Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
File: AYGCKpyioAj1zRG5-duhbuLGFFk.mft (raw, json)
Hash identifier: b4a/lF79kW47VVZtEUkk7fiU9WFl3Y75kGiAtyqlHu4=
Subject key identifier: D6:95:68:63:24:07:57:52:22:8D:91:D6:44:51:7D:68:B9:00:4E:ED
Authority key identifier: 01:81:82:2A:9C:A2:A0:08:F5:CD:11:B9:F9:DB:A1:6E:E2:C6:14:59
Certificate issuer: /CN=0181822a9ca2a008f5cd11b9f9dba16ee2c61459
Certificate serial: 0197B9A1746D66637ACAA737A7B6568578D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
Manifest number: FC
Signing time: Sun 29 Jun 2025 03:00:55 +0000
Manifest this update: Sun 29 Jun 2025 03:00:55 +0000
Manifest next update: Mon 30 Jun 2025 03:00:55 +0000
Files and hashes: 1: AYGCKpyioAj1zRG5-duhbuLGFFk.crl (hash: mR5r7dn2ucjWv7JXAJn0HqA5zWA9XyWu4RpGPDUZnHk=)
2: g2CXKA0Q172jL1FvPLyV_ep5ju0.roa (hash: 11gRkpCQE+58w0mcA/1mDxt2mYAAWr8ch94H20jZvcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:74:6d:66:63:7a:ca:a7:37:a7:b6:56:85:78:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0181822a9ca2a008f5cd11b9f9dba16ee2c61459
Validity
Not Before: Jun 29 03:00:55 2025 GMT
Not After : Jun 30 03:00:55 2025 GMT
Subject: CN=d695686324075752228d91d644517d68b9004eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3e:79:e7:6e:2a:ff:98:f3:e7:99:cd:df:50:
7b:7f:c4:fd:c1:05:ca:89:5b:0d:a0:39:a9:92:8a:
cc:78:e4:50:6e:16:a4:b7:83:59:f2:f4:f7:b2:a6:
e6:5c:47:8c:d7:3a:45:93:f7:47:81:d1:5e:de:ba:
8d:05:ae:74:a6:a1:62:2e:21:bf:97:9c:aa:45:95:
b3:21:60:36:26:0d:6b:87:f0:d9:06:8b:08:5d:1b:
08:87:3b:5d:a0:f0:b5:34:b6:05:35:4e:46:04:5d:
f9:1c:11:57:53:ed:26:0d:4d:41:74:52:7b:ab:79:
fb:53:ac:91:c5:69:41:db:5a:9d:e3:85:39:e4:4b:
d5:52:d6:e8:bd:7d:a9:e4:4f:e7:9c:ae:0e:75:6e:
9d:8a:df:9a:db:6b:e9:0f:a2:85:01:ef:5d:d2:d1:
63:65:43:a7:8f:07:08:3d:00:93:7f:ce:be:ce:e6:
66:36:83:2b:e1:5c:fd:6e:6f:2a:c5:b9:9f:29:d9:
8a:dd:6c:64:b1:91:d1:14:8b:5e:57:2a:4e:62:80:
f5:07:1b:24:33:5e:09:85:ff:a1:27:28:f2:df:a1:
b9:f6:b6:92:fd:f0:c1:28:3a:c2:0e:23:21:ad:b0:
46:23:d8:f2:b4:4b:85:24:21:85:15:19:8d:15:65:
a3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:95:68:63:24:07:57:52:22:8D:91:D6:44:51:7D:68:B9:00:4E:ED
X509v3 Authority Key Identifier:
keyid:01:81:82:2A:9C:A2:A0:08:F5:CD:11:B9:F9:DB:A1:6E:E2:C6:14:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:82:12:40:65:40:c9:46:01:db:fa:4a:77:08:d0:04:70:97:
d0:f2:13:d2:96:37:2e:d5:3b:4a:18:7c:eb:19:f3:e3:53:52:
fc:dd:55:77:4c:c1:fb:f9:14:f2:60:1e:8b:d4:68:83:64:82:
08:1e:dc:02:16:00:90:8c:72:1e:55:67:df:6e:d9:77:37:ca:
66:a2:84:8d:76:23:a9:79:46:d8:33:95:f9:96:38:4c:da:c5:
bd:20:03:d9:a4:f2:86:fe:e2:44:95:a0:41:f7:93:44:ed:45:
48:77:13:01:d9:4f:31:0b:aa:67:d4:8a:f9:26:20:f7:68:e7:
df:6f:c5:aa:8d:c5:a3:05:f2:04:a9:c0:ab:9b:d0:57:e2:05:
f7:4a:c7:0c:98:3d:0a:53:90:e4:b6:06:0e:57:5c:29:02:4c:
5f:b9:82:0a:74:ff:99:6b:e3:50:c4:2c:c8:b0:e7:fb:12:7b:
01:75:8a:9c:57:47:f5:2b:77:c9:79:fd:22:67:68:b7:77:3f:
85:09:6a:34:44:41:6f:74:72:4b:bd:09:7a:89:97:d2:4a:54:
7c:ea:3c:3a:76:0d:17:7b:91:92:17:19:91:5f:83:3d:1f:b1:
c7:4f:8b:47:4d:4b:3e:4f:a8:91:e0:19:2c:46:8a:8a:33:c5:
48:9b:4b:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe5oXRtZmN6yqc3p7ZWhXjRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxODE4MjJhOWNhMmEwMDhmNWNkMTFiOWY5ZGJhMTZlZTJj
NjE0NTkwHhcNMjUwNjI5MDMwMDU1WhcNMjUwNjMwMDMwMDU1WjAzMTEwLwYDVQQD
EyhkNjk1Njg2MzI0MDc1NzUyMjI4ZDkxZDY0NDUxN2Q2OGI5MDA0ZWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3j55524q/5jz55nN31B7f8T9wQXK
iVsNoDmpkorMeORQbhakt4NZ8vT3sqbmXEeM1zpFk/dHgdFe3rqNBa50pqFiLiG/
l5yqRZWzIWA2Jg1rh/DZBosIXRsIhztdoPC1NLYFNU5GBF35HBFXU+0mDU1BdFJ7
q3n7U6yRxWlB21qd44U55EvVUtbovX2p5E/nnK4OdW6dit+a22vpD6KFAe9d0tFj
ZUOnjwcIPQCTf86+zuZmNoMr4Vz9bm8qxbmfKdmK3WxksZHRFIteVypOYoD1Bxsk
M14Jhf+hJyjy36G59raS/fDBKDrCDiMhrbBGI9jytEuFJCGFFRmNFWWj/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNaVaGMkB1dSIo2R1kRRfWi5AE7tMB8GA1UdIwQY
MBaAFAGBgiqcoqAI9c0RufnboW7ixhRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVlHQ0tweWlvQWoxelJHNS1kdWhidUxHRkZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zZTk1MjUtYTJjZS00ZTkwLTkwMGQt
ODBkNDk0NTkxMWRkLzEvQVlHQ0tweWlvQWoxelJHNS1kdWhidUxHRkZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi8zZTk1MjUtYTJjZS00ZTkwLTkwMGQtODBkNDk0NTkxMWRk
LzEvQVlHQ0tweWlvQWoxelJHNS1kdWhidUxHRkZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYIISQGVA
yUYB2/pKdwjQBHCX0PIT0pY3LtU7Shh86xnz41NS/N1Vd0zB+/kU8mAei9Rog2SC
CB7cAhYAkIxyHlVn327ZdzfKZqKEjXYjqXlG2DOV+ZY4TNrFvSAD2aTyhv7iRJWg
QfeTRO1FSHcTAdlPMQuqZ9SK+SYg92jn32/Fqo3FowXyBKnAq5vQV+IF90rHDJg9
ClOQ5LYGDldcKQJMX7mCCnT/mWvjUMQsyLDn+xJ7AXWKnFdH9St3yXn9Imdot3c/
hQlqNERBb3RyS70JeomX0kpUfOo8OnYNF3uRkhcZkV+DPR+xx0+LR01LPk+okeAZ
LEaKijPFSJtLNw==
-----END CERTIFICATE-----
Generated at Sun Jun 29 06:29:24 2025 by rpki-client