
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
File: aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json)
Hash identifier: SyL8612WtACmBo0sNrCYU/Tx0fZoHWYmE7/j78ATXj4=
Subject key identifier: 7D:14:2E:C6:F8:0C:12:CC:4F:8B:46:7E:03:D7:99:BE:C2:13:E9:16
Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
Certificate issuer: /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Certificate serial: 01976D06D6FDE097A2B9CC8B959BD42C187C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
Manifest number: 0FF1
Signing time: Sat 14 Jun 2025 06:00:54 +0000
Manifest this update: Sat 14 Jun 2025 06:00:54 +0000
Manifest next update: Sun 15 Jun 2025 06:00:54 +0000
Files and hashes: 1: 8criSeClq2Eu3zzop6X6ae-0yfY.roa (hash: nOinS53G7GkxN9bqxtcws3EdTvx5t+9T2IsaBWfXBg8=)
2: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: nSC7vs/qAVHEDKQdWkIGOqXkQQKlXOTZs6DzCi9pPe8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:d6:fd:e0:97:a2:b9:cc:8b:95:9b:d4:2c:18:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Validity
Not Before: Jun 14 06:00:54 2025 GMT
Not After : Jun 15 06:00:54 2025 GMT
Subject: CN=7d142ec6f80c12cc4f8b467e03d799bec213e916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ba:8a:16:c1:72:57:c1:c2:7f:e9:ae:bf:fe:
9c:fd:56:3a:7e:aa:96:fb:4e:8c:23:74:bc:fa:4b:
7a:5f:1b:8d:cb:84:f4:04:a4:f2:9a:7e:50:ab:b1:
26:e8:ee:5e:2b:99:f7:41:a3:b8:83:32:4b:5f:62:
5d:c2:3b:4c:6c:91:ba:ed:c6:2a:f0:10:4b:7f:37:
d9:07:9b:78:b8:0d:ce:9c:5e:01:8d:e4:1f:fe:51:
c1:0e:24:fb:da:38:b4:75:e8:e0:38:f4:59:d0:90:
9e:c3:b8:20:ff:24:fe:e6:ba:03:5c:ea:74:c8:43:
f2:8b:fd:ac:91:89:33:04:75:ba:58:6d:43:81:27:
ec:d2:12:06:dc:9a:82:ad:3f:3a:88:31:46:c5:cf:
5d:20:ea:40:3d:8c:2a:87:6d:7f:50:74:df:47:8b:
ec:4f:58:21:2f:b1:67:42:72:83:5d:fd:8b:85:30:
ff:1d:12:89:36:21:f3:61:ea:b5:05:09:72:df:21:
b4:77:4f:06:e6:57:cd:68:ad:44:af:01:3c:50:55:
87:49:c1:1e:5e:30:a4:ab:a5:9f:2b:09:08:91:1a:
48:93:14:13:ef:32:97:89:e2:88:c6:15:98:4d:1d:
43:69:15:96:7b:e8:76:41:42:08:45:7a:25:25:ba:
d4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:14:2E:C6:F8:0C:12:CC:4F:8B:46:7E:03:D7:99:BE:C2:13:E9:16
X509v3 Authority Key Identifier:
keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:fc:36:2d:07:26:63:88:71:5e:00:18:57:e6:c2:71:f8:e5:
e5:69:b7:3a:42:d2:1d:a4:6f:53:9b:17:5c:d0:43:53:61:0a:
22:c2:e4:6b:86:94:75:85:44:b9:3c:b4:e8:69:5f:d3:5f:f6:
26:dc:39:db:93:f6:01:45:bc:fc:62:97:21:c1:28:01:96:87:
5f:79:f1:01:e3:ef:40:f6:75:5a:cb:4e:b9:b0:b3:b9:33:69:
56:cb:52:72:b9:37:39:59:b0:1e:2d:8c:77:89:bc:d2:22:4c:
b4:d2:f3:cd:38:06:93:e3:f5:3d:4f:70:cb:2e:04:b9:62:c6:
fc:dc:2c:05:8d:47:9c:75:50:34:90:df:29:5a:c0:c5:a2:78:
b8:29:8f:18:98:ae:5d:dd:89:fe:1f:fe:84:45:8d:b5:be:0f:
07:09:8b:39:80:40:a4:32:1c:f7:68:a2:15:32:cd:f8:18:97:
68:e0:6e:1b:8d:7f:0d:a4:e6:d3:10:35:31:46:cc:32:ea:79:
bd:27:d1:58:a4:b2:42:3b:4e:d7:75:7a:14:73:ce:d9:77:5b:
6b:7c:71:87:c3:ef:4a:b3:35:53:fa:0c:e0:07:c0:fb:2e:1f:
35:12:03:0d:27:54:55:6d:ae:41:34:e5:ac:3d:de:f4:48:15:
d3:f6:48:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtBtb94JeiucyLlZvULBh8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ODU0YTU3YWIwZDhhM2M5MjJjOGY2YTc5YWE4ZmU4YTZh
MmMwOWUwHhcNMjUwNjE0MDYwMDU0WhcNMjUwNjE1MDYwMDU0WjAzMTEwLwYDVQQD
Eyg3ZDE0MmVjNmY4MGMxMmNjNGY4YjQ2N2UwM2Q3OTliZWMyMTNlOTE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLqKFsFyV8HCf+muv/6c/VY6fqqW
+06MI3S8+kt6XxuNy4T0BKTymn5Qq7Em6O5eK5n3QaO4gzJLX2JdwjtMbJG67cYq
8BBLfzfZB5t4uA3OnF4BjeQf/lHBDiT72ji0dejgOPRZ0JCew7gg/yT+5roDXOp0
yEPyi/2skYkzBHW6WG1DgSfs0hIG3JqCrT86iDFGxc9dIOpAPYwqh21/UHTfR4vs
T1ghL7FnQnKDXf2LhTD/HRKJNiHzYeq1BQly3yG0d08G5lfNaK1ErwE8UFWHScEe
XjCkq6WfKwkIkRpIkxQT7zKXieKIxhWYTR1DaRWWe+h2QUIIRXolJbrUUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH0ULsb4DBLMT4tGfgPXmb7CE+kWMB8GA1UdIwQY
MBaAFGmFSlerDYo8kiyPanmqj+imosCeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQt
NTIzOGIwMzU0NWNhLzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQtNTIzOGIwMzU0NWNh
LzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVPw2LQcm
Y4hxXgAYV+bCcfjl5Wm3OkLSHaRvU5sXXNBDU2EKIsLka4aUdYVEuTy06Glf01/2
Jtw525P2AUW8/GKXIcEoAZaHX3nxAePvQPZ1WstOubCzuTNpVstScrk3OVmwHi2M
d4m80iJMtNLzzTgGk+P1PU9wyy4EuWLG/NwsBY1HnHVQNJDfKVrAxaJ4uCmPGJiu
Xd2J/h/+hEWNtb4PBwmLOYBApDIc92iiFTLN+BiXaOBuG41/DaTm0xA1MUbMMup5
vSfRWKSyQjtO13V6FHPO2Xdba3xxh8PvSrM1U/oM4AfA+y4fNRIDDSdUVW2uQTTl
rD3e9EgV0/ZISg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 10:19:46 2025 by rpki-client