
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
File: aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json)
Hash identifier: 4+W9C9ni8ibPgzYKjwxNXHskVJ9ZTX4+/71gN09CyNw=
Subject key identifier: 2F:DB:AA:C1:46:34:29:A1:66:F1:2D:A1:AD:C6:E7:55:AD:39:B5:97
Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
Certificate issuer: /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Certificate serial: 01975DCA97173CB74F002C17EABDD6A0CE9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
Manifest number: 1589
Signing time: Wed 11 Jun 2025 07:00:47 +0000
Manifest this update: Wed 11 Jun 2025 07:00:47 +0000
Manifest next update: Thu 12 Jun 2025 07:00:47 +0000
Files and hashes: 1: 1LWuminfGd450btHCMbnnbPQ_ZE.roa (hash: TISDdBpwKFkkTeSDLc72qwKWM7K/Xn5/55e5YUo0nnQ=)
2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: PM3iuJqV5hfvGki34eMS9Olpw5chDsldK/vguL5TvXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 07:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:ca:97:17:3c:b7:4f:00:2c:17:ea:bd:d6:a0:ce:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Validity
Not Before: Jun 11 07:00:47 2025 GMT
Not After : Jun 12 07:00:47 2025 GMT
Subject: CN=2fdbaac1463429a166f12da1adc6e755ad39b597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:60:10:5a:26:e0:41:55:e6:54:02:eb:4d:17:
74:25:b3:4b:dc:46:4a:40:10:41:98:89:b1:f8:78:
bf:10:f8:0a:6c:01:c9:d2:fd:01:05:44:a7:a9:07:
5a:90:63:22:88:f3:73:4b:a2:53:57:c7:95:3c:79:
ac:9d:6a:54:c5:b6:07:56:10:70:45:1c:04:c2:36:
d4:40:6c:af:5b:b9:af:95:94:0e:10:16:b5:d7:60:
91:fa:17:7e:73:dd:0f:b6:3e:21:b1:c1:68:93:d6:
9f:b0:5c:c9:74:36:ce:25:0c:3a:8e:03:b5:01:e9:
41:82:b5:ef:6a:30:20:c0:b7:67:a4:1f:4d:a3:d4:
48:13:92:07:da:22:89:6d:bb:b4:2f:ed:2b:21:64:
19:70:47:db:81:f1:f1:2f:e5:92:f5:c8:fa:0b:88:
d6:9a:69:68:9e:68:f3:99:c5:b5:0a:e4:f9:65:d1:
60:04:ef:7e:77:e1:84:6a:fe:40:32:64:e2:f8:62:
d5:00:6d:fb:71:4d:64:65:2a:1a:3b:7a:8c:c1:4c:
44:07:78:53:d1:cd:cb:07:62:fd:e8:fa:09:5f:2f:
0f:87:36:81:a1:9e:d4:63:34:ee:f6:ad:28:7a:d9:
be:11:c1:3d:b2:57:0d:d1:11:28:e8:b6:07:a9:5a:
e7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:DB:AA:C1:46:34:29:A1:66:F1:2D:A1:AD:C6:E7:55:AD:39:B5:97
X509v3 Authority Key Identifier:
keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:77:3c:00:4d:6d:78:44:59:e0:f2:5b:a1:dc:bc:f9:cd:35:
1d:d7:92:ec:ee:2a:0f:1e:6e:f1:62:4b:3c:00:90:9f:b9:14:
34:f7:0d:cd:3d:97:81:70:6b:1f:3f:1c:3b:23:01:c7:59:e1:
f4:93:c7:b3:72:ba:e7:81:fd:f2:21:b5:03:f7:d0:6f:36:19:
db:aa:c9:2d:aa:c6:c1:b2:5b:8e:72:80:39:58:81:08:6b:d8:
c1:e8:48:9a:d5:2b:6b:60:9e:ba:70:d4:4f:37:67:52:06:d1:
dc:01:ef:79:c8:7b:bd:5a:5e:eb:85:05:5c:ab:13:63:93:85:
6e:9a:0c:2d:06:a9:56:7c:58:be:f9:d4:cf:f7:cf:45:7c:73:
c2:68:1e:ff:cd:4b:99:0b:56:24:24:4a:31:48:f5:71:a0:42:
a6:9b:85:e9:d1:84:0a:71:f0:30:fa:bd:5a:80:30:0d:8e:b2:
0d:82:dd:0f:28:c7:57:83:c1:f5:0a:11:4c:ad:c5:9d:a7:88:
1a:b6:34:5d:2c:51:bd:cc:e7:1d:53:27:d3:83:df:c8:23:38:
9b:84:f1:d3:e4:12:ea:3a:18:46:41:3d:15:e5:dc:59:a8:48:
db:5d:d0:0e:b9:47:7d:2e:a1:04:62:6e:de:0c:e5:47:46:16:
58:17:b5:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZddypcXPLdPACwX6r3WoM6bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NGU1MTVjYzViZTRlMjdlOWQzZDEzZTVlMWMxMWRjNzUy
OTI3NGIwHhcNMjUwNjExMDcwMDQ3WhcNMjUwNjEyMDcwMDQ3WjAzMTEwLwYDVQQD
EygyZmRiYWFjMTQ2MzQyOWExNjZmMTJkYTFhZGM2ZTc1NWFkMzliNTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWAQWibgQVXmVALrTRd0JbNL3EZK
QBBBmImx+Hi/EPgKbAHJ0v0BBUSnqQdakGMiiPNzS6JTV8eVPHmsnWpUxbYHVhBw
RRwEwjbUQGyvW7mvlZQOEBa112CR+hd+c90Ptj4hscFok9afsFzJdDbOJQw6jgO1
AelBgrXvajAgwLdnpB9No9RIE5IH2iKJbbu0L+0rIWQZcEfbgfHxL+WS9cj6C4jW
mmlonmjzmcW1CuT5ZdFgBO9+d+GEav5AMmTi+GLVAG37cU1kZSoaO3qMwUxEB3hT
0c3LB2L96PoJXy8PhzaBoZ7UYzTu9q0oetm+EcE9slcN0REo6LYHqVrnmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC/bqsFGNCmhZvEtoa3G51WtObWXMB8GA1UdIwQY
MBaAFGlOUVzFvk4n6dPRPl4cEdx1KSdLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYt
NTFjNzdjYzQ5MTQ2LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYtNTFjNzdjYzQ5MTQ2
LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADHc8AE1t
eERZ4PJbody8+c01HdeS7O4qDx5u8WJLPACQn7kUNPcNzT2XgXBrHz8cOyMBx1nh
9JPHs3K654H98iG1A/fQbzYZ26rJLarGwbJbjnKAOViBCGvYwehImtUra2CeunDU
TzdnUgbR3AHvech7vVpe64UFXKsTY5OFbpoMLQapVnxYvvnUz/fPRXxzwmge/81L
mQtWJCRKMUj1caBCppuF6dGECnHwMPq9WoAwDY6yDYLdDyjHV4PB9QoRTK3FnaeI
GrY0XSxRvcznHVMn04PfyCM4m4Tx0+QS6joYRkE9FeXcWahI213QDrlHfS6hBGJu
3gzlR0YWWBe1sg==
-----END CERTIFICATE-----
Generated at Wed Jun 11 10:20:29 2025 by rpki-client