Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
File: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft (raw, json)
Hash identifier: b2YB20PovOgBVmgdnhHvFplYVZaSf/0w5VorSkYSQAo=
Subject key identifier: 3D:F5:D0:15:83:8D:27:D2:D2:2C:F7:BB:8F:A8:8A:03:8C:0A:09:0C
Authority key identifier: DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
Certificate issuer: /CN=df0198a7b3afdcdd7003562a0871878e238760ad
Certificate serial: 01976D06DE00E63E951D6DE06119F1AE0716
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
Manifest number: 1042
Signing time: Sat 14 Jun 2025 06:00:55 +0000
Manifest this update: Sat 14 Jun 2025 06:00:55 +0000
Manifest next update: Sun 15 Jun 2025 06:00:55 +0000
Files and hashes: 1: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl (hash: 9gtLfHRBIviGcbUot2zJlS61gNA4s5xsgoQ+3jZeOEA=)
2: 4PgtcW6j7xPoaJPy67vk2tMAXu4.roa (hash: fufIwyPbWqbMyORM68+h1FhSNKXbFzjdgG7WcXkavWU=)
3: cUPSsBWZ4irx4TApxzbroJpf5do.roa (hash: 6GPPFraRfTGyKrm5jIIIVF8Jt+KHlsZR8YFMwLgpuuE=)
4: xqYP462dYCt-0eOV8zXikdtxg14.roa (hash: YzKJbzm4Szaaz/1aNRHY+rmqu5/8YwNywOTzBNgzdeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:de:00:e6:3e:95:1d:6d:e0:61:19:f1:ae:07:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df0198a7b3afdcdd7003562a0871878e238760ad
Validity
Not Before: Jun 14 06:00:55 2025 GMT
Not After : Jun 15 06:00:55 2025 GMT
Subject: CN=3df5d015838d27d2d22cf7bb8fa88a038c0a090c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6b:d8:b1:e2:a1:ce:c2:c0:43:58:c9:71:af:
fd:d9:86:15:4e:5a:f5:f3:1c:aa:e9:37:d6:d4:44:
7a:d5:c3:b1:1e:4b:0e:f5:66:5b:1b:db:4d:2b:a0:
ee:99:40:32:54:01:66:0d:29:37:bf:62:ee:48:45:
0b:21:44:aa:1d:2f:87:68:61:28:9d:3e:be:99:65:
4f:32:76:c5:31:4e:f5:86:df:06:aa:be:c7:bd:53:
a2:2b:d2:a7:8b:e6:a7:54:9c:7e:62:ad:a0:b3:b2:
de:16:25:86:29:bc:a1:70:ca:7b:0b:f1:8d:5b:84:
28:5b:58:85:cb:16:05:84:04:c2:68:7e:81:93:c7:
e7:99:9e:eb:ef:45:85:22:ff:95:c1:56:80:de:8d:
8e:79:0a:8e:d8:01:7d:6b:46:aa:88:3a:1b:59:95:
a9:3d:9c:74:65:6c:5b:d2:90:95:fc:c5:0c:cc:f0:
6e:2a:a1:af:36:7a:ea:9b:df:d2:01:b4:20:31:41:
83:5e:e1:74:8d:dd:8a:e9:20:16:07:ce:74:41:c9:
0e:6d:9b:87:b2:d0:34:49:75:73:cc:be:c6:e6:7f:
72:e4:bf:68:75:31:0f:07:1d:80:d1:a7:3d:db:9f:
66:de:d9:c7:33:35:ee:d3:8f:06:c3:c4:af:2c:51:
7a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:F5:D0:15:83:8D:27:D2:D2:2C:F7:BB:8F:A8:8A:03:8C:0A:09:0C
