Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
File: 3erZGbhaEwUdAgi34o3cyzmLFNY.mft (raw, json)
Hash identifier: vFGyDC76AEjfbsquCX9N0YADhCLS+KwikgF/xJWn4Lg=
Subject key identifier: 39:84:33:4A:C9:CD:70:55:75:88:8E:4C:F0:4B:E9:B8:82:61:C0:90
Authority key identifier: DD:EA:D9:19:B8:5A:13:05:1D:02:08:B7:E2:8D:DC:CB:39:8B:14:D6
Certificate issuer: /CN=ddead919b85a13051d0208b7e28ddccb398b14d6
Certificate serial: 01976C621B59B2FB76BE84452A50998482D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 03:00:58 +0000
Manifest this update: Sat 14 Jun 2025 03:00:58 +0000
Manifest next update: Sun 15 Jun 2025 03:00:58 +0000
Files and hashes: 1: 3erZGbhaEwUdAgi34o3cyzmLFNY.crl (hash: m7v34GU3ikfQHyX0FUdFf2MQa2HFuwhaVR5X5rztryw=)
2: gyBGqWNKS8K0vTNBAA3GKNL77Vo.roa (hash: BXXbMCiaPDwWpKluJbMJNiQFpxOCWm/ZXx0AVN6V8Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:1b:59:b2:fb:76:be:84:45:2a:50:99:84:82:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddead919b85a13051d0208b7e28ddccb398b14d6
Validity
Not Before: Jun 14 03:00:58 2025 GMT
Not After : Jun 15 03:00:58 2025 GMT
Subject: CN=3984334ac9cd705575888e4cf04be9b88261c090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7a:1f:18:24:8c:fb:52:18:1a:de:f9:c0:55:
ee:b1:a2:d7:1b:43:7c:98:59:dd:e1:5c:fe:e4:0c:
be:39:57:c7:95:2d:56:70:8a:5c:0e:69:ad:6e:33:
4f:ce:5f:e9:c3:39:5f:29:51:f1:b3:8f:6c:e3:e4:
33:5e:92:58:72:2e:33:ca:68:02:63:17:e2:e7:c6:
af:53:4a:62:41:94:4e:86:3a:b5:80:6a:e9:6d:ce:
48:e5:ca:f7:a1:49:4b:9e:4f:13:9c:48:f9:db:8d:
ff:f4:89:d3:4a:38:57:81:d0:a2:78:de:f1:67:5c:
f6:b7:3e:ea:ea:87:2a:20:5d:5d:ad:01:f6:f2:14:
f1:38:df:62:2c:33:db:bf:81:e0:ca:04:25:c0:00:
06:5f:54:09:22:e8:0a:59:dc:3f:da:83:5b:8f:c4:
d2:0a:0f:3f:f1:6a:7a:20:90:2a:bb:fb:72:a3:df:
74:11:55:9b:51:32:4d:48:4c:a4:dd:e4:f1:da:e4:
88:23:7a:36:9c:21:31:8b:ab:08:59:04:25:ef:03:
29:f0:d9:3e:57:68:53:2d:dc:68:0e:dd:74:ea:69:
bf:f7:f3:8e:72:97:28:61:d5:d7:18:ef:02:e1:de:
7d:82:54:03:04:fd:d9:72:b2:54:0e:db:74:1d:c2:
12:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:84:33:4A:C9:CD:70:55:75:88:8E:4C:F0:4B:E9:B8:82:61:C0:90
X509v3 Authority Key Identifier:
keyid:DD:EA:D9:19:B8:5A:13:05:1D:02:08:B7:E2:8D:DC:CB:39:8B:14:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:e6:82:c0:ed:ff:0a:24:1d:f9:d9:96:e1:5e:1e:13:b9:57:
a1:b3:d8:49:5d:1e:6f:7e:b7:0b:05:48:d9:bd:4d:e8:18:db:
a2:42:47:23:cc:ed:93:40:6c:95:45:ec:ab:e2:00:18:6f:4b:
fb:a0:b4:6b:92:05:f0:d2:19:de:d5:c7:8f:ad:9e:42:3d:f9:
95:a3:f0:9b:35:75:6e:e1:74:8c:0f:03:18:6a:cc:e7:d7:e0:
9f:6b:60:f4:23:c4:5a:54:98:d9:17:0e:c0:d8:3c:c8:ae:93:
86:c2:4a:b6:18:ff:eb:67:5a:87:35:46:f0:49:5d:ca:20:05:
e8:0a:67:9c:d3:d5:94:f8:e3:c7:33:55:07:14:32:c9:bc:2a:
96:f6:28:be:55:4f:2f:75:90:25:52:8c:0f:70:dc:0d:b9:9f:
56:7a:2a:d7:32:87:0c:eb:d3:eb:a4:41:0e:35:e2:81:8d:73:
8f:1e:06:33:b2:f3:8f:c7:ee:92:15:6e:82:81:4b:8a:4a:b2:
c7:1a:9e:74:15:18:f4:08:c6:0b:5b:28:da:be:20:fc:a2:da:
4f:c6:23:20:67:74:44:c1:5d:f5:b2:9a:7b:ce:0e:96:6a:24:
a4:6c:43:8b:e1:e7:61:2f:9a:6f:f2:c9:08:ea:f1:c7:49:53:
62:24:22:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsYhtZsvt2voRFKlCZhILVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZWFkOTE5Yjg1YTEzMDUxZDAyMDhiN2UyOGRkY2NiMzk4
YjE0ZDYwHhcNMjUwNjE0MDMwMDU4WhcNMjUwNjE1MDMwMDU4WjAzMTEwLwYDVQQD
EygzOTg0MzM0YWM5Y2Q3MDU1NzU4ODhlNGNmMDRiZTliODgyNjFjMDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0nofGCSM+1IYGt75wFXusaLXG0N8
mFnd4Vz+5Ay+OVfHlS1WcIpcDmmtbjNPzl/pwzlfKVHxs49s4+QzXpJYci4zymgC
Yxfi58avU0piQZROhjq1gGrpbc5I5cr3oUlLnk8TnEj5243/9InTSjhXgdCieN7x
Z1z2tz7q6ocqIF1drQH28hTxON9iLDPbv4HgygQlwAAGX1QJIugKWdw/2oNbj8TS
Cg8/8Wp6IJAqu/tyo990EVWbUTJNSEyk3eTx2uSII3o2nCExi6sIWQQl7wMp8Nk+
V2hTLdxoDt106mm/9/OOcpcoYdXXGO8C4d59glQDBP3ZcrJUDtt0HcISswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDmEM0rJzXBVdYiOTPBL6biCYcCQMB8GA1UdIwQY
MBaAFN3q2Rm4WhMFHQIIt+KN3Ms5ixTWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2VyWkdiaGFFd1VkQWdpMzRvM2N5em1MRk5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS84ZWZmZTQtZWRiYi00ZGQ0LTg1ZDQt
NDhiOGI1YTliNDExLzEvM2VyWkdiaGFFd1VkQWdpMzRvM2N5em1MRk5ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS84ZWZmZTQtZWRiYi00ZGQ0LTg1ZDQtNDhiOGI1YTliNDEx
LzEvM2VyWkdiaGFFd1VkQWdpMzRvM2N5em1MRk5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM+aCwO3/
CiQd+dmW4V4eE7lXobPYSV0eb363CwVI2b1N6BjbokJHI8ztk0BslUXsq+IAGG9L
+6C0a5IF8NIZ3tXHj62eQj35laPwmzV1buF0jA8DGGrM59fgn2tg9CPEWlSY2RcO
wNg8yK6ThsJKthj/62dahzVG8EldyiAF6ApnnNPVlPjjxzNVBxQyybwqlvYovlVP
L3WQJVKMD3DcDbmfVnoq1zKHDOvT66RBDjXigY1zjx4GM7Lzj8fukhVugoFLikqy
xxqedBUY9AjGC1so2r4g/KLaT8YjIGd0RMFd9bKae84OlmokpGxDi+HnYS+ab/LJ
COrxx0lTYiQiEA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:59:24 2025 by rpki-client