Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
File: AEp1iisKfpOKnw3uZCzsXkECdrU.mft (raw, json)
Hash identifier: bANKacWMcFAIkcRY6dMPeYkUtVR/DkVOPja/alCWtAM=
Subject key identifier: 6A:E6:86:35:16:16:B5:40:29:D3:50:66:7B:08:87:10:81:3C:67:41
Authority key identifier: 00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5
Certificate issuer: /CN=004a758a2b0a7e938a9f0dee642cec5e410276b5
Certificate serial: 0198D5BBCBA59E23A2F9035A409C2604B3CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
Manifest number: 0BB5
Signing time: Sat 23 Aug 2025 07:01:51 +0000
Manifest this update: Sat 23 Aug 2025 07:01:51 +0000
Manifest next update: Sun 24 Aug 2025 07:01:51 +0000
Files and hashes: 1: AEp1iisKfpOKnw3uZCzsXkECdrU.crl (hash: /W803JuTwPqpIOO36cMW5/ljL8PJDKBYjLDiqHoVPIk=)
2: Zu7qmPE7Yu9qaSBN9WsSyKAeY2Y.roa (hash: 6EpeKHcevQPaPF9U/VGXI0S4HRJnkl5xIMQ3xA5Np4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:cb:a5:9e:23:a2:f9:03:5a:40:9c:26:04:b3:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=004a758a2b0a7e938a9f0dee642cec5e410276b5
Validity
Not Before: Aug 23 07:01:51 2025 GMT
Not After : Aug 24 07:01:51 2025 GMT
Subject: CN=6ae686351616b54029d350667b088710813c6741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:10:55:23:38:69:9a:99:ee:37:ab:f2:7f:c0:
63:15:c3:fe:f4:ed:35:47:a4:1f:3c:55:e4:03:96:
41:f6:7a:3f:75:a2:a0:99:9c:b5:10:89:4b:40:5a:
ae:48:e6:12:be:69:2a:0e:83:f9:0f:cd:03:ce:d1:
00:35:05:21:54:4f:f2:df:da:fa:3e:61:31:a9:24:
f9:6f:3a:8f:9b:93:7f:8d:f2:25:59:25:e4:2e:52:
ad:71:05:ea:30:52:d9:67:9f:5c:0f:30:33:11:00:
f2:cb:11:78:74:3c:96:69:e4:30:78:44:87:46:90:
f0:77:01:5f:bd:82:2a:c5:62:10:cf:1c:13:33:5e:
ae:af:74:b9:38:d1:c6:81:1a:21:4a:1f:c2:12:f0:
34:90:2e:4c:1b:fd:12:47:f5:ca:1a:1f:55:ec:a2:
e5:9c:62:ee:35:86:af:ac:59:ac:4c:07:8e:a0:fc:
8a:e8:90:dc:24:fe:31:f0:3a:19:71:c0:70:30:e5:
ad:a1:bd:93:92:65:1f:a4:90:06:2b:e4:69:63:d2:
57:9f:e3:d6:6a:76:3d:d0:6a:ae:fb:6a:c8:e8:a2:
92:87:2a:c9:75:da:67:82:bf:20:57:78:51:d4:3f:
72:ca:ed:96:45:6b:8e:bf:2a:ef:a7:1d:70:3f:ee:
c6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E6:86:35:16:16:B5:40:29:D3:50:66:7B:08:87:10:81:3C:67:41
X509v3 Authority Key Identifier:
keyid:00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:f4:d5:f7:5b:e4:fc:d5:40:1b:e1:fc:6c:94:03:2f:1a:09:
