Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
File: 3RiOwuSayUWFJFtLh0Whu3oc3GY.mft (raw, json)
Hash identifier: F9Ipd4cM2WXjZ9iTAZEXkiZdNXqsYnBx6hqRwLqBB1E=
Subject key identifier: A2:D9:84:C1:9A:28:2C:91:4C:EE:3B:3C:E1:13:97:10:D3:99:88:E7
Authority key identifier: DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66
Certificate issuer: /CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66
Certificate serial: 0196BF37CB3C8D7D53600F2A73E665DD1B51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
Manifest number: 07A7
Signing time: Sun 11 May 2025 12:00:26 +0000
Manifest this update: Sun 11 May 2025 12:00:26 +0000
Manifest next update: Mon 12 May 2025 12:00:26 +0000
Files and hashes: 1: 3RiOwuSayUWFJFtLh0Whu3oc3GY.crl (hash: 27Xf2HszfbL31B5/QcQ4IDKBMxWzAun4Dmy5tyuI3eg=)
2: pDLly0sn53PLZlgmqVTYD5L2Et0.roa (hash: MLKk0AIXSDvV1SnhwkIbUGP+qcSM6FHopsKcU6yMV74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 12:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:37:cb:3c:8d:7d:53:60:0f:2a:73:e6:65:dd:1b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66
Validity
Not Before: May 11 12:00:26 2025 GMT
Not After : May 12 12:00:26 2025 GMT
Subject: CN=a2d984c19a282c914cee3b3ce1139710d39988e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:78:84:5e:93:91:52:c8:11:54:74:a7:80:2a:
5e:46:2b:43:e2:3b:e4:04:88:a2:f0:2e:a6:56:b4:
4d:37:ea:47:6e:0f:36:a6:5c:ca:aa:1d:2c:aa:bb:
cb:36:8e:ed:f9:4d:4a:8b:6d:ca:79:77:cb:38:b0:
82:39:a1:80:83:12:ef:e4:9e:c9:21:bc:85:9f:71:
3b:5a:fc:14:2a:93:a6:8f:47:6c:5d:2a:c7:c7:53:
a2:d1:12:38:bd:ed:dc:fe:4f:48:71:c5:62:9b:4e:
70:8c:37:52:61:bd:58:2c:4a:8f:c3:04:1d:81:f9:
19:54:0c:61:0c:3a:ad:36:33:b2:0d:f0:ac:4a:9e:
d8:d0:eb:99:fd:f3:b5:a2:21:fb:3e:3a:c9:f0:f5:
e2:14:85:63:bc:7b:54:66:29:f4:89:c2:92:2e:8d:
42:c8:64:7c:9b:df:fe:73:69:ff:78:1e:a0:06:67:
d4:6b:fb:56:d2:03:33:33:2c:8e:88:05:de:a0:bd:
00:6c:7c:55:e0:45:9d:a5:80:a6:12:da:d3:09:4b:
54:2d:64:bb:88:31:2b:91:15:8c:ce:7e:c1:36:bf:
3d:5f:db:5f:bd:b2:31:13:f3:26:e0:b6:b9:d0:fc:
be:4d:8e:a7:b8:19:8e:3b:72:c1:f5:cb:f7:2d:2e:
66:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D9:84:C1:9A:28:2C:91:4C:EE:3B:3C:E1:13:97:10:D3:99:88:E7
X509v3 Authority Key Identifier:
keyid:DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:c1:a6:37:9e:19:f1:c5:8f:c2:dd:44:2b:4c:7a:fa:3f:e5:
80:b5:f2:d2:63:76:0d:4c:cd:28:15:74:a4:39:c8:28:3c:3c:
a9:2c:2d:6e:05:7e:29:1c:f1:9d:20:7b:5e:0b:71:a1:3f:90:
0e:7e:c4:b9:b9:90:0b:74:3d:5c:84:e0:c0:eb:22:a1:fe:2f:
10:07:8b:a8:e5:ba:1b:f9:cf:9d:05:7b:d9:8a:44:55:7e:af:
2b:8e:28:4b:2c:43:66:7e:c4:05:40:c7:59:29:af:90:80:a2:
59:4a:f0:e5:48:2f:f6:d5:44:b8:f6:75:f4:24:ff:30:69:b5:
4c:5b:5a:98:8e:92:48:02:5f:1b:4f:69:3b:ca:fd:d8:5f:43:
ad:24:39:b4:78:2e:56:82:0f:ec:c4:50:ab:d6:76:64:f0:f6:
61:ac:93:29:0c:29:d5:ba:79:e5:88:d4:24:b7:e0:5c:6f:a4:
f2:b2:10:90:f5:ef:fd:27:2e:65:be:ed:8d:6e:34:59:90:d5:
7b:4a:56:18:1a:b7:09:65:a8:54:3a:25:ad:1a:89:74:59:e1:
c8:dd:85:a9:15:a6:d0:db:d6:cd:c3:42:85:ab:82:78:04:77:
96:16:b5:86:da:ca:e3:1c:d8:02:5b:63:28:08:fa:11:0a:bc:
54:d2:46:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa/N8s8jX1TYA8qc+Zl3RtRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMTg4ZWMyZTQ5YWM5NDU4NTI0NWI0Yjg3NDVhMWJiN2Ex
Y2RjNjYwHhcNMjUwNTExMTIwMDI2WhcNMjUwNTEyMTIwMDI2WjAzMTEwLwYDVQQD
EyhhMmQ5ODRjMTlhMjgyYzkxNGNlZTNiM2NlMTEzOTcxMGQzOTk4OGU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13iEXpORUsgRVHSngCpeRitD4jvk
BIii8C6mVrRNN+pHbg82plzKqh0sqrvLNo7t+U1Ki23KeXfLOLCCOaGAgxLv5J7J
IbyFn3E7WvwUKpOmj0dsXSrHx1Oi0RI4ve3c/k9IccVim05wjDdSYb1YLEqPwwQd
gfkZVAxhDDqtNjOyDfCsSp7Y0OuZ/fO1oiH7PjrJ8PXiFIVjvHtUZin0icKSLo1C
yGR8m9/+c2n/eB6gBmfUa/tW0gMzMyyOiAXeoL0AbHxV4EWdpYCmEtrTCUtULWS7
iDErkRWMzn7BNr89X9tfvbIxE/Mm4La50Py+TY6nuBmOO3LB9cv3LS5mTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKLZhMGaKCyRTO47POETlxDTmYjnMB8GA1UdIwQY
MBaAFN0YjsLkmslFhSRbS4dFobt6HNxmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2Ut
YjU5MTk4YjkxNTVkLzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2UtYjU5MTk4YjkxNTVk
LzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKsGmN54Z
8cWPwt1EK0x6+j/lgLXy0mN2DUzNKBV0pDnIKDw8qSwtbgV+KRzxnSB7XgtxoT+Q
Dn7EubmQC3Q9XITgwOsiof4vEAeLqOW6G/nPnQV72YpEVX6vK44oSyxDZn7EBUDH
WSmvkICiWUrw5Ugv9tVEuPZ19CT/MGm1TFtamI6SSAJfG09pO8r92F9DrSQ5tHgu
VoIP7MRQq9Z2ZPD2YayTKQwp1bp55YjUJLfgXG+k8rIQkPXv/ScuZb7tjW40WZDV
e0pWGBq3CWWoVDolrRqJdFnhyN2FqRWm0NvWzcNChauCeAR3lha1htrK4xzYAltj
KAj6EQq8VNJG6g==
-----END CERTIFICATE-----
Generated at Sun May 11 20:20:54 2025 by rpki-client