Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json)
Hash identifier: 10mxs2kzFhrHzUa0P85AgH8V+2EEkZgWGLzNb42lRy8=
Subject key identifier: 6C:13:8C:C6:F6:0D:DB:DC:05:9F:EF:B0:FB:E4:64:ED:C7:D5:77:E4
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 0196B7472A06581BDC9B4D8ED5C225C8AD87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
Manifest number: 1273
Signing time: Fri 09 May 2025 23:00:16 +0000
Manifest this update: Fri 09 May 2025 23:00:16 +0000
Manifest next update: Sat 10 May 2025 23:00:16 +0000
Files and hashes: 1: 0dT9gx4qOXkpqZlNkbev_-uBl0c.roa (hash: AhSSJUvXXS4MCpfi02OS/Sl/WMScliKSAGKKpGr/omg=)
2: Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa (hash: XvpOhA/u1tpu0r7xTILje32qKTHGeywG7gPta8XZExU=)
3: S7cvUB4j_UAWLlorKkQpKplvSek.roa (hash: BzDMJKCxDcsJF5G/pnwJpmaeHc/VSanQaPg+mRpgeIU=)
4: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: J+fqAX8SS0cJJAn/qXq1l3bQq6vogpvtyPnw/NvXEWQ=)
5: p5Pxp-2R2mpxd_TdGf_xD9MyhUg.roa (hash: 8XfSlLN4HMzOCIW1k555GHmyKjvtxd9c3WvZ5/ZNc5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 23:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:47:2a:06:58:1b:dc:9b:4d:8e:d5:c2:25:c8:ad:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: May 9 23:00:16 2025 GMT
Not After : May 10 23:00:16 2025 GMT
Subject: CN=6c138cc6f60ddbdc059fefb0fbe464edc7d577e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:32:62:79:80:b7:4b:f4:c3:60:6f:98:0f:96:
13:f0:b7:9f:81:2d:fb:f9:2d:e9:0f:57:67:45:e4:
0c:e5:70:e4:d2:4b:12:a4:e0:58:c8:b8:50:3f:e7:
a4:35:0c:37:63:50:03:5c:6a:78:bb:3b:3f:12:e5:
0c:d8:0e:23:66:c2:7a:e1:16:54:b6:2a:c2:b2:ff:
24:12:c8:1b:29:11:c3:9d:ed:f3:e3:29:2a:38:10:
c1:7a:68:ab:46:42:db:d3:de:32:63:49:56:a6:10:
9c:56:82:62:77:d0:87:af:f3:7d:76:6f:98:e3:9e:
5a:fb:23:74:e5:00:10:b7:27:24:1a:d8:38:ce:e2:
c5:ea:67:0b:eb:d1:27:c9:38:5d:23:95:87:3d:8e:
ab:4b:5c:3b:b0:60:fb:dd:e0:63:93:6e:c8:15:e2:
f6:85:61:15:49:ef:ff:1b:90:1a:98:95:18:b6:1d:
7f:36:ad:29:06:e5:e5:fc:6d:ab:2f:fa:c4:7d:d4:
68:7f:17:24:de:53:cb:23:da:d2:d0:c9:32:76:e0:
d0:d6:3e:77:2e:73:ec:69:2e:07:69:b7:b7:17:64:
23:27:14:3e:82:1a:29:84:3d:f7:c2:ae:56:be:d7:
87:8f:59:a4:95:60:9b:ba:65:2b:7e:98:46:47:46:
b5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:13:8C:C6:F6:0D:DB:DC:05:9F:EF:B0:FB:E4:64:ED:C7:D5:77:E4
