Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
File: aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json)
Hash identifier: iI62vjp82PPS5MGNBxNEMW7Ss2S85dYuTnBGm2yRXNo=
Subject key identifier: 20:60:F5:0A:EA:35:67:DD:44:CC:BD:AB:C9:12:B7:7A:E2:16:FD:23
Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
Certificate issuer: /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Certificate serial: 019756111343836D60BDADDA1CE43239DC85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
Manifest number: 1585
Signing time: Mon 09 Jun 2025 19:00:48 +0000
Manifest this update: Mon 09 Jun 2025 19:00:48 +0000
Manifest next update: Tue 10 Jun 2025 19:00:48 +0000
Files and hashes: 1: 1LWuminfGd450btHCMbnnbPQ_ZE.roa (hash: TISDdBpwKFkkTeSDLc72qwKWM7K/Xn5/55e5YUo0nnQ=)
2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: VGqSF30UMCgii46gs2IYqYCjr6FmTfwE6fcih0ypJD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:56:11:13:43:83:6d:60:bd:ad:da:1c:e4:32:39:dc:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Validity
Not Before: Jun 9 19:00:48 2025 GMT
Not After : Jun 10 19:00:48 2025 GMT
Subject: CN=2060f50aea3567dd44ccbdabc912b77ae216fd23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8e:81:f2:d2:7c:2e:da:0a:56:4c:9e:3d:31:
0d:6c:fc:3f:11:3f:b5:11:de:bc:97:5a:8e:8e:f4:
54:e8:93:c3:5a:b7:24:00:80:56:03:a0:03:62:c3:
1c:5b:bb:5d:73:6d:2e:14:51:ce:5d:eb:27:66:e5:
15:c4:65:74:29:17:ae:f3:61:f2:a5:99:ff:f5:ee:
59:25:3a:6d:30:2b:2a:d4:00:13:4b:2d:e7:f7:d3:
1d:14:83:c6:38:4d:c1:28:7d:82:68:df:11:f2:73:
85:ce:e6:1c:b3:56:13:2a:aa:f8:d6:cb:f6:fa:d6:
e7:fb:0c:6c:ca:ef:01:2e:8f:42:98:23:ca:1d:03:
a4:cd:99:22:77:32:df:56:69:3f:2a:bb:16:79:dc:
d7:e9:21:5c:09:b9:f9:0e:52:39:c4:73:b5:36:3d:
ce:a1:14:3b:c2:e5:d9:42:0d:1a:97:b5:11:5a:54:
5f:0a:63:49:a6:29:43:83:e3:ec:32:e8:15:a2:b0:
1c:e8:9b:03:b3:de:8b:91:80:d1:94:a0:a0:6e:7f:
7a:3d:53:e9:9f:7e:44:08:67:db:bf:87:f0:bf:60:
96:13:7c:c0:10:ac:8d:39:85:84:be:44:30:c5:f5:
55:ef:ae:0f:1f:56:ab:45:9f:db:b1:de:6f:57:20:
1f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:60:F5:0A:EA:35:67:DD:44:CC:BD:AB:C9:12:B7:7A:E2:16:FD:23
X509v3 Authority Key Identifier:
keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:d6:f5:64:a3:69:82:ce:17:6b:5f:30:aa:a6:fb:02:45:65:
ab:70:44:51:38:7c:1f:84:31:08:d7:59:28:d1:f7:fd:62:2c:
e8:3c:29:03:f1:a5:30:f0:4b:2b:db:eb:e3:15:99:29:de:bb:
96:7f:0e:be:3b:0a:18:4c:c4:1d:b9:6e:f7:c3:58:d0:1c:a6:
37:d5:4b:ca:67:f5:6c:94:15:ae:18:0d:4d:dd:2c:e0:16:5f:
d3:23:e5:af:19:8b:a1:55:f5:fa:4c:be:2d:e9:c7:1c:88:70:
99:5a:1b:94:b7:2f:61:b8:94:42:29:a8:97:9a:cc:76:2f:03:
65:a9:c7:77:97:32:89:61:1e:df:9c:96:31:67:26:cc:0f:55:
01:f2:77:55:20:a8:d4:ec:72:5f:a4:86:61:62:05:91:f1:13:
1a:dc:80:dd:b9:9c:e8:b0:76:d6:24:07:64:a7:ee:7a:ef:c4:
94:ca:cb:1f:c3:34:a3:ea:cc:21:89:ba:84:47:fa:a9:48:51:
b2:8a:08:d4:04:b4:84:fd:de:6a:42:4e:f9:3c:d3:7f:ca:c0:
16:5a:d1:5f:30:61:33:fb:1b:1b:9f:4b:40:6d:e6:5a:39:e5:
f5:7e:85:55:e4:b5:fa:99:b2:0b:f8:9d:66:ff:39:61:da:48:
3b:19:d6:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdWERNDg21gva3aHOQyOdyFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NGU1MTVjYzViZTRlMjdlOWQzZDEzZTVlMWMxMWRjNzUy
OTI3NGIwHhcNMjUwNjA5MTkwMDQ4WhcNMjUwNjEwMTkwMDQ4WjAzMTEwLwYDVQQD
EygyMDYwZjUwYWVhMzU2N2RkNDRjY2JkYWJjOTEyYjc3YWUyMTZmZDIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnY6B8tJ8LtoKVkyePTENbPw/ET+1
Ed68l1qOjvRU6JPDWrckAIBWA6ADYsMcW7tdc20uFFHOXesnZuUVxGV0KReu82Hy
pZn/9e5ZJTptMCsq1AATSy3n99MdFIPGOE3BKH2CaN8R8nOFzuYcs1YTKqr41sv2
+tbn+wxsyu8BLo9CmCPKHQOkzZkidzLfVmk/KrsWedzX6SFcCbn5DlI5xHO1Nj3O
oRQ7wuXZQg0al7URWlRfCmNJpilDg+PsMugVorAc6JsDs96LkYDRlKCgbn96PVPp
n35ECGfbv4fwv2CWE3zAEKyNOYWEvkQwxfVV764PH1arRZ/bsd5vVyAfzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCBg9QrqNWfdRMy9q8kSt3riFv0jMB8GA1UdIwQY
MBaAFGlOUVzFvk4n6dPRPl4cEdx1KSdLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYt
NTFjNzdjYzQ5MTQ2LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYtNTFjNzdjYzQ5MTQ2
LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASNb1ZKNp
gs4Xa18wqqb7AkVlq3BEUTh8H4QxCNdZKNH3/WIs6DwpA/GlMPBLK9vr4xWZKd67
ln8OvjsKGEzEHblu98NY0BymN9VLymf1bJQVrhgNTd0s4BZf0yPlrxmLoVX1+ky+
LenHHIhwmVoblLcvYbiUQimol5rMdi8DZanHd5cyiWEe35yWMWcmzA9VAfJ3VSCo
1OxyX6SGYWIFkfETGtyA3bmc6LB21iQHZKfueu/ElMrLH8M0o+rMIYm6hEf6qUhR
sooI1AS0hP3eakJO+TzTf8rAFlrRXzBhM/sbG59LQG3mWjnl9X6FVeS1+pmyC/id
Zv85YdpIOxnW6Q==
-----END CERTIFICATE-----
Generated at Mon Jun 9 23:40:35 2025 by rpki-client