Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
File: AOC06vnBB5HzU7qYfeI2ChOEF70.mft (raw, json)
Hash identifier: C2bgSRYwMY5R5fwfMfutbqI/3qK7ulT1Vb6lQlXg0/c=
Subject key identifier: 28:7C:FB:0B:15:0C:18:C1:1A:2A:70:D9:F9:6E:12:16:88:DC:AF:D1
Authority key identifier: 00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
Certificate issuer: /CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Certificate serial: 0198D583AE9D7F6B186357E70F00E79F92D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
Manifest number: 0873
Signing time: Sat 23 Aug 2025 06:00:33 +0000
Manifest this update: Sat 23 Aug 2025 06:00:33 +0000
Manifest next update: Sun 24 Aug 2025 06:00:33 +0000
Files and hashes: 1: 7Qz5q4z6Tluf-_C3llmKbm-Y_6k.roa (hash: Btz39reQ2rKKUs2JCEZIO4ZVKwDZCOjT3ZoGf4qNKOM=)
2: AOC06vnBB5HzU7qYfeI2ChOEF70.crl (hash: 7qb7S47eKfXRqQ6MYQzesiDG23KzK3WdiFhuDmB7MGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:ae:9d:7f:6b:18:63:57:e7:0f:00:e7:9f:92:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Validity
Not Before: Aug 23 06:00:33 2025 GMT
Not After : Aug 24 06:00:33 2025 GMT
Subject: CN=287cfb0b150c18c11a2a70d9f96e121688dcafd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6e:a3:bc:b9:88:19:76:4b:23:c9:8d:a3:8c:
25:4d:cc:3a:81:c5:e2:3a:a8:96:da:f5:2d:c3:68:
fd:d1:49:e1:60:63:cd:d5:90:27:46:3f:3a:53:ed:
a7:d7:3d:98:e1:76:3c:67:7a:e5:8d:8c:09:eb:fb:
37:af:dd:6f:30:99:08:d3:68:46:df:57:cc:0e:64:
df:1f:7e:3d:1e:20:0b:9c:74:6d:80:5e:e4:e1:7c:
9c:8f:1c:01:5c:a3:5a:4b:89:65:6b:84:81:f7:56:
f1:28:d4:27:e9:20:9c:6a:55:47:19:90:1d:8f:c2:
41:c2:68:1b:70:e2:1a:6f:a0:28:c0:10:44:0f:ed:
04:c2:8b:ff:ee:a9:ac:8b:00:ce:f5:3d:6d:1e:11:
e0:a2:b6:54:18:99:ce:58:77:55:f5:34:e5:5b:c2:
c0:27:1c:ac:a6:fc:13:a2:be:e3:b9:4a:67:cd:c6:
bc:1e:01:d6:85:ce:24:7f:88:df:d8:40:e0:be:d8:
c0:e9:ca:d4:a0:73:01:98:d4:d0:c2:19:40:9a:dc:
34:1f:4b:09:0d:a6:49:0b:69:36:dc:9d:a0:4e:05:
c5:06:f6:4b:38:74:a0:6f:93:dd:47:38:64:06:b7:
a1:83:58:f0:ae:62:54:2b:b7:03:07:1f:57:f6:05:
e2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7C:FB:0B:15:0C:18:C1:1A:2A:70:D9:F9:6E:12:16:88:DC:AF:D1
X509v3 Authority Key Identifier:
keyid:00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:a2:88:30:81:0b:52:3f:ea:86:e5:dc:35:94:ec:2d:f4:9e:
0a:93:a0:1b:f2:9f:70:ec:30:6b:b4:ac:63:ad:cf:f8:66:3d:
86:01:c3:f4:39:80:33:fc:20:0e:2f:8b:df:6a:23:6b:9c:15:
c5:ea:ac:03:cb:31:e4:f8:fd:6c:88:62:3c:82:59:34:ce:f0:
ad:52:00:31:f3:4c:db:3c:1e:52:c6:ae:87:91:18:74:ae:ec:
b9:a7:38:f4:81:dc:82:10:ab:3c:ee:33:83:6e:ec:1b:b1:c5:
dd:e8:ef:7a:d8:f1:32:48:63:06:41:7f:71:21:c9:7b:85:00:
3a:3b:92:0d:d0:01:ad:fb:10:d4:aa:bc:57:2f:d4:06:72:a6:
9c:11:af:5f:c8:6e:4c:3a:3d:68:82:8c:ad:82:4e:e7:5a:b7:
3d:f8:21:c3:f1:cf:94:a3:6c:33:0a:12:e7:6b:26:ef:5d:bd:
5b:e3:bf:f2:d6:db:26:3b:99:f7:3e:b3:5c:3c:78:ab:4d:35:
60:fd:f4:c9:82:90:0e:b3:64:bf:96:2a:47:fc:66:f0:2f:c4:
3a:79:6e:ce:d2:59:af:41:36:af:36:08:21:84:1e:41:10:57:
45:7c:11:66:10:b1:c6:da:b6:03:95:ce:95:24:1c:34:4e:e4:
35:84:a2:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg66df2sYY1fnDwDnn5LVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZTBiNGVhZjljMTA3OTFmMzUzYmE5ODdkZTIzNjBhMTM4
NDE3YmQwHhcNMjUwODIzMDYwMDMzWhcNMjUwODI0MDYwMDMzWjAzMTEwLwYDVQQD
EygyODdjZmIwYjE1MGMxOGMxMWEyYTcwZDlmOTZlMTIxNjg4ZGNhZmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk26jvLmIGXZLI8mNo4wlTcw6gcXi
OqiW2vUtw2j90UnhYGPN1ZAnRj86U+2n1z2Y4XY8Z3rljYwJ6/s3r91vMJkI02hG
31fMDmTfH349HiALnHRtgF7k4XycjxwBXKNaS4lla4SB91bxKNQn6SCcalVHGZAd
j8JBwmgbcOIab6AowBBED+0Ewov/7qmsiwDO9T1tHhHgorZUGJnOWHdV9TTlW8LA
JxyspvwTor7juUpnzca8HgHWhc4kf4jf2EDgvtjA6crUoHMBmNTQwhlAmtw0H0sJ
DaZJC2k23J2gTgXFBvZLOHSgb5PdRzhkBrehg1jwrmJUK7cDBx9X9gXiVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCh8+wsVDBjBGipw2fluEhaI3K/RMB8GA1UdIwQY
MBaAFADgtOr5wQeR81O6mH3iNgoThBe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8yMTAwNDMtNWFmZS00NTZmLWIzZjgt
ZGMwMjc0MzJlNWE1LzEvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny8yMTAwNDMtNWFmZS00NTZmLWIzZjgtZGMwMjc0MzJlNWE1
LzEvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEaKIMIEL
Uj/qhuXcNZTsLfSeCpOgG/KfcOwwa7SsY63P+GY9hgHD9DmAM/wgDi+L32oja5wV
xeqsA8sx5Pj9bIhiPIJZNM7wrVIAMfNM2zweUsauh5EYdK7suac49IHcghCrPO4z
g27sG7HF3ejvetjxMkhjBkF/cSHJe4UAOjuSDdABrfsQ1Kq8Vy/UBnKmnBGvX8hu
TDo9aIKMrYJO51q3Pfghw/HPlKNsMwoS52sm7129W+O/8tbbJjuZ9z6zXDx4q001
YP30yYKQDrNkv5YqR/xm8C/EOnluztJZr0E2rzYIIYQeQRBXRXwRZhCxxtq2A5XO
lSQcNE7kNYSi9Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:19 2025 by rpki-client