Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
File: 3keU2fyrI-wF3d1QSKP8cgQAKio.mft (raw, json)
Hash identifier: ONnpJCk+qYNk0Vmn8oHs9aIlvnkqp6dLgErx5jRih5c=
Subject key identifier: 72:EF:09:A9:03:10:33:73:72:8E:54:B6:1B:4E:0F:C4:A5:9B:42:56
Authority key identifier: DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
Certificate issuer: /CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Certificate serial: 0197BA0F269320A09FA2CB637E214FDADE33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
Manifest number: 0EE6
Signing time: Sun 29 Jun 2025 05:00:44 +0000
Manifest this update: Sun 29 Jun 2025 05:00:44 +0000
Manifest next update: Mon 30 Jun 2025 05:00:44 +0000
Files and hashes: 1: 3keU2fyrI-wF3d1QSKP8cgQAKio.crl (hash: 5OD19F7mvOUcTYA41InzOPZdA/3D1YKDqAQFJoC9MjQ=)
2: ZK9gU4FBN8KUQTPHGhgGaXPIWjk.roa (hash: YFHfAWvmuV1pyKRAlUfEUWxi+ZLKrTZD/d9TC0Av1JQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:26:93:20:a0:9f:a2:cb:63:7e:21:4f:da:de:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Validity
Not Before: Jun 29 05:00:44 2025 GMT
Not After : Jun 30 05:00:44 2025 GMT
Subject: CN=72ef09a903103373728e54b61b4e0fc4a59b4256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:83:aa:43:8c:02:83:8d:09:6c:07:43:44:3d:
2e:f4:ae:63:59:1f:59:a8:66:4f:e2:fe:a4:58:62:
58:d8:e5:ed:aa:e6:6c:1c:85:8e:2d:42:d1:19:29:
e8:91:4f:8a:2d:3f:fa:ca:63:d6:9f:66:b6:86:ca:
78:b9:55:8c:b6:8a:3b:48:d0:bc:4c:50:32:f6:4d:
2f:58:c8:1c:9e:b5:3c:14:b5:ba:3a:45:12:50:6e:
82:a9:17:40:49:92:c2:87:0e:69:b7:02:0f:2d:67:
cc:af:18:f6:31:1c:46:4a:43:48:e1:3e:2b:0a:fb:
f8:f3:1c:3a:c6:18:53:ba:7f:0f:23:22:a7:8c:2e:
28:a3:e4:e7:41:32:97:53:8d:e2:06:b2:0e:19:9e:
24:e6:85:64:39:43:99:2a:3c:96:7e:ff:81:1e:e6:
64:6f:e4:37:b0:c1:f0:5a:dc:b3:69:ec:a4:3f:c2:
9a:9d:2e:7c:e2:ba:30:ee:35:a0:92:e5:17:00:0d:
14:63:a0:e3:00:1e:0c:df:45:9d:a6:9f:ee:08:e0:
73:43:14:39:f6:ec:f8:f3:d3:6c:32:2b:7d:eb:2c:
99:43:ae:01:df:2f:d0:2a:10:2b:f6:51:7a:b1:3b:
1c:c5:a0:47:35:1b:4f:3d:6a:91:95:8f:3a:d3:52:
34:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EF:09:A9:03:10:33:73:72:8E:54:B6:1B:4E:0F:C4:A5:9B:42:56
X509v3 Authority Key Identifier:
keyid:DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:11:1f:14:59:86:c0:17:e5:ff:73:e0:f5:64:44:16:5e:aa:
78:a6:74:89:12:bb:c2:ab:1c:33:fc:77:31:50:e4:d7:4b:ac:
3a:22:2b:08:5f:73:aa:0e:a9:11:eb:c9:5f:ad:5f:07:65:bf:
0f:7f:eb:27:79:d8:b6:f3:d8:48:72:a1:30:db:54:75:17:85:
70:14:09:2f:2e:88:ce:f8:a9:fd:c1:8a:1d:f4:73:17:41:cd:
0d:fb:5c:e4:c9:7e:a8:51:c9:bd:65:f2:01:ec:dd:73:52:9d:
0a:d2:f9:ea:87:af:e4:e7:01:6a:13:aa:78:e4:3e:9a:e5:23:
9d:0b:fd:cb:5e:4c:19:c4:5d:50:b6:92:f7:38:81:5b:f8:b3:
70:33:b2:34:6f:d4:3c:11:31:74:2a:f8:bc:9a:39:60:60:7a:
47:38:bf:40:9b:3f:c5:de:a8:55:3f:c2:74:44:f3:07:8b:cc:
25:68:90:08:46:cb:e5:62:8b:13:8e:bc:ba:5a:0d:69:b1:09:
6a:d2:68:e8:5b:d8:70:bf:09:0c:83:d6:f0:6e:10:69:1f:6e:
10:56:a0:b2:93:08:dc:9b:af:c4:54:f1:56:4d:4e:63:c7:bd:
f7:8c:e6:22:76:cb:11:5d:96:13:a7:83:a2:14:67:00:2a:ea:
43:02:95:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6DyaTIKCfostjfiFP2t4zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlNDc5NGQ5ZmNhYjIzZWMwNWRkZGQ1MDQ4YTNmYzcyMDQw
MDJhMmEwHhcNMjUwNjI5MDUwMDQ0WhcNMjUwNjMwMDUwMDQ0WjAzMTEwLwYDVQQD
Eyg3MmVmMDlhOTAzMTAzMzczNzI4ZTU0YjYxYjRlMGZjNGE1OWI0MjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYOqQ4wCg40JbAdDRD0u9K5jWR9Z
qGZP4v6kWGJY2OXtquZsHIWOLULRGSnokU+KLT/6ymPWn2a2hsp4uVWMtoo7SNC8
TFAy9k0vWMgcnrU8FLW6OkUSUG6CqRdASZLChw5ptwIPLWfMrxj2MRxGSkNI4T4r
Cvv48xw6xhhTun8PIyKnjC4oo+TnQTKXU43iBrIOGZ4k5oVkOUOZKjyWfv+BHuZk
b+Q3sMHwWtyzaeykP8KanS584row7jWgkuUXAA0UY6DjAB4M30Wdpp/uCOBzQxQ5
9uz489NsMit96yyZQ64B3y/QKhAr9lF6sTscxaBHNRtPPWqRlY8601I05wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHLvCakDEDNzco5UthtOD8Slm0JWMB8GA1UdIwQY
MBaAFN5HlNn8qyPsBd3dUEij/HIEACoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDIt
ZjAxMTI5Mzk1M2Y1LzEvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDItZjAxMTI5Mzk1M2Y1
LzEvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGBEfFFmG
wBfl/3Pg9WREFl6qeKZ0iRK7wqscM/x3MVDk10usOiIrCF9zqg6pEevJX61fB2W/
D3/rJ3nYtvPYSHKhMNtUdReFcBQJLy6Izvip/cGKHfRzF0HNDftc5Ml+qFHJvWXy
Aezdc1KdCtL56oev5OcBahOqeOQ+muUjnQv9y15MGcRdULaS9ziBW/izcDOyNG/U
PBExdCr4vJo5YGB6Rzi/QJs/xd6oVT/CdETzB4vMJWiQCEbL5WKLE468uloNabEJ
atJo6FvYcL8JDIPW8G4QaR9uEFagspMI3JuvxFTxVk1OY8e994zmInbLEV2WE6eD
ohRnACrqQwKVdg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 14:34:07 2025 by rpki-client