Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
File: 3RiOwuSayUWFJFtLh0Whu3oc3GY.mft (raw, json)
Hash identifier: XGqmh353CqZGBLDEF8RJLVmroH6Na3DM2SfP0S3SrbQ=
Subject key identifier: 4A:CC:54:F9:68:0A:FB:71:08:F8:31:35:9F:FA:84:A9:88:F9:AD:CA
Authority key identifier: DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66
Certificate issuer: /CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66
Certificate serial: 0197B6A07E5A6900CE576272EC7C707C2FF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
Manifest number: 0827
Signing time: Sat 28 Jun 2025 13:01:00 +0000
Manifest this update: Sat 28 Jun 2025 13:01:00 +0000
Manifest next update: Sun 29 Jun 2025 13:01:00 +0000
Files and hashes: 1: 3RiOwuSayUWFJFtLh0Whu3oc3GY.crl (hash: QINbtaDFNVxj+tomFungflmUAP1bPPb5wypWWEF8dlQ=)
2: pDLly0sn53PLZlgmqVTYD5L2Et0.roa (hash: MLKk0AIXSDvV1SnhwkIbUGP+qcSM6FHopsKcU6yMV74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:7e:5a:69:00:ce:57:62:72:ec:7c:70:7c:2f:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66
Validity
Not Before: Jun 28 13:01:00 2025 GMT
Not After : Jun 29 13:01:00 2025 GMT
Subject: CN=4acc54f9680afb7108f831359ffa84a988f9adca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fb:5d:02:58:cd:ca:56:d5:2d:da:22:ab:d3:
fd:9d:fa:77:22:7a:a1:7d:9d:c7:14:9c:83:4e:c4:
cc:4b:00:2f:ec:2b:72:b9:ed:be:86:13:06:11:d6:
e0:71:ba:30:82:32:ab:f5:60:e7:e5:d0:72:80:ba:
30:5e:b3:58:0b:24:bc:0b:3c:0f:27:5c:9a:75:e5:
10:a6:61:85:5c:89:d5:da:db:ca:cd:9c:3c:6c:3d:
e0:9d:4d:3e:39:41:ab:b0:a0:78:ba:12:12:6b:f9:
7e:04:18:36:76:a8:ba:48:7f:14:b5:11:f3:ce:10:
10:4f:7f:28:9b:22:14:02:9a:23:7b:ed:17:79:85:
4e:d1:db:e5:7a:fa:4a:6e:61:3c:39:78:77:33:77:
e9:90:e5:0c:0c:0c:60:19:58:9f:fb:6b:88:88:d0:
f2:ac:a3:29:17:5e:42:ff:cb:2f:be:e4:ad:b2:78:
3f:fb:fa:d4:a7:d8:84:fd:6a:8c:cc:6b:df:3a:bc:
0d:ce:b0:f6:d1:d8:b3:1c:d0:f3:48:1a:67:5e:1b:
e6:34:3f:1f:bc:c5:98:80:77:e4:ac:5f:df:1c:37:
47:6e:82:61:fa:2e:49:ba:7f:13:77:74:8b:1f:97:
18:0a:f1:3a:d3:17:c8:44:c7:70:a0:b5:15:65:86:
ce:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:CC:54:F9:68:0A:FB:71:08:F8:31:35:9F:FA:84:A9:88:F9:AD:CA
X509v3 Authority Key Identifier:
keyid:DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:04:01:20:4a:a2:db:69:c7:00:16:6f:e6:9d:ab:9e:e6:58:
8d:18:85:13:19:59:75:69:4d:5b:84:27:04:7b:61:fd:e3:99:
e0:ba:26:b2:0b:4f:fa:fd:84:72:57:91:6c:50:ca:fb:6b:ae:
03:16:96:51:a5:b3:d1:5c:7f:5f:a3:d2:2d:e9:14:8d:a8:cb:
28:a2:cc:0f:4e:64:8e:18:90:3a:0d:8d:5c:bd:e1:91:ff:10:
31:8e:b2:ce:90:37:1b:94:e5:b8:c0:50:19:29:85:ff:e2:f2:
51:a6:55:e2:7e:00:fb:71:5f:38:0e:b0:56:d7:32:d5:84:78:
44:39:af:78:57:d1:b5:a0:25:82:f3:31:7c:45:73:1e:f9:5f:
e7:4f:91:23:2a:7f:e1:d4:38:c9:53:2d:a5:85:f0:bb:da:9b:
f6:de:80:54:d8:b9:e3:f6:83:bc:09:ae:06:7e:ac:c4:4e:cb:
c1:5f:6c:14:9b:ed:b7:aa:49:d7:61:6a:23:34:71:0e:ac:32:
c1:d8:f3:f8:42:83:64:c1:1f:ec:bf:f7:df:7d:30:a6:39:36:
06:14:90:27:76:ca:be:ba:27:a9:27:99:00:77:b7:b5:c1:5f:
53:bc:4e:ed:db:c4:2d:dd:63:25:ce:4b:ae:e5:c5:c9:29:c9:
b7:ae:23:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oH5aaQDOV2Jy7HxwfC/zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMTg4ZWMyZTQ5YWM5NDU4NTI0NWI0Yjg3NDVhMWJiN2Ex
Y2RjNjYwHhcNMjUwNjI4MTMwMTAwWhcNMjUwNjI5MTMwMTAwWjAzMTEwLwYDVQQD
Eyg0YWNjNTRmOTY4MGFmYjcxMDhmODMxMzU5ZmZhODRhOTg4ZjlhZGNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtftdAljNylbVLdoiq9P9nfp3Inqh
fZ3HFJyDTsTMSwAv7Ctyue2+hhMGEdbgcbowgjKr9WDn5dBygLowXrNYCyS8CzwP
J1yadeUQpmGFXInV2tvKzZw8bD3gnU0+OUGrsKB4uhISa/l+BBg2dqi6SH8UtRHz
zhAQT38omyIUApoje+0XeYVO0dvlevpKbmE8OXh3M3fpkOUMDAxgGVif+2uIiNDy
rKMpF15C/8svvuStsng/+/rUp9iE/WqMzGvfOrwNzrD20dizHNDzSBpnXhvmND8f
vMWYgHfkrF/fHDdHboJh+i5Jun8Td3SLH5cYCvE60xfIRMdwoLUVZYbOIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFErMVPloCvtxCPgxNZ/6hKmI+a3KMB8GA1UdIwQY
MBaAFN0YjsLkmslFhSRbS4dFobt6HNxmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2Ut
YjU5MTk4YjkxNTVkLzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2UtYjU5MTk4YjkxNTVk
LzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMAQBIEqi
22nHABZv5p2rnuZYjRiFExlZdWlNW4QnBHth/eOZ4LomsgtP+v2EcleRbFDK+2uu
AxaWUaWz0Vx/X6PSLekUjajLKKLMD05kjhiQOg2NXL3hkf8QMY6yzpA3G5TluMBQ
GSmF/+LyUaZV4n4A+3FfOA6wVtcy1YR4RDmveFfRtaAlgvMxfEVzHvlf50+RIyp/
4dQ4yVMtpYXwu9qb9t6AVNi54/aDvAmuBn6sxE7LwV9sFJvtt6pJ12FqIzRxDqwy
wdjz+EKDZMEf7L/3330wpjk2BhSQJ3bKvronqSeZAHe3tcFfU7xO7dvELd1jJc5L
ruXFySnJt64jmA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:21:01 2025 by rpki-client