Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
File: 3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft (raw, json)
Hash identifier: 9fe5P4T8JIxZBpujeJyW9XB9/jTrAR22z6N2hPqmNsk=
Subject key identifier: 66:62:2A:5A:76:FB:EF:BD:11:E0:BD:87:FB:31:09:BE:91:F4:F3:6A
Authority key identifier: DD:0B:83:6F:D7:00:3F:83:16:04:A0:3F:23:44:7A:7F:2F:49:07:B3
Certificate issuer: /CN=dd0b836fd7003f831604a03f23447a7f2f4907b3
Certificate serial: 01976D3D3894B3D139CAFC0F709D748A3652
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QuDb9cAP4MWBKA_I0R6fy9JB7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
Manifest number: 06B5
Signing time: Sat 14 Jun 2025 07:00:18 +0000
Manifest this update: Sat 14 Jun 2025 07:00:18 +0000
Manifest next update: Sun 15 Jun 2025 07:00:18 +0000
Files and hashes: 1: 3QuDb9cAP4MWBKA_I0R6fy9JB7M.crl (hash: e96k2dKnZ34p/XvlJOV3213WAYLwdpBLxEpvA2/b9JQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3QuDb9cAP4MWBKA_I0R6fy9JB7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:38:94:b3:d1:39:ca:fc:0f:70:9d:74:8a:36:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd0b836fd7003f831604a03f23447a7f2f4907b3
Validity
Not Before: Jun 14 07:00:18 2025 GMT
Not After : Jun 15 07:00:18 2025 GMT
Subject: CN=66622a5a76fbefbd11e0bd87fb3109be91f4f36a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:98:5e:16:5a:17:d9:81:4f:26:4b:f8:aa:5f:
07:9a:6b:cb:26:04:d3:aa:9e:cf:d0:ab:20:05:3d:
a6:b8:b3:4d:65:21:b0:b4:ce:47:0e:f9:b7:e7:18:
b5:b6:c0:2c:bc:92:67:fb:10:9b:bb:b6:04:bb:63:
04:f9:26:69:56:ef:81:89:71:6d:3a:89:60:48:ae:
3e:b4:b7:b8:04:97:7f:2c:73:0e:fa:2a:57:62:86:
1a:cc:59:31:91:58:e8:01:a2:6e:a5:6c:a1:d6:d3:
81:e5:fd:2a:5c:00:82:af:77:50:5a:60:e5:33:01:
2a:d6:ae:3d:18:ea:39:bf:bb:e6:4e:02:a2:5f:38:
32:bb:97:52:09:9c:ee:66:32:3b:5e:5f:22:b7:f1:
a6:65:9b:65:b4:5a:12:25:b5:70:90:c4:8c:93:05:
e6:de:70:40:84:ee:2b:b2:43:6f:47:8e:65:f2:ab:
ed:f5:e8:46:69:45:28:1d:dd:74:af:90:ff:60:c6:
a4:b2:8e:cf:4e:02:9a:f4:e3:4e:1e:62:bc:a8:0a:
e6:ed:fa:3f:9c:33:87:2d:8b:37:a7:eb:fc:e2:0c:
e1:31:ca:03:48:99:ff:f4:a0:0d:78:6f:1c:1e:4f:
85:da:58:bf:0a:13:cf:23:16:2a:01:ed:f2:bd:f9:
58:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:62:2A:5A:76:FB:EF:BD:11:E0:BD:87:FB:31:09:BE:91:F4:F3:6A
X509v3 Authority Key Identifier:
keyid:DD:0B:83:6F:D7:00:3F:83:16:04:A0:3F:23:44:7A:7F:2F:49:07:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QuDb9cAP4MWBKA_I0R6fy9JB7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:63:dc:82:2f:ab:5a:18:1d:41:db:79:b1:9c:07:2c:ba:42:
f3:94:95:70:5f:d0:45:8d:a4:28:41:34:23:10:65:a0:88:db:
a9:76:61:00:9c:11:38:db:68:3f:cd:5c:e0:0a:dd:20:ea:5c:
8a:69:c6:a7:69:9b:b7:f7:7b:78:5f:9e:f1:4f:de:54:b3:61:
b3:60:71:cf:8f:2b:c4:46:12:b6:8c:d2:4a:39:60:f0:94:8a:
27:26:28:f4:25:35:55:ed:bb:89:46:03:2d:ce:98:f2:14:c6:
da:ba:37:1d:a4:2c:eb:00:c4:fa:d1:75:9e:c7:72:33:80:8c:
1a:f5:4e:ba:12:3d:1b:d5:d3:02:8d:55:2d:5d:1e:f1:53:5d:
7b:3a:4b:d6:65:55:ef:73:d3:fc:f6:cb:ed:a3:74:42:f8:3c:
af:10:b9:8c:fc:22:1b:6d:19:bc:7a:c5:6c:23:c4:8a:cb:09:
62:68:6f:98:1a:a5:76:a6:13:0b:8c:ae:33:a0:1b:b5:09:6c:
d2:30:e6:19:8c:88:4c:cf:98:7e:3a:07:7d:34:0b:2e:6c:c1:
a4:d2:02:7f:bf:dc:ba:5a:61:6e:b6:37:6b:b9:ff:01:cd:6a:
8b:9b:1f:a3:d2:14:56:c2:1c:7b:21:43:31:cb:ae:43:b2:5e:
ed:23:69:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtPTiUs9E5yvwPcJ10ijZSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMGI4MzZmZDcwMDNmODMxNjA0YTAzZjIzNDQ3YTdmMmY0
OTA3YjMwHhcNMjUwNjE0MDcwMDE4WhcNMjUwNjE1MDcwMDE4WjAzMTEwLwYDVQQD
Eyg2NjYyMmE1YTc2ZmJlZmJkMTFlMGJkODdmYjMxMDliZTkxZjRmMzZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8pheFloX2YFPJkv4ql8HmmvLJgTT
qp7P0KsgBT2muLNNZSGwtM5HDvm35xi1tsAsvJJn+xCbu7YEu2ME+SZpVu+BiXFt
OolgSK4+tLe4BJd/LHMO+ipXYoYazFkxkVjoAaJupWyh1tOB5f0qXACCr3dQWmDl
MwEq1q49GOo5v7vmTgKiXzgyu5dSCZzuZjI7Xl8it/GmZZtltFoSJbVwkMSMkwXm
3nBAhO4rskNvR45l8qvt9ehGaUUoHd10r5D/YMakso7PTgKa9ONOHmK8qArm7fo/
nDOHLYs3p+v84gzhMcoDSJn/9KANeG8cHk+F2li/ChPPIxYqAe3yvflYAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGZiKlp2+++9EeC9h/sxCb6R9PNqMB8GA1UdIwQY
MBaAFN0Lg2/XAD+DFgSgPyNEen8vSQezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1F1RGI5Y0FQNE1XQktBX0kwUjZmeTlKQjdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS85NjNjMmMtMDk5My00NjIxLThiMjAt
ZGEwMzIzNTNiNzlmLzEvM1F1RGI5Y0FQNE1XQktBX0kwUjZmeTlKQjdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS85NjNjMmMtMDk5My00NjIxLThiMjAtZGEwMzIzNTNiNzlm
LzEvM1F1RGI5Y0FQNE1XQktBX0kwUjZmeTlKQjdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd2Pcgi+r
WhgdQdt5sZwHLLpC85SVcF/QRY2kKEE0IxBloIjbqXZhAJwRONtoP81c4ArdIOpc
imnGp2mbt/d7eF+e8U/eVLNhs2Bxz48rxEYStozSSjlg8JSKJyYo9CU1Ve27iUYD
Lc6Y8hTG2ro3HaQs6wDE+tF1nsdyM4CMGvVOuhI9G9XTAo1VLV0e8VNdezpL1mVV
73PT/PbL7aN0Qvg8rxC5jPwiG20ZvHrFbCPEissJYmhvmBqldqYTC4yuM6AbtQls
0jDmGYyITM+YfjoHfTQLLmzBpNICf7/culphbrY3a7n/Ac1qi5sfo9IUVsIceyFD
McuuQ7Je7SNpdw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:55:50 2025 by rpki-client