Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
File: aUAlihpormBcBz-1g7E-E3a3eKc.mft (raw, json)
Hash identifier: hNSDuPwjXwL/D3fjJekvrNC2bBOWYL5JmDGY+zhWwDQ=
Subject key identifier: 27:DF:45:3F:22:03:F1:05:F3:88:51:64:46:DE:F4:CB:A7:71:84:69
Authority key identifier: 69:40:25:8A:1A:68:AE:60:5C:07:3F:B5:83:B1:3E:13:76:B7:78:A7
Certificate issuer: /CN=6940258a1a68ae605c073fb583b13e1376b778a7
Certificate serial: 01974AB1CE214920E7C87B5AF7902C1D40EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aUAlihpormBcBz-1g7E-E3a3eKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 14:00:55 +0000
Manifest this update: Sat 07 Jun 2025 14:00:55 +0000
Manifest next update: Sun 08 Jun 2025 14:00:55 +0000
Files and hashes: 1: 2sc4xknukJW-o5vl5Fz96F0QucA.roa (hash: MbYv6i++8VmdaYHm6adLazhX2ff10i5IN4qgNm5FoPs=)
2: aUAlihpormBcBz-1g7E-E3a3eKc.crl (hash: hniAW+hZjIG8ES6UoR/4VJ9vhYuOYtf1fOBeRc3VGEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aUAlihpormBcBz-1g7E-E3a3eKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:ce:21:49:20:e7:c8:7b:5a:f7:90:2c:1d:40:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6940258a1a68ae605c073fb583b13e1376b778a7
Validity
Not Before: Jun 7 14:00:55 2025 GMT
Not After : Jun 8 14:00:55 2025 GMT
Subject: CN=27df453f2203f105f388516446def4cba7718469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a3:f3:db:6f:0a:ae:01:3c:78:be:b1:59:8d:
ac:bb:24:10:e8:26:52:d6:4a:d0:c3:6e:c1:d7:5d:
63:e6:57:f9:a9:e2:1b:89:ca:9c:3f:db:46:62:da:
26:0b:0e:c2:6d:5a:37:c8:bd:74:d9:9d:95:11:8d:
6b:e8:1c:2c:47:ec:a2:b3:7d:4c:8b:98:61:e8:e2:
80:33:93:aa:4c:73:d4:47:1a:0d:e7:b4:94:12:e8:
dc:3b:6a:2b:b8:93:86:14:1f:38:33:cd:03:02:0e:
0c:f5:c5:d0:4b:e9:f5:5f:f4:cc:d4:c9:96:15:27:
41:2b:52:10:7a:46:14:83:07:c9:51:45:0e:cd:dd:
91:67:0b:e7:27:75:99:06:8b:08:33:35:45:ce:6a:
75:63:ab:79:8f:e8:2b:4b:19:26:89:16:d0:1d:be:
b1:b3:6b:8e:d1:c1:4f:42:3a:e9:18:cb:ad:6d:c4:
18:48:7c:a6:7d:22:24:af:a5:78:90:fc:53:e8:95:
70:89:f0:fe:d5:6c:35:4d:c9:ff:4b:37:c7:16:65:
cd:31:f5:bd:78:1a:f0:62:8f:e7:f7:ff:b8:a1:bc:
ab:0f:27:8e:ce:5e:7a:1c:e9:3d:4e:86:00:b4:04:
cf:94:d4:45:2f:f6:e9:f7:c0:1b:ad:13:a2:6b:5d:
e2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:DF:45:3F:22:03:F1:05:F3:88:51:64:46:DE:F4:CB:A7:71:84:69
X509v3 Authority Key Identifier:
keyid:69:40:25:8A:1A:68:AE:60:5C:07:3F:B5:83:B1:3E:13:76:B7:78:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aUAlihpormBcBz-1g7E-E3a3eKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:23:7e:18:1e:0b:32:1f:5e:33:4b:bd:a2:2a:46:d7:de:d2:
b9:95:90:86:4f:9a:ad:ff:66:7e:25:40:56:1b:48:66:44:91:
be:d1:bb:5e:94:4a:9d:c0:2d:fa:e5:29:d7:6b:2d:91:4d:d3:
f7:2a:97:60:5c:12:4c:42:68:57:23:bc:6a:c6:fb:28:38:e9:
d1:ab:7d:b0:a1:ec:85:b6:ce:fe:03:f4:bb:ae:75:85:01:d3:
c4:4e:31:12:64:ed:8b:75:0f:27:2a:c3:f9:c2:93:2c:a8:84:
d8:bb:13:a9:17:f3:d9:2c:3d:08:cf:94:41:9e:13:8b:ac:cd:
06:f9:37:5a:e2:33:b1:6e:91:e9:99:3c:92:7f:dc:e8:45:27:
63:01:b0:8b:fa:3c:df:be:b8:f8:94:e8:95:e6:08:f8:8c:37:
f5:6c:77:41:75:04:af:58:fa:64:ef:fb:81:cd:aa:e0:6a:f7:
27:78:b9:e3:b5:73:e4:ef:ce:d6:77:ee:f3:7a:18:fc:a5:01:
35:e0:19:b8:46:b7:4a:f8:cf:cc:9a:f4:f9:18:ca:38:e3:e8:
28:dc:a0:1b:27:28:d4:74:d2:7a:86:9e:8f:82:bc:fc:af:7c:
5a:3d:30:94:b3:6e:68:8c:db:cd:9c:f2:b9:1e:fb:cd:43:08:
8e:4c:0f:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKsc4hSSDnyHta95AsHUDrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NDAyNThhMWE2OGFlNjA1YzA3M2ZiNTgzYjEzZTEzNzZi
Nzc4YTcwHhcNMjUwNjA3MTQwMDU1WhcNMjUwNjA4MTQwMDU1WjAzMTEwLwYDVQQD
EygyN2RmNDUzZjIyMDNmMTA1ZjM4ODUxNjQ0NmRlZjRjYmE3NzE4NDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqPz228KrgE8eL6xWY2suyQQ6CZS
1krQw27B111j5lf5qeIbicqcP9tGYtomCw7CbVo3yL102Z2VEY1r6BwsR+yis31M
i5hh6OKAM5OqTHPURxoN57SUEujcO2oruJOGFB84M80DAg4M9cXQS+n1X/TM1MmW
FSdBK1IQekYUgwfJUUUOzd2RZwvnJ3WZBosIMzVFzmp1Y6t5j+grSxkmiRbQHb6x
s2uO0cFPQjrpGMutbcQYSHymfSIkr6V4kPxT6JVwifD+1Ww1Tcn/SzfHFmXNMfW9
eBrwYo/n9/+4obyrDyeOzl56HOk9ToYAtATPlNRFL/bp98AbrROia13iqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCffRT8iA/EF84hRZEbe9MuncYRpMB8GA1UdIwQY
MBaAFGlAJYoaaK5gXAc/tYOxPhN2t3inMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVVBbGlocG9ybUJjQnotMWc3RS1FM2EzZUtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8xNDM0Y2QtYTNkNi00NDg4LTg4ODgt
NzQ5ZTk4MGVjMGI3LzEvYVVBbGlocG9ybUJjQnotMWc3RS1FM2EzZUtjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8xNDM0Y2QtYTNkNi00NDg4LTg4ODgtNzQ5ZTk4MGVjMGI3
LzEvYVVBbGlocG9ybUJjQnotMWc3RS1FM2EzZUtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuSN+GB4L
Mh9eM0u9oipG197SuZWQhk+arf9mfiVAVhtIZkSRvtG7XpRKncAt+uUp12stkU3T
9yqXYFwSTEJoVyO8asb7KDjp0at9sKHshbbO/gP0u651hQHTxE4xEmTti3UPJyrD
+cKTLKiE2LsTqRfz2Sw9CM+UQZ4Ti6zNBvk3WuIzsW6R6Zk8kn/c6EUnYwGwi/o8
3764+JToleYI+Iw39Wx3QXUEr1j6ZO/7gc2q4Gr3J3i547Vz5O/O1nfu83oY/KUB
NeAZuEa3SvjPzJr0+RjKOOPoKNygGyco1HTSeoaej4K8/K98Wj0wlLNuaIzbzZzy
uR77zUMIjkwPqw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 00:31:43 2025 by rpki-client