Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json)
Hash identifier: drjeF31c0/c5CRNLgSj/uMSGCnHwSTp1Qq3X8uvCKC4=
Subject key identifier: 61:BA:73:C8:87:47:7D:80:76:E5:20:75:34:CE:50:00:E7:D2:99:CB
Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93
Certificate serial: 0197B6D75339323ACDAAE785324DB8AAA984
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
Manifest number: 15C1
Signing time: Sat 28 Jun 2025 14:00:54 +0000
Manifest this update: Sat 28 Jun 2025 14:00:54 +0000
Manifest next update: Sun 29 Jun 2025 14:00:54 +0000
Files and hashes: 1: Mmi06jAh1KR0NNHlTuLcdFXGdm4.roa (hash: Q9joIkxkfDcIZMMuVnLQE37iPkqzALSBCPVV1CY/m7A=)
2: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: jCqxGF4rW6fE1KYYqPD0qc8M8CcvzicTX6Uj6tlxBZ4=)
3: bObL7vPF35vh9LuEyJYMk5yU3-U.roa (hash: eG1lFL25ltcNTKgnhPFmeY0axMsTOI37jTMaagRA/AM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:53:39:32:3a:cd:aa:e7:85:32:4d:b8:aa:a9:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93
Validity
Not Before: Jun 28 14:00:54 2025 GMT
Not After : Jun 29 14:00:54 2025 GMT
Subject: CN=61ba73c887477d8076e5207534ce5000e7d299cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:fb:58:dc:5a:c9:9e:34:fb:87:e1:54:6a:48:
66:9b:a5:c2:73:69:7c:8e:f6:23:b4:9e:59:06:8b:
93:13:b0:a4:c4:1c:ad:59:44:48:49:a2:47:eb:58:
e5:07:2c:ae:00:74:3b:1c:3a:2c:4e:92:cc:51:04:
76:41:5b:dd:c5:a7:1b:fe:4f:25:16:b8:54:85:89:
f6:b9:fc:2e:ec:65:b5:af:0d:1f:7b:a3:b3:48:b8:
42:ff:cf:43:95:f6:9e:cd:a3:6d:cf:51:cf:30:0e:
36:44:2b:1d:66:4f:41:44:b9:6b:76:35:66:4e:78:
3a:21:ac:4a:ab:90:10:4e:dc:d1:03:3b:20:a8:78:
20:50:d3:82:67:02:7e:3c:8b:31:54:14:cf:cb:1e:
bc:a9:aa:f6:d2:a2:a8:59:ef:59:b9:3b:17:96:2f:
68:90:08:2a:cf:d0:24:d2:a5:e5:f3:b7:d1:0c:a2:
a6:8c:87:19:99:02:2a:49:ae:df:d8:cf:43:89:00:
f6:01:bc:92:66:29:36:f2:f4:64:e1:1e:6c:67:3b:
c4:15:2e:27:47:59:e2:ef:b1:fc:24:7c:1a:59:a8:
ad:7d:bd:0b:e6:60:bf:94:4b:ad:ea:f8:ef:24:fe:
f2:6d:f4:28:4a:5e:26:72:c0:02:5f:9f:27:a2:43:
29:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BA:73:C8:87:47:7D:80:76:E5:20:75:34:CE:50:00:E7:D2:99:CB
X509v3 Authority Key Identifier:
keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:8b:56:93:00:2b:a3:0e:22:01:2d:72:4d:4f:a3:6d:07:76:
99:c6:fb:df:a3:12:4a:77:9e:98:42:30:b9:26:94:0b:98:89:
58:80:f3:93:a6:6a:57:e7:04:78:b3:06:51:2f:9d:87:ef:cd:
1a:71:f1:69:bd:ba:91:3d:18:51:5b:86:46:8d:25:b9:7e:d6:
f9:bc:ba:a8:db:55:a2:16:2c:c5:b8:e9:d6:e3:06:7b:2b:42:
b0:e5:23:f2:1c:d2:68:3c:79:bb:f3:b9:2e:d0:e6:04:46:d9:
25:97:aa:ff:0e:f3:a5:bf:1d:ba:c6:bb:a4:b1:0a:63:8c:f3:
50:0d:4b:cc:79:f3:b0:55:15:16:a6:8d:6a:ac:68:19:03:f3:
a8:3a:2f:a0:77:5b:d2:77:20:28:7d:ca:3e:50:4d:f7:9a:3f:
c7:6a:65:71:fd:b4:13:46:19:38:9d:84:09:a6:ea:30:6c:1d:
6c:6c:3d:be:33:dc:27:31:74:44:43:4e:00:fe:82:22:4a:76:
ec:ed:67:ed:8d:12:32:24:29:bc:bd:95:83:8a:44:e3:79:8e:
c8:8b:8b:c0:64:a3:a3:27:9d:34:bf:6b:37:77:72:f3:12:8e:
12:46:97:e2:cd:ef:ab:64:ee:46:ef:1c:dd:e0:60:45:9a:5c:
29:6c:ca:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe211M5MjrNqueFMk24qqmEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YThlOTNkM2Y1OTBmNDQ1MGQxZGIzYzIwNzQ1OTgyNDQz
NTNlOTMwHhcNMjUwNjI4MTQwMDU0WhcNMjUwNjI5MTQwMDU0WjAzMTEwLwYDVQQD
Eyg2MWJhNzNjODg3NDc3ZDgwNzZlNTIwNzUzNGNlNTAwMGU3ZDI5OWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhftY3FrJnjT7h+FUakhmm6XCc2l8
jvYjtJ5ZBouTE7CkxBytWURISaJH61jlByyuAHQ7HDosTpLMUQR2QVvdxacb/k8l
FrhUhYn2ufwu7GW1rw0fe6OzSLhC/89DlfaezaNtz1HPMA42RCsdZk9BRLlrdjVm
Tng6IaxKq5AQTtzRAzsgqHggUNOCZwJ+PIsxVBTPyx68qar20qKoWe9ZuTsXli9o
kAgqz9Ak0qXl87fRDKKmjIcZmQIqSa7f2M9DiQD2AbySZik28vRk4R5sZzvEFS4n
R1ni77H8JHwaWaitfb0L5mC/lEut6vjvJP7ybfQoSl4mcsACX58nokMphwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGG6c8iHR32AduUgdTTOUADn0pnLMB8GA1UdIwQY
MBaAFGio6T0/WQ9EUNHbPCB0WYJENT6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMt
MjVkZDRjYmIzNjk4LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMtMjVkZDRjYmIzNjk4
LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADotWkwAr
ow4iAS1yTU+jbQd2mcb736MSSneemEIwuSaUC5iJWIDzk6ZqV+cEeLMGUS+dh+/N
GnHxab26kT0YUVuGRo0luX7W+by6qNtVohYsxbjp1uMGeytCsOUj8hzSaDx5u/O5
LtDmBEbZJZeq/w7zpb8dusa7pLEKY4zzUA1LzHnzsFUVFqaNaqxoGQPzqDovoHdb
0ncgKH3KPlBN95o/x2plcf20E0YZOJ2ECabqMGwdbGw9vjPcJzF0RENOAP6CIkp2
7O1n7Y0SMiQpvL2Vg4pE43mOyIuLwGSjoyedNL9rN3dy8xKOEkaX4s3vq2TuRu8c
3eBgRZpcKWzKVw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:23 2025 by rpki-client