Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: Bm3pbwo/I9qVxVt7ZT+RlYXbrlOXFKpGq1neb3EybtU=
Subject key identifier: B6:9E:6B:1C:53:85:26:4A:A8:7D:F2:E9:36:AB:DF:F8:7B:9E:11:54
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 0196BD12BC95F6473455CD8F427FCBD30CB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 0D19
Signing time: Sun 11 May 2025 02:00:43 +0000
Manifest this update: Sun 11 May 2025 02:00:43 +0000
Manifest next update: Mon 12 May 2025 02:00:43 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: QI1SPL2sN7cCaXp9Rj16z2j0VOzfNiXFuZG7jKee7iQ=)
2: D7PGGduIwX7v-ShQSUz8OVV9C1w.roa (hash: 7ckgBrpQ8LkiNGwk/n+SRdsap+chU5QW5iJNm8qHanE=)
3: IrsYdpqcOnQ3SpbKBx6nFfzcVrQ.roa (hash: AIbJqohxVTkRlwXht+/E+fE7aYFk0d/YsXjveY/e/+A=)
4: QV_KHSRk0F1p49xmdU8Cjw9F95k.roa (hash: bXFoeKrbp3I/mSHJx/SNzgxE/ZuKpJd2GAhpkwSz+z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:12:bc:95:f6:47:34:55:cd:8f:42:7f:cb:d3:0c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: May 11 02:00:43 2025 GMT
Not After : May 12 02:00:43 2025 GMT
Subject: CN=b69e6b1c5385264aa87df2e936abdff87b9e1154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:93:e5:a2:fc:af:b9:7e:1e:7c:5f:cb:8d:fb:
af:50:51:7a:cf:2d:65:6d:66:de:06:08:37:8f:61:
10:2c:b9:0c:ea:4c:62:9b:0e:cd:4e:ec:5f:73:d7:
83:9c:e2:7d:c3:d8:93:19:c9:10:e1:72:60:a3:b4:
97:a3:4b:3f:78:23:9e:86:e2:81:9e:c3:8f:32:f4:
02:76:b7:c1:92:9b:96:99:d9:bd:7c:0e:8f:b2:9d:
9c:fe:d2:c5:c5:d7:5a:05:24:08:21:9c:af:0b:c9:
57:90:bf:da:e1:18:6a:c9:80:c0:3a:0a:33:de:6b:
b4:fb:68:a3:05:4f:d4:8c:52:ab:91:2b:3f:ed:f5:
f7:83:1f:4c:c2:53:81:61:03:1c:fc:42:01:9c:fb:
d5:ec:f5:d2:20:05:41:55:6a:38:0e:27:fc:61:8d:
f5:1b:fd:9a:dd:2b:3e:dd:5f:08:93:fe:ca:09:dd:
d1:ec:96:b2:8c:21:39:2d:e2:ef:c8:bd:c1:3a:7f:
61:05:40:8f:3e:2f:fc:0a:de:e7:96:65:d2:99:69:
3d:4d:c0:28:8e:91:c6:b3:14:36:3b:be:4a:11:85:
ac:5c:d2:c8:06:b1:f3:01:f3:74:04:ce:90:35:af:
7a:f1:ad:23:ac:90:88:80:12:35:36:ee:bf:a8:c0:
95:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:9E:6B:1C:53:85:26:4A:A8:7D:F2:E9:36:AB:DF:F8:7B:9E:11:54
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:21:b8:a9:6e:ce:63:b0:1d:ee:ea:9e:48:54:19:2a:14:45:
8d:78:ec:e8:a9:2a:ed:26:cb:61:5d:53:d2:67:3b:b2:16:a3:
2a:99:4c:bd:89:ff:54:2a:16:8c:5d:06:66:8b:2a:9d:87:5a:
