Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: hK7yqZPHAvXoQbJEwuVNToGdkp7t7EJZf9NE/clglpw=
Subject key identifier: 53:4D:D2:6C:5A:52:2E:9F:A2:07:AA:86:C6:65:08:ED:26:1E:D9:C8
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 0197B632A584FE683DCC5CAEDF96B60A656D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 05F2
Signing time: Sat 28 Jun 2025 11:01:01 +0000
Manifest this update: Sat 28 Jun 2025 11:01:01 +0000
Manifest next update: Sun 29 Jun 2025 11:01:01 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: tbU+zHbxM3MCMKCwzmLNzryqGoGZaQmABfl81DPiuTQ=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:a5:84:fe:68:3d:cc:5c:ae:df:96:b6:0a:65:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Jun 28 11:01:01 2025 GMT
Not After : Jun 29 11:01:01 2025 GMT
Subject: CN=534dd26c5a522e9fa207aa86c66508ed261ed9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:89:93:68:fd:57:c4:4e:bd:a0:dd:f5:a3:a2:
88:fb:7f:4b:1e:e4:e5:cd:f4:8a:c0:8c:90:3e:a6:
73:6d:e9:97:7a:54:80:68:9a:bd:cc:80:ed:66:8d:
31:ac:8a:42:10:2c:2e:d3:c9:83:c3:06:a5:e2:7b:
c6:90:2f:7c:c2:f3:0b:bb:05:fd:23:5a:3a:eb:9b:
05:17:44:e0:a3:70:d4:cb:fb:44:6e:e8:05:9d:c8:
bb:66:2a:df:60:de:da:96:98:94:73:70:33:e6:9d:
70:c3:99:a6:49:0c:c3:a0:ff:4f:c6:ca:ff:db:76:
34:e9:b9:5b:6b:05:61:c5:ad:8d:1b:be:7c:f6:06:
18:d2:6c:df:36:04:f8:31:b8:b7:f3:9a:6b:d2:2d:
b5:d6:11:1d:32:d6:e3:f6:d0:e7:e3:ec:ce:e9:16:
99:a8:a5:bb:4a:3a:a8:a6:fe:9c:1d:d5:aa:b4:7f:
13:19:47:00:70:4e:47:bc:28:e5:59:ff:d2:fb:db:
4c:80:59:e4:b6:ff:d4:47:6b:97:ae:9c:0f:e3:91:
05:17:09:b3:f5:b3:fc:74:7d:d6:f8:f3:bb:26:11:
96:8a:cc:7a:c2:89:8a:e3:52:df:68:93:69:54:90:
33:09:71:71:c7:25:8c:eb:54:01:45:ed:f5:a1:13:
ed:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:4D:D2:6C:5A:52:2E:9F:A2:07:AA:86:C6:65:08:ED:26:1E:D9:C8
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:e7:d6:80:35:4a:85:b6:07:9f:9b:21:63:31:d0:ea:f6:4f:
33:e6:ac:30:cb:12:45:4c:6e:e4:d5:47:55:6a:7c:63:4d:d1:
71:b3:05:a2:e7:1e:1d:4a:be:1a:e1:b7:ed:aa:e4:5e:e2:3d:
47:5a:4b:5a:d5:14:af:7e:47:c7:84:a4:e4:a5:0d:44:2f:3a:
89:ff:cb:be:70:8d:e4:c3:90:be:6a:13:fd:00:15:2f:b3:f6:
99:e2:4f:10:15:93:33:11:bb:7f:ed:e1:04:c8:a2:64:13:2f:
f9:26:e1:b4:e9:87:b3:a0:bc:ed:1d:34:11:3b:50:19:77:d1:
cf:87:5d:ff:1c:c9:9f:b6:7d:2f:27:06:39:f6:6e:6f:de:e4:
2b:9e:24:ca:fc:8e:07:15:a4:ba:73:af:5e:e1:ac:34:cf:2e:
2a:a6:79:89:25:12:2e:ed:a8:50:62:94:a7:43:33:6e:64:87:
3e:58:d6:18:8f:c1:c2:f2:9f:33:b1:23:53:a1:d5:89:99:f5:
02:96:dc:35:18:a4:e8:89:39:71:d7:6f:87:0c:f3:a2:d5:aa:
6b:fd:8a:f1:61:ee:df:1d:25:52:f6:23:ed:40:56:b2:d2:13:
74:03:2d:1c:9d:40:9c:37:6f:5a:e5:53:5c:6a:90:c0:5b:1b:
ee:70:aa:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2MqWE/mg9zFyu35a2CmVtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NWRjZTVlMzdhODYyNTM4YTBmNjY4ODNkZTIwNmZmYjdj
OTNiNjkwHhcNMjUwNjI4MTEwMTAxWhcNMjUwNjI5MTEwMTAxWjAzMTEwLwYDVQQD
Eyg1MzRkZDI2YzVhNTIyZTlmYTIwN2FhODZjNjY1MDhlZDI2MWVkOWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtomTaP1XxE69oN31o6KI+39LHuTl
zfSKwIyQPqZzbemXelSAaJq9zIDtZo0xrIpCECwu08mDwwal4nvGkC98wvMLuwX9
I1o665sFF0Tgo3DUy/tEbugFnci7ZirfYN7alpiUc3Az5p1ww5mmSQzDoP9Pxsr/
23Y06blbawVhxa2NG7589gYY0mzfNgT4Mbi385pr0i211hEdMtbj9tDn4+zO6RaZ
qKW7Sjqopv6cHdWqtH8TGUcAcE5HvCjlWf/S+9tMgFnktv/UR2uXrpwP45EFFwmz
9bP8dH3W+PO7JhGWisx6womK41LfaJNpVJAzCXFxxyWM61QBRe31oRPtcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFNN0mxaUi6fogeqhsZlCO0mHtnIMB8GA1UdIwQY
MBaAFGldzl43qGJTig9miD3iBv+3yTtpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWIt
MDE3ZGVlNDUyZWM0LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWItMDE3ZGVlNDUyZWM0
LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj+fWgDVK
hbYHn5shYzHQ6vZPM+asMMsSRUxu5NVHVWp8Y03RcbMFouceHUq+GuG37arkXuI9
R1pLWtUUr35Hx4Sk5KUNRC86if/LvnCN5MOQvmoT/QAVL7P2meJPEBWTMxG7f+3h
BMiiZBMv+SbhtOmHs6C87R00ETtQGXfRz4dd/xzJn7Z9LycGOfZub97kK54kyvyO
BxWkunOvXuGsNM8uKqZ5iSUSLu2oUGKUp0MzbmSHPljWGI/BwvKfM7EjU6HViZn1
ApbcNRik6Ik5cddvhwzzotWqa/2K8WHu3x0lUvYj7UBWstITdAMtHJ1AnDdvWuVT
XGqQwFsb7nCqPg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:45:04 2025 by rpki-client