Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
File: 3ohLjkYvPsE6QCTWaamdlK8FzbI.mft (raw, json)
Hash identifier: a9+ubG1bIJTC4Ug2gih2r1blw2EjzLUpiEEbRLs8Ki0=
Subject key identifier: 00:D0:59:CB:37:08:65:A7:E1:3E:F6:D1:16:F5:63:8A:29:35:79:E8
Authority key identifier: DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
Certificate issuer: /CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Certificate serial: 01987E2EFC59CBF45ABDE855D6020AAB7176
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
Manifest number: 06CB
Signing time: Wed 06 Aug 2025 07:01:04 +0000
Manifest this update: Wed 06 Aug 2025 07:01:04 +0000
Manifest next update: Thu 07 Aug 2025 07:01:04 +0000
Files and hashes: 1: 3ohLjkYvPsE6QCTWaamdlK8FzbI.crl (hash: 5ecGdJ2mSrCOvHPnvv9eldq4KQE/0QbiPytXHXCtjd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 07:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2e:fc:59:cb:f4:5a:bd:e8:55:d6:02:0a:ab:71:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Validity
Not Before: Aug 6 07:01:04 2025 GMT
Not After : Aug 7 07:01:04 2025 GMT
Subject: CN=00d059cb370865a7e13ef6d116f5638a293579e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:65:6e:ee:c3:85:05:82:07:43:f6:32:8b:46:
5c:84:ca:bd:48:8c:21:0b:4d:1c:56:3b:7f:1d:9a:
06:91:01:af:2e:3e:cf:8f:94:43:ea:59:10:92:31:
eb:53:28:12:a3:81:45:f3:20:3c:62:d7:f5:01:0a:
44:99:1f:2d:45:46:1b:5d:e0:75:18:b0:15:a2:ce:
b6:0f:86:cc:d3:fb:32:4a:4d:bd:45:ad:b3:2f:10:
2d:46:5f:b7:b9:3e:48:78:ed:e9:a1:fc:18:95:e6:
78:23:fa:21:e6:f5:5d:d5:33:32:fc:17:1e:95:37:
f8:7c:a0:0c:c3:58:b3:76:33:ca:5f:4b:2b:2a:33:
7c:7a:7c:35:05:94:4d:32:c3:e9:1d:17:d7:78:69:
64:44:bf:34:0c:74:1d:b1:d9:26:6f:ae:3a:49:6a:
5b:4a:b2:6e:45:87:4b:32:8e:c0:38:52:10:f7:5b:
61:76:4c:b9:95:ed:6a:8c:60:4a:c5:35:92:ca:8e:
e4:47:44:93:48:dd:e8:59:13:26:06:a4:83:40:01:
f1:59:37:5d:e5:ea:57:c8:37:62:8c:2b:a1:0e:95:
fa:1d:6f:c1:ec:fa:fa:3b:3d:9f:28:c7:6d:3c:02:
c7:30:ea:7b:2c:61:7f:eb:6e:12:5f:ae:a9:e1:7b:
b8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D0:59:CB:37:08:65:A7:E1:3E:F6:D1:16:F5:63:8A:29:35:79:E8
X509v3 Authority Key Identifier:
keyid:DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:d4:1f:aa:70:58:57:38:48:d0:a6:9a:81:12:59:d4:f6:e1:
01:15:56:da:e3:46:4a:1e:50:62:c3:ce:0e:f7:52:14:5a:cf:
7e:93:05:cb:08:96:d1:e5:b1:1f:df:22:21:0f:f0:82:66:6b:
61:64:20:48:91:f1:ae:30:ac:09:4e:dc:9c:be:f5:c7:8e:00:
f9:99:f8:5a:3e:38:81:8c:57:1a:bb:e7:23:41:16:ba:23:78:
4a:26:dc:3a:1a:1f:e4:08:4d:1c:75:c4:13:45:61:63:80:7a:
93:ce:f3:b8:93:5d:6b:15:1f:ab:07:7f:70:11:66:95:0b:62:
7c:28:05:35:b1:4b:a8:b1:3c:66:78:32:dc:0d:4f:38:7d:50:
7c:13:e6:ec:11:e0:f0:04:35:0c:da:b2:fb:42:33:08:ad:61:
51:04:59:1c:9c:42:d0:0a:dd:ec:43:de:a9:d6:35:04:cb:e3:
39:da:e9:3c:1c:64:28:45:ca:9b:e0:14:c5:dc:fb:4f:04:2f:
70:20:f4:47:59:3c:87:fe:82:72:3f:f2:eb:37:cc:c1:49:5e:
ab:3b:e7:a9:f5:5a:5b:ec:39:5a:36:09:07:69:e7:b4:7b:f0:
1b:7e:99:61:da:05:de:b6:be:99:c8:89:16:29:41:eb:8f:0f:
52:0b:e9:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh+LvxZy/RavehV1gIKq3F2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlODg0YjhlNDYyZjNlYzEzYTQwMjRkNjY5YTk5ZDk0YWYw
NWNkYjIwHhcNMjUwODA2MDcwMTA0WhcNMjUwODA3MDcwMTA0WjAzMTEwLwYDVQQD
EygwMGQwNTljYjM3MDg2NWE3ZTEzZWY2ZDExNmY1NjM4YTI5MzU3OWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhWVu7sOFBYIHQ/Yyi0ZchMq9SIwh
C00cVjt/HZoGkQGvLj7Pj5RD6lkQkjHrUygSo4FF8yA8Ytf1AQpEmR8tRUYbXeB1
GLAVos62D4bM0/sySk29Ra2zLxAtRl+3uT5IeO3pofwYleZ4I/oh5vVd1TMy/Bce
lTf4fKAMw1izdjPKX0srKjN8enw1BZRNMsPpHRfXeGlkRL80DHQdsdkmb646SWpb
SrJuRYdLMo7AOFIQ91thdky5le1qjGBKxTWSyo7kR0STSN3oWRMmBqSDQAHxWTdd
5epXyDdijCuhDpX6HW/B7Pr6Oz2fKMdtPALHMOp7LGF/624SX66p4Xu44wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFADQWcs3CGWn4T720Rb1Y4opNXnoMB8GA1UdIwQY
MBaAFN6IS45GLz7BOkAk1mmpnZSvBc2yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM29oTGprWXZQc0U2UUNUV2FhbWRsSzhGemJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny80NWRmNTYtZGQzMi00MzNjLWI0NGUt
NGFmNzA0MDJiMjcwLzEvM29oTGprWXZQc0U2UUNUV2FhbWRsSzhGemJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny80NWRmNTYtZGQzMi00MzNjLWI0NGUtNGFmNzA0MDJiMjcw
LzEvM29oTGprWXZQc0U2UUNUV2FhbWRsSzhGemJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsNQfqnBY
VzhI0KaagRJZ1PbhARVW2uNGSh5QYsPODvdSFFrPfpMFywiW0eWxH98iIQ/wgmZr
YWQgSJHxrjCsCU7cnL71x44A+Zn4Wj44gYxXGrvnI0EWuiN4SibcOhof5AhNHHXE
E0VhY4B6k87zuJNdaxUfqwd/cBFmlQtifCgFNbFLqLE8Zngy3A1POH1QfBPm7BHg
8AQ1DNqy+0IzCK1hUQRZHJxC0Ard7EPeqdY1BMvjOdrpPBxkKEXKm+AUxdz7TwQv
cCD0R1k8h/6Ccj/y6zfMwUleqzvnqfVaW+w5WjYJB2nntHvwG36ZYdoF3ra+mciJ
FilB648PUgvpAw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 12:40:12 2025 by rpki-client