Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: sMjg3Ow2JK6UmF1DCEbzjk14HfbuXpGrTVAcC9+23wk=
Subject key identifier: FE:AC:82:4C:E2:D8:F8:C7:BB:CE:2B:75:77:BC:CB:08:7A:77:DF:80
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 0196CBA9F9F0C434CF07A77743D9CE70D086
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 1549
Signing time: Tue 13 May 2025 22:00:36 +0000
Manifest this update: Tue 13 May 2025 22:00:36 +0000
Manifest next update: Wed 14 May 2025 22:00:36 +0000
Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: QHNi00dVoxVd1vKw3mm174EI3SWDbmBiXq/CflflJf4=)
2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
4: KYs_VMmQL9k2rQHns_O4m4f35bc.roa (hash: 1ns98Zta2gRWyrvr5wyrj8EwmfBa9CnA+/wYUmR2SA0=)
5: ThB5ArM42WkjWUEQcQYsflTBSWo.roa (hash: bddz7FyKEk1/5lgcU0RqcQHG7LiGlbilafV868t6FT4=)
6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
7: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
8: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:a9:f9:f0:c4:34:cf:07:a7:77:43:d9:ce:70:d0:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: May 13 22:00:36 2025 GMT
Not After : May 14 22:00:36 2025 GMT
Subject: CN=feac824ce2d8f8c7bbce2b7577bccb087a77df80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:48:0e:e2:a0:d8:b5:28:8c:c4:25:0c:fa:65:
64:a2:d3:2e:b9:8f:db:70:9d:85:cb:cd:fe:c5:30:
20:fa:ac:e2:b9:bd:86:dc:89:fc:0c:d7:70:54:59:
28:43:a7:0a:7e:d1:42:ff:98:c5:1a:bd:c6:38:c4:
6f:ae:36:1b:48:48:e9:63:e9:b5:b1:da:7a:1a:65:
08:61:3f:a1:d7:f1:76:0d:33:ed:62:d2:42:ba:8c:
c6:0e:f1:af:df:41:28:29:31:d9:7e:ab:a8:0e:ba:
fa:36:bb:4c:8b:49:3c:b8:4d:fd:1a:ef:f9:39:f0:
25:59:44:9e:84:57:9e:22:dc:ef:49:31:4d:db:14:
5a:29:13:e7:fb:98:9a:f9:72:04:9a:8b:de:c7:cb:
89:6d:4b:73:11:2e:54:c7:7a:49:e0:82:46:92:c1:
ee:8c:b2:fc:76:c7:47:dd:29:b3:6d:54:41:9d:e4:
8c:8f:ab:44:f0:9e:e2:a4:9f:45:b9:0d:df:75:f4:
d9:cb:8d:fa:1b:54:5f:f9:af:07:32:9a:b3:41:43:
70:02:9b:c3:46:b5:dc:66:2e:bc:5e:7d:fd:36:00:
86:c4:07:13:db:dd:8f:b4:fb:ad:58:23:b1:cc:f1:
ee:7e:7f:42:5c:f4:2c:2e:fb:22:35:79:65:46:11:
d9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AC:82:4C:E2:D8:F8:C7:BB:CE:2B:75:77:BC:CB:08:7A:77:DF:80
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:11:b8:2a:8e:80:6e:b2:df:c0:b0:53:3a:f7:4b:13:61:05:
a9:90:9d:07:d0:22:3e:0a:be:23:c6:e5:ab:ec:8b:02:1b:5a:
cb:6c:fe:ea:a1:8e:56:ef:6f:c1:64:f6:16:5b:15:21:b0:1a:
98:c6:33:b8:96:4a:36:f0:9a:a8:cd:3a:80:72:3b:c0:6d:9b:
3c:28:17:53:c3:22:9a:d1:74:35:f2:94:51:2c:c2:3d:5d:41:
13:2a:46:b0:f7:3d:75:19:3a:f9:33:21:5b:85:1e:be:67:bd:
06:c9:cd:3b:ac:08:01:90:b1:2f:c3:14:75:57:66:91:3a:a4:
fc:49:80:33:43:e1:ea:82:64:aa:b7:aa:9c:35:5b:d7:4e:6b:
f5:e4:8e:30:e4:41:e8:0d:ed:25:1b:80:47:35:76:b8:48:a7:
9d:c4:c6:74:c4:70:d7:7b:47:71:67:33:9c:ef:6d:12:85:6b:
3d:39:db:84:f4:4a:7a:09:86:1c:5a:f1:c1:f9:db:b3:9e:14:
24:78:35:e3:24:e6:38:d7:ac:9b:46:ad:ac:3a:f6:b3:14:41:
82:3d:c3:18:82:9f:1d:fa:14:9c:c7:72:d6:3f:06:5f:19:9b:
88:68:6f:05:49:98:c2:42:41:7c:61:00:2b:1c:bd:67:95:e7:
71:94:f4:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbLqfnwxDTPB6d3Q9nOcNCGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4
MTNjNWYwHhcNMjUwNTEzMjIwMDM2WhcNMjUwNTE0MjIwMDM2WjAzMTEwLwYDVQQD
EyhmZWFjODI0Y2UyZDhmOGM3YmJjZTJiNzU3N2JjY2IwODdhNzdkZjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUgO4qDYtSiMxCUM+mVkotMuuY/b
cJ2Fy83+xTAg+qziub2G3In8DNdwVFkoQ6cKftFC/5jFGr3GOMRvrjYbSEjpY+m1
sdp6GmUIYT+h1/F2DTPtYtJCuozGDvGv30EoKTHZfquoDrr6NrtMi0k8uE39Gu/5
OfAlWUSehFeeItzvSTFN2xRaKRPn+5ia+XIEmovex8uJbUtzES5Ux3pJ4IJGksHu
jLL8dsdH3SmzbVRBneSMj6tE8J7ipJ9FuQ3fdfTZy436G1Rf+a8HMpqzQUNwApvD
RrXcZi68Xn39NgCGxAcT292PtPutWCOxzPHufn9CXPQsLvsiNXllRhHZqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP6sgkzi2PjHu84rdXe8ywh6d9+AMB8GA1UdIwQY
MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt
ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli
LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASRG4Ko6A
brLfwLBTOvdLE2EFqZCdB9AiPgq+I8blq+yLAhtay2z+6qGOVu9vwWT2FlsVIbAa
mMYzuJZKNvCaqM06gHI7wG2bPCgXU8MimtF0NfKUUSzCPV1BEypGsPc9dRk6+TMh
W4Uevme9BsnNO6wIAZCxL8MUdVdmkTqk/EmAM0Ph6oJkqreqnDVb105r9eSOMORB
6A3tJRuARzV2uEinncTGdMRw13tHcWcznO9tEoVrPTnbhPRKegmGHFrxwfnbs54U
JHg14yTmONesm0atrDr2sxRBgj3DGIKfHfoUnMdy1j8GXxmbiGhvBUmYwkJBfGEA
Kxy9Z5XncZT02g==
-----END CERTIFICATE-----
Generated at Wed May 14 03:37:40 2025 by rpki-client