X509v3 Authority Key Identifier:
keyid:DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:19:63:26:7b:e8:ad:03:b1:fc:b1:b7:7d:f7:18:32:49:f3:
2c:60:b9:eb:9d:7d:18:09:8b:2e:57:7c:7b:29:d7:14:f1:da:
3a:4c:22:51:17:e4:72:23:2f:ed:2b:4f:e9:0e:9b:de:f4:7c:
4a:c3:2d:12:41:36:34:59:57:08:d7:19:db:0c:a2:9a:9e:97:
89:0c:44:e2:32:7c:8f:7f:44:d6:31:60:11:3f:8b:8e:42:fb:
89:5d:af:01:7e:5d:5e:78:e5:cc:d2:1e:3b:e9:6a:53:c7:7c:
d5:9a:d6:12:6d:42:d7:76:7f:4a:60:33:52:11:3a:49:ed:a4:
ac:a9:2a:aa:4d:ec:32:9f:91:c1:cc:a0:c8:f2:2b:1d:0e:e9:
57:23:16:d0:c9:ba:a9:50:96:16:0b:e1:44:e6:ac:00:a5:de:
90:32:1c:af:65:fa:6a:b9:19:2d:cd:4c:5d:b0:0a:a0:1d:1c:
79:5b:f8:d2:f3:93:8e:e3:c1:7a:09:50:e6:1c:a0:a0:78:a8:
37:1b:2e:39:d5:f3:d1:06:74:67:1c:c9:2f:18:a1:32:66:0e:
27:1c:eb:ce:65:f4:c8:a3:cb:11:d3:d6:f5:d7:bb:3e:32:c0:
18:d8:d4:24:15:44:75:ae:66:8e:68:e4:44:89:33:c8:c7:fe:
fc:04:30:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtBt4A5j6VHW3gYRnxrgcWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmMDE5OGE3YjNhZmRjZGQ3MDAzNTYyYTA4NzE4NzhlMjM4
NzYwYWQwHhcNMjUwNjE0MDYwMDU1WhcNMjUwNjE1MDYwMDU1WjAzMTEwLwYDVQQD
EygzZGY1ZDAxNTgzOGQyN2QyZDIyY2Y3YmI4ZmE4OGEwMzhjMGEwOTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWvYseKhzsLAQ1jJca/92YYVTlr1
8xyq6TfW1ER61cOxHksO9WZbG9tNK6DumUAyVAFmDSk3v2LuSEULIUSqHS+HaGEo
nT6+mWVPMnbFMU71ht8Gqr7HvVOiK9Kni+anVJx+Yq2gs7LeFiWGKbyhcMp7C/GN
W4QoW1iFyxYFhATCaH6Bk8fnmZ7r70WFIv+VwVaA3o2OeQqO2AF9a0aqiDobWZWp
PZx0ZWxb0pCV/MUMzPBuKqGvNnrqm9/SAbQgMUGDXuF0jd2K6SAWB850QckObZuH
stA0SXVzzL7G5n9y5L9odTEPBx2A0ac9259m3tnHMzXu048Gw8SvLFF6owIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD310BWDjSfS0iz3u4+oigOMCgkMMB8GA1UdIwQY
MBaAFN8BmKezr9zdcANWKghxh44jh2CtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQt
MGZjYzZjMzAxMWZjLzEvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQtMGZjYzZjMzAxMWZj
LzEvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIBljJnvo
rQOx/LG3ffcYMknzLGC56519GAmLLld8eynXFPHaOkwiURfkciMv7StP6Q6b3vR8
SsMtEkE2NFlXCNcZ2wyimp6XiQxE4jJ8j39E1jFgET+LjkL7iV2vAX5dXnjlzNIe
O+lqU8d81ZrWEm1C13Z/SmAzUhE6Se2krKkqqk3sMp+RwcygyPIrHQ7pVyMW0Mm6
qVCWFgvhROasAKXekDIcr2X6arkZLc1MXbAKoB0ceVv40vOTjuPBeglQ5hygoHio
NxsuOdXz0QZ0ZxzJLxihMmYOJxzrzmX0yKPLEdPW9de7PjLAGNjUJBVEda5mjmjk
RIkzyMf+/AQw8A==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:50:42 2025 by rpki-client