRGdNcG43c3dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS81ODBjMTEtMzkxMy00NDc5LWJlYTMt
NWIxZjQ4YjNlMjE0LzEvM280NEdIcm5ETHg3N1dsWFdmRGdNcG43c3dJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS81ODBjMTEtMzkxMy00NDc5LWJlYTMtNWIxZjQ4YjNlMjE0
LzEvM280NEdIcm5ETHg3N1dsWFdmRGdNcG43c3dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUYX/oPlS
aC2pccejWa0RklWUM7iE3UP3BQKEBaEJLtx5lGBvzMj+RC8iHBZAnMf5mgopYz3j
BltOj5X/sGN19oilNRuVpRqqSvB+159pD5izYUZ2j/aNEya5AjF5MtiX1BVtOEJH
espFxW6n8Roe2/mh9pLtomWZMGCRPF8XYPBkgoNggI6DqO4puZB99LBmlsworwcf
iO9ntCPCU9H/qtA+pkSVCn07WcWDkKKW7xTGKZUfht2KPmcAxopSumduagQxjR9j
zSvG3m94cd60cY8zfYpAxS9TUMUNcEssaZQ2KrndNTwlS7pAkiGrTtusewbIAT8C
mmH+wwJ8satbfg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 10:31:13 2025 by rpki-client