Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
File: AEp1iisKfpOKnw3uZCzsXkECdrU.mft (raw, json)
Hash identifier: z1OT/qwzHH5/4Y+/F0xGYIRoMiQCI2oJNkPdoew/iXQ=
Subject key identifier: F1:1B:95:0A:C8:7D:10:4B:0D:51:D6:ED:1E:79:51:3E:BF:96:B5:5B
Authority key identifier: 00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5
Certificate issuer: /CN=004a758a2b0a7e938a9f0dee642cec5e410276b5
Certificate serial: 0197B9D8912630CDC731F81F70B0B66ACB38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
Manifest number: 0B22
Signing time: Sun 29 Jun 2025 04:01:07 +0000
Manifest this update: Sun 29 Jun 2025 04:01:07 +0000
Manifest next update: Mon 30 Jun 2025 04:01:07 +0000
Files and hashes: 1: AEp1iisKfpOKnw3uZCzsXkECdrU.crl (hash: XLvZFrGUaSKpxAklQXDmhqu5SThAdkD58eEKCJyMV50=)
2: Zu7qmPE7Yu9qaSBN9WsSyKAeY2Y.roa (hash: 6EpeKHcevQPaPF9U/VGXI0S4HRJnkl5xIMQ3xA5Np4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:d8:91:26:30:cd:c7:31:f8:1f:70:b0:b6:6a:cb:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=004a758a2b0a7e938a9f0dee642cec5e410276b5
Validity
Not Before: Jun 29 04:01:07 2025 GMT
Not After : Jun 30 04:01:07 2025 GMT
Subject: CN=f11b950ac87d104b0d51d6ed1e79513ebf96b55b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:76:85:2c:7d:35:d2:06:8c:8a:89:13:77:82:
7b:34:9d:4b:4a:8c:2c:16:bd:4a:79:ee:f8:84:a5:
37:6c:bd:55:d4:85:ec:f5:9e:8a:b0:dd:74:68:91:
91:ba:7a:ed:a9:ce:4c:f2:d6:bf:56:4f:db:c4:bf:
f9:00:95:d6:f8:93:7e:31:bd:8f:36:85:60:bc:98:
cf:fb:9a:f3:dd:81:da:d5:48:79:95:dc:e3:4b:46:
b9:be:ac:89:4a:28:c4:e6:e7:96:db:dd:76:4d:2b:
3a:03:ed:53:36:53:2d:85:09:a0:d1:7a:06:0b:97:
36:f9:42:cf:44:73:dd:ed:aa:b9:a8:ae:89:74:15:
d2:29:5d:56:02:f9:06:4d:17:e7:cb:25:9d:be:44:
cb:81:2c:1a:26:87:dd:bc:e6:b0:33:ac:b8:d6:e7:
75:bc:cb:c9:96:08:f7:cc:9e:6a:fd:2e:82:fa:b8:
e4:14:64:74:e5:40:9d:4b:e2:5d:9d:82:73:0a:fe:
de:7b:d1:36:ac:46:c0:70:4d:38:92:7e:72:59:42:
82:b6:48:62:dd:fd:6f:89:04:3c:af:ba:fe:e0:7d:
9a:76:cb:9c:9d:da:c1:3f:a3:7b:af:cf:71:e7:59:
c3:74:0f:32:b4:54:34:b6:44:8b:4e:3d:15:aa:30:
d4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1B:95:0A:C8:7D:10:4B:0D:51:D6:ED:1E:79:51:3E:BF:96:B5:5B
X509v3 Authority Key Identifier:
keyid:00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:c0:f3:7f:61:21:2f:81:94:a0:0e:2f:06:6e:5f:64:bb:d0:
