Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
File: 3DC4_dBG72WGgJfwNrinyFVyqtA.mft (raw, json)
Hash identifier: yoRAkq+dQNcnGtQLehuLIsD2q5r+8MviOV7Msohin5s=
Subject key identifier: B3:B9:0D:DC:B4:17:E6:2E:68:94:EB:6B:27:25:83:1A:A8:38:98:FC
Authority key identifier: DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
Certificate issuer: /CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Certificate serial: 0197B70EC5114104537007D2FBF232ECBDB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 15:01:27 +0000
Manifest this update: Sat 28 Jun 2025 15:01:27 +0000
Manifest next update: Sun 29 Jun 2025 15:01:27 +0000
Files and hashes: 1: 3DC4_dBG72WGgJfwNrinyFVyqtA.crl (hash: DIfLebl9mfLnfs55DYEAfJ8iTvCBNPOgAh9+W4rMOBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:c5:11:41:04:53:70:07:d2:fb:f2:32:ec:bd:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc30b8fdd046ef65868097f036b8a7c85572aad0
Validity
Not Before: Jun 28 15:01:27 2025 GMT
Not After : Jun 29 15:01:27 2025 GMT
Subject: CN=b3b90ddcb417e62e6894eb6b2725831aa83898fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f9:79:01:b8:6e:59:84:15:1d:89:7f:b2:50:
98:d3:ce:fc:e9:1a:a6:ac:a3:df:2f:35:88:df:e7:
f3:d5:d9:b5:7e:9c:43:99:4b:23:b7:30:3f:53:59:
8c:2f:86:44:0b:3d:e1:56:9f:75:62:5c:10:e9:f1:
36:1e:a6:b5:7c:15:f9:2e:20:98:dc:8f:a5:1c:09:
e5:05:8f:c0:81:91:52:07:bc:2c:91:8e:8f:bd:03:
32:30:ee:6e:46:d9:50:3d:f6:08:ee:a1:85:70:5b:
a9:b0:88:60:23:60:e2:02:ea:4b:d8:f0:4f:ec:49:
23:cd:08:c1:3c:0f:99:7a:c0:28:a9:19:12:32:80:
d1:27:b0:c4:6d:57:76:8e:11:80:49:e9:db:a5:6c:
29:08:2b:9b:e9:33:3f:04:12:3e:96:e9:f4:af:e9:
77:8c:79:4d:d4:04:f4:5d:65:77:09:da:3d:ad:9a:
34:bf:9c:ef:d3:fb:6a:e1:ae:80:46:39:aa:8c:8d:
f2:a8:04:a4:b1:e3:5c:cf:47:3a:c1:c9:d2:b4:eb:
27:2c:57:84:4b:b0:3f:73:8d:20:03:de:1d:17:1a:
79:74:71:54:39:14:c2:d0:35:fc:a8:67:ac:79:d2:
66:68:13:0b:78:55:18:5f:90:01:7a:42:c7:0b:f7:
c9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B9:0D:DC:B4:17:E6:2E:68:94:EB:6B:27:25:83:1A:A8:38:98:FC
X509v3 Authority Key Identifier:
keyid:DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:9e:12:11:e1:68:33:a5:49:3a:34:0e:f7:a9:c6:04:dc:9a:
be:17:a4:6e:b2:2b:17:98:71:d5:ff:37:fe:89:04:fa:c3:dd:
0f:d1:49:eb:a9:af:f2:36:1b:f3:04:ae:50:91:ae:10:b6:21:
05:52:46:96:59:fc:2b:bf:52:9b:c9:4f:41:80:86:20:05:8f:
81:4c:52:1d:5a:4f:d7:8a:44:d5:d2:1b:63:b7:0d:9e:e6:98:
fc:27:53:16:31:49:97:f2:ed:45:02:59:de:6d:2c:db:3d:f3:
ba:be:a4:32:8a:d2:d3:d1:5c:ce:2f:e4:7e:75:7b:2c:8c:1c:
47:b7:d7:d5:4d:44:22:cb:12:f5:a8:82:07:83:5f:78:23:8f:
f8:2c:20:a6:8b:65:47:09:84:0e:b5:86:b7:8b:4d:e6:07:81:
2f:24:29:d6:f9:ec:a8:56:18:4f:f4:77:94:4c:ac:f8:24:90:
18:53:fe:93:82:27:dd:fc:eb:39:bd:7c:7b:16:99:14:3d:b4:
c2:8c:59:4b:de:fb:4a:90:0e:0b:a4:7b:a8:81:01:76:c2:4d:
84:8b:0e:cf:e0:cd:33:75:fb:92:80:39:c1:d2:25:15:66:4f:
ae:83:07:f6:b8:b1:7c:91:cb:35:fe:b3:5a:1a:56:bc:3a:c2:
14:f9:d9:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DsURQQRTcAfS+/Iy7L2zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMzBiOGZkZDA0NmVmNjU4NjgwOTdmMDM2YjhhN2M4NTU3
MmFhZDAwHhcNMjUwNjI4MTUwMTI3WhcNMjUwNjI5MTUwMTI3WjAzMTEwLwYDVQQD
EyhiM2I5MGRkY2I0MTdlNjJlNjg5NGViNmIyNzI1ODMxYWE4Mzg5OGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/l5AbhuWYQVHYl/slCY08786Rqm
rKPfLzWI3+fz1dm1fpxDmUsjtzA/U1mML4ZECz3hVp91YlwQ6fE2Hqa1fBX5LiCY
3I+lHAnlBY/AgZFSB7wskY6PvQMyMO5uRtlQPfYI7qGFcFupsIhgI2DiAupL2PBP
7EkjzQjBPA+ZesAoqRkSMoDRJ7DEbVd2jhGASenbpWwpCCub6TM/BBI+lun0r+l3
jHlN1AT0XWV3Cdo9rZo0v5zv0/tq4a6ARjmqjI3yqASkseNcz0c6wcnStOsnLFeE
S7A/c40gA94dFxp5dHFUORTC0DX8qGesedJmaBMLeFUYX5ABekLHC/fJLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLO5Ddy0F+YuaJTrayclgxqoOJj8MB8GA1UdIwQY
MBaAFNwwuP3QRu9lhoCX8Da4p8hVcqrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYt
MjlhMGFhNmM0YWQxLzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYtMjlhMGFhNmM0YWQx
LzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYZ4SEeFo
M6VJOjQO96nGBNyavhekbrIrF5hx1f83/okE+sPdD9FJ66mv8jYb8wSuUJGuELYh
BVJGlln8K79Sm8lPQYCGIAWPgUxSHVpP14pE1dIbY7cNnuaY/CdTFjFJl/LtRQJZ
3m0s2z3zur6kMorS09Fczi/kfnV7LIwcR7fX1U1EIssS9aiCB4NfeCOP+Cwgpotl
RwmEDrWGt4tN5geBLyQp1vnsqFYYT/R3lEys+CSQGFP+k4In3fzrOb18exaZFD20
woxZS977SpAOC6R7qIEBdsJNhIsOz+DNM3X7koA5wdIlFWZProMH9rixfJHLNf6z
WhpWvDrCFPnZNA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:19:35 2025 by rpki-client