Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
File: 3kVs200UA0XD3K6_x2NNTnzcuRM.mft (raw, json)
Hash identifier: Fa2RZMXQPu8119R9M8AXHRkl/LB3gtVQqIk4pd2HL/o=
Subject key identifier: A6:5B:99:F7:91:15:B0:4D:5B:31:1A:17:F0:CA:F7:C9:77:13:B9:43
Authority key identifier: DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
Certificate issuer: /CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Certificate serial: 0196C1266B43105575796BDEF9E590F6CE27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
Manifest number: 153F
Signing time: Sun 11 May 2025 21:00:42 +0000
Manifest this update: Sun 11 May 2025 21:00:42 +0000
Manifest next update: Mon 12 May 2025 21:00:42 +0000
Files and hashes: 1: 0wxplS04ynQiI1r3ArdsiKBCEOI.roa (hash: WDNF73KtUANe5OGg5Z8hCbK6QAlz8jWNq6iQlKA1l4A=)
2: 3kVs200UA0XD3K6_x2NNTnzcuRM.crl (hash: gdzqch12wCQhCe+UmTgArLrSHwp3fEqtrEXc+9uhDE8=)
3: JIEsiChTD9veiUWmlJ3B4QQpFuc.roa (hash: G8sz8HlJFis3zSSNKaXy4CKewTagYcW3tdUbj5SB5rw=)
4: erY5eOsE13MYDYGdz-7KiRAOTog.roa (hash: NmXI2cVM6emkr8oTXJbXMbKgJl7gRO9hnwaW3QZ2P/k=)
5: g4ZCPviGonmRGPJlO9nSng_S-lo.roa (hash: NBfLnaWFnRjJb4HXfFDgN4fD3VeUZZnkBAnPok8zBDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 21:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:26:6b:43:10:55:75:79:6b:de:f9:e5:90:f6:ce:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Validity
Not Before: May 11 21:00:42 2025 GMT
Not After : May 12 21:00:42 2025 GMT
Subject: CN=a65b99f79115b04d5b311a17f0caf7c97713b943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fc:2d:76:fa:34:09:ea:24:72:16:03:a9:f2:
85:01:f2:0f:01:98:8e:8b:76:c9:14:1e:72:e8:e0:
4d:2a:ef:56:6d:0d:fe:59:ac:0e:83:cd:96:08:dd:
2b:c6:90:fa:54:78:8a:bc:42:e1:36:1a:4b:0b:2a:
f1:32:dd:a1:0e:7c:50:bf:08:5b:2b:98:d4:d7:9b:
b4:96:5a:a9:e1:0f:ed:d5:55:97:54:c8:dc:11:98:
54:22:6d:96:5a:ac:5c:c7:9e:a5:af:0a:e8:f4:38:
86:1d:11:1d:72:35:f1:01:1f:93:42:a5:56:05:15:
c0:6e:8c:d0:59:da:e9:f5:5a:6f:b2:bd:c6:da:be:
85:95:d7:9a:e4:5d:f8:c5:41:e9:62:6a:c7:4c:48:
ae:22:e2:7f:9d:68:88:2d:4b:70:57:70:c8:8d:df:
00:92:0a:26:1a:95:bc:78:4a:74:8d:99:66:a8:cc:
ad:c3:92:33:5e:0b:ba:6e:ec:09:8f:7d:a8:d8:b5:
8e:a4:30:d7:8c:f4:a9:f5:42:41:d3:54:8b:2f:17:
af:8c:3a:3f:34:ae:8e:8b:4b:75:09:3d:ec:e9:b5:
61:f1:22:05:6d:c0:d6:27:37:61:3d:6d:fe:36:35:
d6:87:e4:31:86:10:6b:48:d0:f8:fb:49:7b:78:d8:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5B:99:F7:91:15:B0:4D:5B:31:1A:17:F0:CA:F7:C9:77:13:B9:43
X509v3 Authority Key Identifier:
