Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: KsNIuK6hLo3JEYOoHvFfpwKsZt5TmDGTa8Ja2DXv6dQ=
Subject key identifier: 34:C4:15:2F:BB:A2:C9:81:48:E4:23:98:DC:6D:66:14:24:F3:3C:8E
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 0197B70F53F280216F2CB72F74AB68E6B74E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 0AA7
Signing time: Sat 28 Jun 2025 15:02:04 +0000
Manifest this update: Sat 28 Jun 2025 15:02:04 +0000
Manifest next update: Sun 29 Jun 2025 15:02:04 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: 5OpZ4Elzvr1rxaKRjstrY7Bp1xwI284QSmpkwQLmlDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:53:f2:80:21:6f:2c:b7:2f:74:ab:68:e6:b7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: Jun 28 15:02:04 2025 GMT
Not After : Jun 29 15:02:04 2025 GMT
Subject: CN=34c4152fbba2c98148e42398dc6d661424f33c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9a:2d:4f:a2:cd:29:8a:fe:5f:8e:e1:0d:15:
8e:bb:53:33:81:82:fb:56:3a:1b:68:01:91:ba:cd:
da:08:1c:fd:92:5e:13:2f:0c:7c:2a:9c:a4:46:3d:
2d:df:c5:7c:b7:28:36:7c:95:c4:ff:ce:7a:a3:bd:
61:7e:3a:d1:fa:2a:59:56:d3:f2:f5:41:5c:5a:6f:
a2:2a:7a:bb:a1:88:e3:a7:72:a7:8d:ac:1b:28:cf:
21:9e:38:4e:ca:51:22:47:82:8d:87:7d:d5:2f:ae:
e4:4c:27:a8:f0:47:9f:55:99:77:98:25:34:ce:13:
10:36:d3:20:bf:d9:38:f3:3e:b4:ca:01:fa:f1:a4:
c3:03:e5:13:4a:90:7d:20:43:9a:17:40:36:17:fc:
f7:df:1b:86:74:30:95:9d:1f:dc:4f:20:15:f1:3c:
eb:69:68:8c:d4:cd:ca:9a:0b:9e:bc:b8:c0:7a:6b:
2e:38:79:a2:45:7d:61:a2:1d:08:3a:0f:3d:c8:09:
e4:8b:60:8a:b2:42:72:a9:c4:22:8c:9a:f8:c8:07:
b5:02:b9:86:44:ac:96:0f:c8:42:9f:07:1f:92:dc:
23:0e:7b:d3:39:3c:cf:d5:c9:b8:49:d2:51:b0:ca:
ee:eb:be:76:9a:00:55:e3:b9:43:15:fc:f2:84:0e:
2c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C4:15:2F:BB:A2:C9:81:48:E4:23:98:DC:6D:66:14:24:F3:3C:8E
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:48:e5:78:cb:f3:c2:fa:84:f4:e7:29:f1:86:a4:66:eb:df:
24:24:e6:99:4f:c2:3c:68:32:37:9c:24:7b:3f:9b:8c:fa:75:
ee:79:2d:35:26:01:72:fc:6a:f7:7d:2d:32:40:db:92:a8:48:
62:92:3c:bc:c8:0f:e4:1b:36:12:dc:7f:18:f1:ee:63:e7:7b:
6d:7a:a2:7d:ec:e0:b6:9d:51:f3:16:05:dc:1c:57:b7:96:eb:
4f:84:10:a5:93:9a:dd:f6:53:b7:97:10:0a:86:6e:4f:59:42:
0f:e8:75:a2:a3:29:08:20:34:4e:d0:11:a8:0d:23:3b:58:f5:
ae:0c:23:c0:e8:db:5e:23:61:3b:a4:bf:83:18:1f:24:56:83:
68:0e:c1:4a:f5:a9:45:d4:e1:e3:cc:03:12:86:f8:ec:de:d5:
be:c1:06:86:a1:f0:93:8d:24:cb:db:cd:80:a0:cb:7f:7e:2f:
04:68:17:e6:0e:98:55:d2:c6:9b:7c:83:83:23:7d:2c:3f:4f:
6f:54:39:86:d5:49:35:f8:d2:c4:2f:13:4b:29:f7:a8:5a:ea:
06:40:97:f3:79:90:99:23:e0:f3:a6:93:fc:6d:ac:6b:1c:80:
6f:f5:25:1b:b2:d6:d0:60:29:af:2f:0e:2e:6a:77:82:4c:a0:
12:c9:8d:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3D1PygCFvLLcvdKto5rdOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5YThlNjhkMTJhZTI5M2FmMjM2OTA0M2NkNTlhMDIwZGFj
MjQwNjIwHhcNMjUwNjI4MTUwMjA0WhcNMjUwNjI5MTUwMjA0WjAzMTEwLwYDVQQD
EygzNGM0MTUyZmJiYTJjOTgxNDhlNDIzOThkYzZkNjYxNDI0ZjMzYzhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpotT6LNKYr+X47hDRWOu1MzgYL7
VjobaAGRus3aCBz9kl4TLwx8KpykRj0t38V8tyg2fJXE/856o71hfjrR+ipZVtPy
9UFcWm+iKnq7oYjjp3KnjawbKM8hnjhOylEiR4KNh33VL67kTCeo8EefVZl3mCU0
zhMQNtMgv9k48z60ygH68aTDA+UTSpB9IEOaF0A2F/z33xuGdDCVnR/cTyAV8Tzr
aWiM1M3KmguevLjAemsuOHmiRX1hoh0IOg89yAnki2CKskJyqcQijJr4yAe1ArmG
RKyWD8hCnwcfktwjDnvTOTzP1cm4SdJRsMru6752mgBV47lDFfzyhA4sdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDTEFS+7osmBSOQjmNxtZhQk8zyOMB8GA1UdIwQY
MBaAFGmo5o0Srik68jaQQ81ZoCDawkBiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWFqbWpSS3VLVHJ5TnBCRHpWbWdJTnJDUUdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8yNDJmYWEtZWFlMy00NmE1LWI3NzQt
Mzg4MjA1NDg3NTVjLzEvYWFqbWpSS3VLVHJ5TnBCRHpWbWdJTnJDUUdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC8yNDJmYWEtZWFlMy00NmE1LWI3NzQtMzg4MjA1NDg3NTVj
LzEvYWFqbWpSS3VLVHJ5TnBCRHpWbWdJTnJDUUdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgkjleMvz
wvqE9Ocp8YakZuvfJCTmmU/CPGgyN5wkez+bjPp17nktNSYBcvxq930tMkDbkqhI
YpI8vMgP5Bs2Etx/GPHuY+d7bXqifezgtp1R8xYF3BxXt5brT4QQpZOa3fZTt5cQ
CoZuT1lCD+h1oqMpCCA0TtARqA0jO1j1rgwjwOjbXiNhO6S/gxgfJFaDaA7BSvWp
RdTh48wDEob47N7VvsEGhqHwk40ky9vNgKDLf34vBGgX5g6YVdLGm3yDgyN9LD9P
b1Q5htVJNfjSxC8TSyn3qFrqBkCX83mQmSPg86aT/G2saxyAb/UlG7LW0GApry8O
Lmp3gkygEsmNvQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:52:37 2025 by rpki-client