Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: sUYYy9j3BtTGpAq5Nd5ATkrzutH6XEH5AZC3iq7YRuI=
Subject key identifier: A7:04:03:64:B5:5E:99:5F:60:F7:CA:0B:B0:79:4F:77:99:B2:02:BD
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 0197B820EF2DA5019F755B5BEBACAF7A4FA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 09C7
Signing time: Sat 28 Jun 2025 20:00:55 +0000
Manifest this update: Sat 28 Jun 2025 20:00:55 +0000
Manifest next update: Sun 29 Jun 2025 20:00:55 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: fS9NAaQGPdGPeWB8rrOeYzyPxLt4qps6sGXJnJwYTvE=)
2: jU0yi7PHweJFHYaEaX0jg-4Q_RU.roa (hash: 8PA9xbvSb0ZvYzYhTOCmIzBIyrP4FgGrFueLXskDR54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:ef:2d:a5:01:9f:75:5b:5b:eb:ac:af:7a:4f:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: Jun 28 20:00:55 2025 GMT
Not After : Jun 29 20:00:55 2025 GMT
Subject: CN=a7040364b55e995f60f7ca0bb0794f7799b202bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:32:60:73:67:09:b0:b7:88:44:6a:0d:e3:b7:
6f:78:78:24:b6:ea:df:b7:51:4a:1a:b3:93:bd:3b:
23:aa:0c:87:e7:34:50:7d:1d:33:fc:9a:6f:16:f8:
d4:52:42:29:59:af:6c:2e:40:98:83:39:2e:c2:c3:
27:3f:33:01:0f:18:ce:a2:ca:9d:be:c8:40:d0:9a:
5c:3f:18:3b:fa:86:16:1b:97:61:5c:83:26:ca:e1:
fb:cf:e5:24:d4:db:c7:36:e8:cf:4c:b8:eb:0d:ff:
ed:56:88:3d:e0:1a:36:8d:68:80:ca:ee:8a:fa:04:
66:37:8a:a0:02:d7:93:f0:37:3a:b3:e8:c9:39:45:
71:b0:e5:c0:80:41:f7:73:3d:dc:91:3d:51:eb:a3:
b6:f5:f2:fb:7a:d8:5d:6b:bd:dd:16:98:ed:9b:43:
6c:0e:65:f4:1e:96:2d:68:5e:08:d5:cc:9e:d1:50:
f3:77:41:29:1f:cc:a7:9f:fb:a3:72:be:d1:a8:16:
11:51:6d:5b:b4:82:39:5c:1e:1e:f6:43:59:d3:72:
40:fb:00:27:04:fd:95:5f:2f:8a:34:a8:8d:28:4f:
74:e1:68:87:5a:4c:27:82:ff:0d:6b:25:a3:cc:c3:
b4:f8:15:4a:36:52:43:d9:50:09:59:fb:37:97:82:
09:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:04:03:64:B5:5E:99:5F:60:F7:CA:0B:B0:79:4F:77:99:B2:02:BD
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:dd:61:63:86:21:12:0d:a2:bb:d4:d8:e5:c8:e4:59:9c:42:
a9:98:d3:95:7d:51:a5:fd:fd:36:39:ee:87:a4:fb:cd:fa:3b:
8b:80:d1:02:31:c7:59:f0:e6:a4:49:b0:7c:9d:d4:70:23:44:
cc:55:bd:7d:39:08:0e:6f:c1:97:2c:cf:1b:4e:70:ea:26:e3:
0b:9c:79:40:1d:ec:c7:eb:2e:aa:50:75:d9:6a:fa:c1:a1:0e:
1b:21:29:ae:f6:2a:20:ab:99:e9:3b:1d:c1:fb:5e:f2:0f:ff:
15:fb:9e:7b:7c:ca:46:2d:84:6d:65:2a:ed:11:42:ae:c5:07:
04:f0:7d:0d:f0:70:5f:04:7f:89:31:1f:44:01:8e:99:ce:27:
32:e6:8b:53:59:8c:63:de:8b:e4:bc:fc:e2:b0:fd:a6:9b:6e:
b6:82:0a:b7:2f:96:48:43:52:a7:40:56:05:91:bc:d1:e6:06:
84:ea:af:d0:f0:63:4d:05:55:27:6a:37:fe:b1:5f:0d:98:c5:
db:51:d9:f7:9d:1f:67:8e:51:6f:ee:42:4e:cb:2c:ba:8f:c2:
80:d7:b3:6e:f7:a2:96:8d:67:01:3f:d8:a7:57:a0:e2:db:08:
1d:c3:d2:fb:0f:2f:f4:1e:e3:45:4c:9a:62:dd:b5:b7:17:cf:
9b:03:fd:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4IO8tpQGfdVtb66yvek+kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNWIyMjRiNjU5M2U1NTgwMzhhOWU0MGU2NjBjNzcxNDI3
NTVjMWIwHhcNMjUwNjI4MjAwMDU1WhcNMjUwNjI5MjAwMDU1WjAzMTEwLwYDVQQD
EyhhNzA0MDM2NGI1NWU5OTVmNjBmN2NhMGJiMDc5NGY3Nzk5YjIwMmJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzJgc2cJsLeIRGoN47dveHgkturf
t1FKGrOTvTsjqgyH5zRQfR0z/JpvFvjUUkIpWa9sLkCYgzkuwsMnPzMBDxjOosqd
vshA0JpcPxg7+oYWG5dhXIMmyuH7z+Uk1NvHNujPTLjrDf/tVog94Bo2jWiAyu6K
+gRmN4qgAteT8Dc6s+jJOUVxsOXAgEH3cz3ckT1R66O29fL7ethda73dFpjtm0Ns
DmX0HpYtaF4I1cye0VDzd0EpH8ynn/ujcr7RqBYRUW1btII5XB4e9kNZ03JA+wAn
BP2VXy+KNKiNKE904WiHWkwngv8NayWjzMO0+BVKNlJD2VAJWfs3l4IJuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKcEA2S1XplfYPfKC7B5T3eZsgK9MB8GA1UdIwQY
MBaAFN1bIktlk+VYA4qeQOZgx3FCdVwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMt
MzBiYmZjMDg1NWU0LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMtMzBiYmZjMDg1NWU0
LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT91hY4Yh
Eg2iu9TY5cjkWZxCqZjTlX1Rpf39Njnuh6T7zfo7i4DRAjHHWfDmpEmwfJ3UcCNE
zFW9fTkIDm/BlyzPG05w6ibjC5x5QB3sx+suqlB12Wr6waEOGyEprvYqIKuZ6Tsd
wfte8g//Ffuee3zKRi2EbWUq7RFCrsUHBPB9DfBwXwR/iTEfRAGOmc4nMuaLU1mM
Y96L5Lz84rD9pptutoIKty+WSENSp0BWBZG80eYGhOqv0PBjTQVVJ2o3/rFfDZjF
21HZ950fZ45Rb+5CTsssuo/CgNezbveilo1nAT/Yp1eg4tsIHcPS+w8v9B7jRUya
Yt21txfPmwP9cw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:04:02 2025 by rpki-client