23:6d:24:6b:ca:1f:56:96:7e:df:19:da:4e:24:b9:03:1e:bc:
76:33:44:05:78:b8:73:64:02:ab:56:7e:d2:b0:f2:2d:4f:3b:
83:ef:d6:96:1a:fd:69:19:a3:1b:a7:1d:bc:e9:19:9d:79:01:
23:3c:b7:70:20:5b:2d:ae:31:97:bf:9a:a7:1d:56:e5:90:10:
ec:58:41:c6:df:c0:d3:76:09:ac:e6:7e:bc:ee:87:29:fa:7e:
ba:6e:23:03:8f:38:ab:7a:12:2f:09:0f:1c:c5:a5:a5:26:e6:
06:e4:9c:aa:a5:b6:ee:dc:e9:ca:6b:5b:c4:00:4a:f4:88:c4:
c7:38:ff:9b:c4:c8:58:63:ee:66:b7:5e:75:2a:21:8f:a4:f7:
4d:fc:6a:af:29:5c:99:a6:f1:ba:c5:17:45:16:93:5a:94:35:
5b:30:c9:dc:18:9f:5d:49:c8:60:e3:a7:5e:8d:5e:5b:88:ba:
67:f3:e1:55:a3:0c:5d:7e:71:66:f5:6c:6a:b5:4e:e5:9e:69:
9a:b4:dc:be:cf:25:59:47:03:32:5d:60:20:f6:1f:3e:0f:f9:
fe:17:f8:94:bd:30:ac:71:08:07:8f:99:18:e0:1c:65:2b:29:
a8:21:8d:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu8ulniOi+QNaQJwmBLPLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNGE3NThhMmIwYTdlOTM4YTlmMGRlZTY0MmNlYzVlNDEw
Mjc2YjUwHhcNMjUwODIzMDcwMTUxWhcNMjUwODI0MDcwMTUxWjAzMTEwLwYDVQQD
Eyg2YWU2ODYzNTE2MTZiNTQwMjlkMzUwNjY3YjA4ODcxMDgxM2M2NzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRBVIzhpmpnuN6vyf8BjFcP+9O01
R6QfPFXkA5ZB9no/daKgmZy1EIlLQFquSOYSvmkqDoP5D80DztEANQUhVE/y39r6
PmExqST5bzqPm5N/jfIlWSXkLlKtcQXqMFLZZ59cDzAzEQDyyxF4dDyWaeQweESH
RpDwdwFfvYIqxWIQzxwTM16ur3S5ONHGgRohSh/CEvA0kC5MG/0SR/XKGh9V7KLl
nGLuNYavrFmsTAeOoPyK6JDcJP4x8DoZccBwMOWtob2TkmUfpJAGK+RpY9JXn+PW
anY90Gqu+2rI6KKShyrJddpngr8gV3hR1D9yyu2WRWuOvyrvpx1wP+7G6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGrmhjUWFrVAKdNQZnsIhxCBPGdBMB8GA1UdIwQY
MBaAFABKdYorCn6Tip8N7mQs7F5BAna1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9iZjU5MTUtOTZhYS00ZGFkLWFmMmEt
MDExMDI3MmRlYzE3LzEvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9iZjU5MTUtOTZhYS00ZGFkLWFmMmEtMDExMDI3MmRlYzE3
LzEvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmfTV91vk
/NVAG+H8bJQDLxoJI20ka8ofVpZ+3xnaTiS5Ax68djNEBXi4c2QCq1Z+0rDyLU87
g+/Wlhr9aRmjG6cdvOkZnXkBIzy3cCBbLa4xl7+apx1W5ZAQ7FhBxt/A03YJrOZ+
vO6HKfp+um4jA484q3oSLwkPHMWlpSbmBuScqqW27tzpymtbxABK9IjExzj/m8TI
WGPuZrdedSohj6T3TfxqrylcmabxusUXRRaTWpQ1WzDJ3BifXUnIYOOnXo1eW4i6
Z/PhVaMMXX5xZvVsarVO5Z5pmrTcvs8lWUcDMl1gIPYfPg/5/hf4lL0wrHEIB4+Z
GOAcZSspqCGNQQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:56:41 2025 by rpki-client