60:ce:9c:3f:d7:10:44:0e:15:29:ab:e3:6d:4c:9f:95:7c:31:
1c:d4:7a:da:53:ec:27:ee:0a:bf:6c:07:b1:ed:0d:90:bf:a2:
0e:40:7c:93:48:e2:b2:86:c7:5f:93:39:03:8c:1a:4c:17:a5:
dd:aa:a8:78:86:ab:ae:00:14:5c:b8:9c:61:9b:8c:52:12:84:
85:37:be:e0:15:a9:2d:78:06:dc:76:a7:47:90:5d:7f:6b:9e:
fa:b7:e7:c2:bc:a5:cd:fe:41:e6:0b:ff:cc:dd:6c:9e:fe:aa:
71:9d:bd:14:41:e1:4f:9d:5c:95:8a:b5:ca:90:5a:ff:b2:67:
a7:0f:e5:c8:8b:3e:72:5e:10:86:5a:4e:45:ab:5e:87:01:5f:
5d:b9:fe:bc:87:32:d8:6c:04:5e:4c:ac:ca:b0:2d:99:12:c9:
f4:4d:dd:f5:64:14:1a:d8:ba:73:4c:11:2a:e2:8f:7f:90:34:
c0:2a:ed:ca:b4:2b:87:10:3e:1a:6d:88:d0:f1:ca:9f:ca:f1:
b5:70:e5:57:69:8c:1c:3a:a1:e4:e7:a4:34:26:c8:76:61:5b:
62:15:d1:dd:d0:71:bc:97:0d:88:ee:d5:d7:38:17:af:de:11:
7a:a9:6b:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe52JEmMM3HMfgfcLC2ass4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNGE3NThhMmIwYTdlOTM4YTlmMGRlZTY0MmNlYzVlNDEw
Mjc2YjUwHhcNMjUwNjI5MDQwMTA3WhcNMjUwNjMwMDQwMTA3WjAzMTEwLwYDVQQD
EyhmMTFiOTUwYWM4N2QxMDRiMGQ1MWQ2ZWQxZTc5NTEzZWJmOTZiNTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03aFLH010gaMiokTd4J7NJ1LSows
Fr1Kee74hKU3bL1V1IXs9Z6KsN10aJGRunrtqc5M8ta/Vk/bxL/5AJXW+JN+Mb2P
NoVgvJjP+5rz3YHa1Uh5ldzjS0a5vqyJSijE5ueW2912TSs6A+1TNlMthQmg0XoG
C5c2+ULPRHPd7aq5qK6JdBXSKV1WAvkGTRfnyyWdvkTLgSwaJofdvOawM6y41ud1
vMvJlgj3zJ5q/S6C+rjkFGR05UCdS+JdnYJzCv7ee9E2rEbAcE04kn5yWUKCtkhi
3f1viQQ8r7r+4H2adsucndrBP6N7r89x51nDdA8ytFQ0tkSLTj0VqjDULQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPEblQrIfRBLDVHW7R55UT6/lrVbMB8GA1UdIwQY
MBaAFABKdYorCn6Tip8N7mQs7F5BAna1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9iZjU5MTUtOTZhYS00ZGFkLWFmMmEt
MDExMDI3MmRlYzE3LzEvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9iZjU5MTUtOTZhYS00ZGFkLWFmMmEtMDExMDI3MmRlYzE3
LzEvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxcDzf2Eh
L4GUoA4vBm5fZLvQYM6cP9cQRA4VKavjbUyflXwxHNR62lPsJ+4Kv2wHse0NkL+i
DkB8k0jisobHX5M5A4waTBel3aqoeIarrgAUXLicYZuMUhKEhTe+4BWpLXgG3Han
R5Bdf2ue+rfnwrylzf5B5gv/zN1snv6qcZ29FEHhT51clYq1ypBa/7Jnpw/lyIs+
cl4QhlpORatehwFfXbn+vIcy2GwEXkysyrAtmRLJ9E3d9WQUGti6c0wRKuKPf5A0
wCrtyrQrhxA+Gm2I0PHKn8rxtXDlV2mMHDqh5OekNCbIdmFbYhXR3dBxvJcNiO7V
1zgXr94Reqlr9w==
-----END CERTIFICATE-----
Generated at Sun Jun 29 07:55:14 2025 by rpki-client