Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: g9tOVYrvWE1B8g19G2ZdkMI/TwD/H9Q0djbPFDDZB9g=
Subject key identifier: 6F:B5:B2:D3:74:FC:DE:C3:FE:B1:3A:6B:AA:2C:BB:69:D3:1D:85:65
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 0197B6A0D21FE83779B4A4CCDF167D5F8D0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 085A
Signing time: Sat 28 Jun 2025 13:01:22 +0000
Manifest this update: Sat 28 Jun 2025 13:01:22 +0000
Manifest next update: Sun 29 Jun 2025 13:01:22 +0000
Files and hashes: 1: 1YtqoFQLtfGDiVmHDelz4DRg3EU.roa (hash: IK9E4boh47Pzwtuw3Las8hTZNUl+rwA5t6hlkkr2bx4=)
2: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: iv+KoXiStcKsYTRs3L2CM0Av886RF6DZZYuUyuZNW/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:d2:1f:e8:37:79:b4:a4:cc:df:16:7d:5f:8d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Jun 28 13:01:22 2025 GMT
Not After : Jun 29 13:01:22 2025 GMT
Subject: CN=6fb5b2d374fcdec3feb13a6baa2cbb69d31d8565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4a:7f:7b:f1:29:28:02:34:eb:ef:90:6b:6b:
8d:95:9a:67:38:70:3c:a9:84:86:b6:3a:b8:b7:83:
f6:d3:ce:6a:17:5d:7b:94:e2:e5:f8:f2:7e:ce:66:
e4:cd:31:97:14:91:fa:e0:b8:78:b2:c9:ea:b4:ec:
8d:e0:10:d7:95:1e:b6:43:f3:76:be:e0:b8:60:c3:
4f:90:c8:05:fc:08:03:30:d2:26:33:f6:f3:bd:36:
91:f6:cf:47:92:3a:27:2b:96:f3:f7:cb:0a:f4:5d:
1e:1b:9f:a2:31:ad:44:3f:18:03:b5:f8:13:66:2b:
e4:06:00:1f:f3:9c:34:d5:a3:27:f2:c8:6e:d7:8c:
91:51:ba:3b:1e:28:48:b3:16:8c:e6:f0:db:ab:be:
4b:c7:51:46:e7:cb:94:5f:b3:da:66:c7:5c:23:3a:
9f:d3:22:8b:33:19:4d:3a:ad:e0:95:c0:6c:c6:b4:
0d:56:5e:fc:29:e8:00:6d:85:4e:e5:39:ed:d4:69:
6d:a4:15:81:5f:4a:a1:ab:e9:8c:27:1c:9c:45:83:
28:dd:cf:b9:98:c8:77:2b:13:f5:a6:e0:92:bc:f2:
02:c0:42:31:36:e3:e9:f0:3f:29:42:37:5f:ba:41:
40:94:99:fe:6a:a9:33:28:ac:fa:d0:d4:65:fa:25:
0d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B5:B2:D3:74:FC:DE:C3:FE:B1:3A:6B:AA:2C:BB:69:D3:1D:85:65
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:df:93:2e:e8:e8:98:cf:2d:1f:7c:31:68:ac:09:1b:75:2f:
8a:56:f7:15:78:22:14:d7:a1:cb:01:82:58:44:9c:0f:b8:7f:
b8:45:50:82:c3:d3:e5:ef:fc:2e:a9:f2:2f:36:96:25:b1:b9:
fa:00:64:c7:cb:ee:75:6a:74:9a:d8:fe:72:7c:70:ff:d4:e1:
59:7b:05:a3:d1:31:12:75:ce:83:48:68:e7:68:5c:25:d8:6e:
26:77:ff:1c:97:3c:0d:19:20:d1:33:ba:6a:22:6a:31:a2:e7:
8c:21:23:7b:5b:41:eb:02:e3:af:9e:23:01:6e:7c:66:02:82:
0c:be:97:8c:a9:ea:0f:ec:d1:aa:6a:91:ca:bf:68:63:f1:22:
6f:35:62:ca:16:e5:5f:a3:61:dd:ec:2e:63:70:e0:33:96:ac:
86:6d:31:15:24:9a:ef:79:e5:5f:fc:22:38:5d:c0:d4:02:17:
6b:26:4e:b2:84:41:8a:29:76:23:e6:a6:09:af:8d:18:74:62:
b2:97:89:1f:1a:03:9d:6c:4a:2a:b6:78:9e:14:23:e2:08:71:
34:82:85:21:c6:d1:96:8a:65:b4:32:22:57:12:85:b6:c0:69:
50:c5:e5:c0:ba:9c:a1:8c:b8:fd:b1:a5:a5:93:e3:41:69:e4:
87:85:a1:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oNIf6Dd5tKTM3xZ9X40LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxYTg1ZWNlMmM1MzlmNTg1MGZhNzAxZjJkNDVhMjEyN2Rj
ODY3NTUwHhcNMjUwNjI4MTMwMTIyWhcNMjUwNjI5MTMwMTIyWjAzMTEwLwYDVQQD
Eyg2ZmI1YjJkMzc0ZmNkZWMzZmViMTNhNmJhYTJjYmI2OWQzMWQ4NTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkp/e/EpKAI06++Qa2uNlZpnOHA8
qYSGtjq4t4P2085qF117lOLl+PJ+zmbkzTGXFJH64Lh4ssnqtOyN4BDXlR62Q/N2
vuC4YMNPkMgF/AgDMNImM/bzvTaR9s9HkjonK5bz98sK9F0eG5+iMa1EPxgDtfgT
ZivkBgAf85w01aMn8shu14yRUbo7HihIsxaM5vDbq75Lx1FG58uUX7PaZsdcIzqf
0yKLMxlNOq3glcBsxrQNVl78KegAbYVO5Tnt1GltpBWBX0qhq+mMJxycRYMo3c+5
mMh3KxP1puCSvPICwEIxNuPp8D8pQjdfukFAlJn+aqkzKKz60NRl+iUN+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG+1stN0/N7D/rE6a6osu2nTHYVlMB8GA1UdIwQY
MBaAFAGoXs4sU59YUPpwHy1FohJ9yGdVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEt
NzUyYTQ1YzMyZGZmLzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEtNzUyYTQ1YzMyZGZm
LzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXd+TLujo
mM8tH3wxaKwJG3Uvilb3FXgiFNehywGCWEScD7h/uEVQgsPT5e/8LqnyLzaWJbG5
+gBkx8vudWp0mtj+cnxw/9ThWXsFo9ExEnXOg0ho52hcJdhuJnf/HJc8DRkg0TO6
aiJqMaLnjCEje1tB6wLjr54jAW58ZgKCDL6XjKnqD+zRqmqRyr9oY/EibzViyhbl
X6Nh3ewuY3DgM5ashm0xFSSa73nlX/wiOF3A1AIXayZOsoRBiil2I+amCa+NGHRi
speJHxoDnWxKKrZ4nhQj4ghxNIKFIcbRlopltDIiVxKFtsBpUMXlwLqcoYy4/bGl
pZPjQWnkh4Wh0Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:56:59 2025 by rpki-client