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ec:a5:d0:e3:d4:20:d3:41:c0:46:26:f1:3e:ee:d0:d2:d5:0f:
67:b0:09:b2:a6:e1:c8:3a:13:0e:35:0b:f6:61:67:1d:09:a1:
b8:59:42:73:e8:7a:74:28:d3:ae:bf:42:a9:3f:80:b4:ac:cf:
06:02:7f:13:3b:c1:ee:56:01:a4:ec:f0:f5:c7:74:b1:64:67:
33:9d:f8:98:53:74:79:fc:83:a0:59:a3:41:ca:eb:fc:3b:91:
dc:3f:37:81:8e:b4:ef:ec:23:d4:f0:42:cd:0f:f9:6f:58:6e:
dc:b0:24:49:0c:dd:6c:52:d3:62:8d:cc:21:26:ae:c1:44:1d:
5e:c4:93:68:01:02:7f:67:73:35:99:d7:b2:76:70:dc:4f:e5:
05:2b:ba:3b:b5:21:74:94:5f:65:da:51:08:58:09:2d:41:6f:
78:04:c8:26:4e:11:12:84:c0:62:6d:04:6a:ef:b5:ee:38:7b:
36:fd:19:2f:ad:f8:fe:6c:12:65:fa:45:c1:e6:96:57:41:8b:
43:84:ee:8b:57:b6:e0:37:b8:1a:fe:82:72:87:11:d3:18:4e:
b2:2f:f4:77:ff:79:76:ea:0e:28:76:a2:66:cb:72:39:07:8f:
a2:f8:ca:0b:3b:c1:af:42:2a:f9:ba:78:ee:f7:df:74:5d:0d:
49:a0:e0:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa3RyoGWBvcm02O1cIlyK2HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5YTRkNjkxNmI5MzE1OWFhODA5ODRhOWIzNzc0NjgzYmI1
NTBlYmQwHhcNMjUwNTA5MjMwMDE2WhcNMjUwNTEwMjMwMDE2WjAzMTEwLwYDVQQD
Eyg2YzEzOGNjNmY2MGRkYmRjMDU5ZmVmYjBmYmU0NjRlZGM3ZDU3N2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDJieYC3S/TDYG+YD5YT8LefgS37
+S3pD1dnReQM5XDk0ksSpOBYyLhQP+ekNQw3Y1ADXGp4uzs/EuUM2A4jZsJ64RZU
tirCsv8kEsgbKRHDne3z4ykqOBDBemirRkLb094yY0lWphCcVoJid9CHr/N9dm+Y
455a+yN05QAQtyckGtg4zuLF6mcL69EnyThdI5WHPY6rS1w7sGD73eBjk27IFeL2
hWEVSe//G5AamJUYth1/Nq0pBuXl/G2rL/rEfdRofxck3lPLI9rS0MkyduDQ1j53
LnPsaS4Habe3F2QjJxQ+ghophD33wq5WvteHj1mklWCbumUrfphGR0a1rQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGwTjMb2DdvcBZ/vsPvkZO3H1XfkMB8GA1UdIwQY
MBaAFGmk1pFrkxWaqAmEqbN3RoO7VQ69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUt
MzE5NzExMDA5N2M5LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUtMzE5NzExMDA5N2M5
LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA7KXQ49Qg
00HARibxPu7Q0tUPZ7AJsqbhyDoTDjUL9mFnHQmhuFlCc+h6dCjTrr9CqT+AtKzP
BgJ/EzvB7lYBpOzw9cd0sWRnM534mFN0efyDoFmjQcrr/DuR3D83gY607+wj1PBC
zQ/5b1hu3LAkSQzdbFLTYo3MISauwUQdXsSTaAECf2dzNZnXsnZw3E/lBSu6O7Uh
dJRfZdpRCFgJLUFveATIJk4REoTAYm0Eau+17jh7Nv0ZL634/mwSZfpFweaWV0GL
Q4Tui1e24De4Gv6CcocR0xhOsi/0d/95duoOKHaiZstyOQePovjKCzvBr0Iq+bp4
7vffdF0NSaDgoA==
-----END CERTIFICATE-----
Generated at Sat May 10 08:31:44 2025 by rpki-client