dd:b2:2e:93:73:7f:54:e0:40:60:d9:24:6b:93:01:48:c9:61:
91:65:45:1f:0b:00:da:eb:92:36:50:8b:18:16:d6:27:6d:b8:
2b:8c:d6:3b:45:c3:78:f9:8d:e1:3b:be:87:41:e3:5d:c0:c8:
d9:18:57:5b:b6:fd:81:ad:ed:7d:12:c9:a1:c6:f1:04:7c:01:
4c:88:b6:1e:a5:8d:7a:1d:d8:e1:46:67:3d:2c:4d:34:78:1c:
23:76:e1:a6:67:3e:d8:5a:d7:2b:5e:5f:c1:9e:ae:e3:d7:50:
6f:bb:1f:6b:05:33:c2:a9:3c:e4:b9:25:43:1c:9e:a2:82:0d:
7f:de:bc:1d:0b:41:52:0a:ad:13:23:30:b9:5a:f7:4d:23:ea:
61:20:f4:47:0b:ec:46:5a:80:2d:87:0d:5d:9b:7d:fc:50:b0:
86:de:a8:f4:36:5f:11:38:c1:2d:82:e1:4e:ee:1c:72:0b:1c:
62:84:97:18:60:b4:95:84:85:dd:98:b3:b4:2c:e7:bf:c8:49:
c7:3b:54:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa9EryV9kc0Vc2PQn/L0wyyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNjQwMzM5ZTU5YWRkYzc1ZmQ5NzgxMDFiNDAwODJiNWQy
Yjg3OTYwHhcNMjUwNTExMDIwMDQzWhcNMjUwNTEyMDIwMDQzWjAzMTEwLwYDVQQD
EyhiNjllNmIxYzUzODUyNjRhYTg3ZGYyZTkzNmFiZGZmODdiOWUxMTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA95PlovyvuX4efF/LjfuvUFF6zy1l
bWbeBgg3j2EQLLkM6kximw7NTuxfc9eDnOJ9w9iTGckQ4XJgo7SXo0s/eCOehuKB
nsOPMvQCdrfBkpuWmdm9fA6Psp2c/tLFxddaBSQIIZyvC8lXkL/a4RhqyYDAOgoz
3mu0+2ijBU/UjFKrkSs/7fX3gx9MwlOBYQMc/EIBnPvV7PXSIAVBVWo4Dif8YY31
G/2a3Ss+3V8Ik/7KCd3R7JayjCE5LeLvyL3BOn9hBUCPPi/8Ct7nlmXSmWk9TcAo
jpHGsxQ2O75KEYWsXNLIBrHzAfN0BM6QNa968a0jrJCIgBI1Nu6/qMCVhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLaeaxxThSZKqH3y6Tar3/h7nhFUMB8GA1UdIwQY
MBaAFN1kAznlmt3HX9l4EBtACCtdK4eWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1dRRE9lV2EzY2RmMlhnUUcwQUlLMTByaDVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83NjE2ZTUtYThjYy00NWQxLWIzZDAt
NjFiNzMzNTRhYmRiLzEvM1dRRE9lV2EzY2RmMlhnUUcwQUlLMTByaDVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy83NjE2ZTUtYThjYy00NWQxLWIzZDAtNjFiNzMzNTRhYmRi
LzEvM1dRRE9lV2EzY2RmMlhnUUcwQUlLMTByaDVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuiG4qW7O
Y7Ad7uqeSFQZKhRFjXjs6Kkq7SbLYV1T0mc7shajKplMvYn/VCoWjF0GZosqnYda
3bIuk3N/VOBAYNkka5MBSMlhkWVFHwsA2uuSNlCLGBbWJ224K4zWO0XDePmN4Tu+
h0HjXcDI2RhXW7b9ga3tfRLJocbxBHwBTIi2HqWNeh3Y4UZnPSxNNHgcI3bhpmc+
2FrXK15fwZ6u49dQb7sfawUzwqk85LklQxyeooINf968HQtBUgqtEyMwuVr3TSPq
YSD0RwvsRlqALYcNXZt9/FCwht6o9DZfETjBLYLhTu4ccgscYoSXGGC0lYSF3Ziz
tCznv8hJxztUWw==
-----END CERTIFICATE-----
Generated at Sun May 11 05:26:46 2025 by rpki-client