keyid:DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:b6:5b:6f:f9:74:1e:86:31:ce:97:59:d5:ed:4f:27:ec:72:
fd:e0:0b:c9:0a:66:7c:41:59:1d:8c:d6:2f:4b:0a:0b:56:32:
b0:03:41:c9:b0:4b:3b:a2:17:9a:40:63:fd:27:95:6e:6d:c8:
7d:24:51:24:34:91:00:1b:48:b3:f3:a3:4f:6d:cc:20:17:c2:
de:a6:db:18:e5:98:ed:46:66:9d:28:fe:f3:50:12:72:17:ad:
bd:05:52:0d:be:8d:ed:44:cd:46:57:36:0c:82:11:34:b8:24:
30:4a:35:7d:12:c9:8d:86:6a:da:89:48:5e:53:31:98:27:5e:
2e:bf:69:d2:ee:99:c4:0f:c8:0d:6d:3a:32:27:a1:99:7a:92:
5b:41:1f:7c:a6:c9:60:c9:bb:e8:f9:a9:cf:e7:bc:49:e2:6c:
78:2c:c8:12:d0:4c:0b:4d:0e:a5:fb:2e:ab:c8:7a:a8:cc:e4:
c5:03:e0:0d:e5:1e:82:35:03:0d:c8:1a:2a:10:13:79:7c:ae:
d8:c6:2b:75:2a:d6:6e:e1:8d:38:b1:b9:69:75:19:f4:7c:a5:
0e:6f:b8:c2:93:ad:83:b9:2e:89:df:6c:90:d5:d6:f9:8e:38:
0a:cc:84:6c:c9:9a:57:28:8e:a0:e5:e6:d3:bd:46:a3:d8:09:
c2:de:78:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbBJmtDEFV1eWve+eWQ9s4nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlNDU2Y2RiNGQxNDAzNDVjM2RjYWViZmM3NjM0ZDRlN2Nk
Y2I5MTMwHhcNMjUwNTExMjEwMDQyWhcNMjUwNTEyMjEwMDQyWjAzMTEwLwYDVQQD
EyhhNjViOTlmNzkxMTViMDRkNWIzMTFhMTdmMGNhZjdjOTc3MTNiOTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfwtdvo0CeokchYDqfKFAfIPAZiO
i3bJFB5y6OBNKu9WbQ3+WawOg82WCN0rxpD6VHiKvELhNhpLCyrxMt2hDnxQvwhb
K5jU15u0llqp4Q/t1VWXVMjcEZhUIm2WWqxcx56lrwro9DiGHREdcjXxAR+TQqVW
BRXAbozQWdrp9Vpvsr3G2r6Fldea5F34xUHpYmrHTEiuIuJ/nWiILUtwV3DIjd8A
kgomGpW8eEp0jZlmqMytw5IzXgu6buwJj32o2LWOpDDXjPSp9UJB01SLLxevjDo/
NK6Oi0t1CT3s6bVh8SIFbcDWJzdhPW3+NjXWh+QxhhBrSND4+0l7eNjM6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKZbmfeRFbBNWzEaF/DK98l3E7lDMB8GA1UdIwQY
MBaAFN5FbNtNFANFw9yuv8djTU583LkTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2tWczIwMFVBMFhEM0s2X3gyTk5UbnpjdVJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yMGNiMzMtZTJiZi00NmFhLWFiZmEt
OTI4ZTdiYzY5NTcwLzEvM2tWczIwMFVBMFhEM0s2X3gyTk5UbnpjdVJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8yMGNiMzMtZTJiZi00NmFhLWFiZmEtOTI4ZTdiYzY5NTcw
LzEvM2tWczIwMFVBMFhEM0s2X3gyTk5UbnpjdVJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc7Zbb/l0
HoYxzpdZ1e1PJ+xy/eALyQpmfEFZHYzWL0sKC1YysANBybBLO6IXmkBj/SeVbm3I
fSRRJDSRABtIs/OjT23MIBfC3qbbGOWY7UZmnSj+81ASchetvQVSDb6N7UTNRlc2
DIIRNLgkMEo1fRLJjYZq2olIXlMxmCdeLr9p0u6ZxA/IDW06MiehmXqSW0EffKbJ
YMm76Pmpz+e8SeJseCzIEtBMC00Opfsuq8h6qMzkxQPgDeUegjUDDcgaKhATeXyu
2MYrdSrWbuGNOLG5aXUZ9HylDm+4wpOtg7kuid9skNXW+Y44CsyEbMmaVyiOoOXm
071Go9gJwt54IA==
-----END CERTIFICATE-----
Generated at Mon May 12 04:37:50 2025 by rpki-client