
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
File: aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json)
Hash identifier: Iooqa0Te+4oq9WrhiqchUIVlWiWANuX579CBdxVgy8w=
Subject key identifier: C2:C6:C3:FA:0A:F6:E7:FE:A5:B3:2D:56:F8:FB:FC:81:DD:34:88:56
Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
Certificate issuer: /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Certificate serial: 0197673B5DD667F6BE3F9D335D0864D4219F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
Manifest number: 0FEE
Signing time: Fri 13 Jun 2025 03:00:33 +0000
Manifest this update: Fri 13 Jun 2025 03:00:33 +0000
Manifest next update: Sat 14 Jun 2025 03:00:33 +0000
Files and hashes: 1: 8criSeClq2Eu3zzop6X6ae-0yfY.roa (hash: nOinS53G7GkxN9bqxtcws3EdTvx5t+9T2IsaBWfXBg8=)
2: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: d28C0fAhaEvaW0lT97O3qCNSaV+hrL7dpX1gM7j050A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 03:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:3b:5d:d6:67:f6:be:3f:9d:33:5d:08:64:d4:21:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Validity
Not Before: Jun 13 03:00:33 2025 GMT
Not After : Jun 14 03:00:33 2025 GMT
Subject: CN=c2c6c3fa0af6e7fea5b32d56f8fbfc81dd348856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4f:d2:73:8a:0a:7b:91:fa:c3:8c:d3:3b:e1:
4a:fa:bb:97:9e:f3:58:25:bb:1b:fe:41:3f:d8:b4:
22:07:fe:74:a5:36:12:0b:f9:c2:91:68:8f:7a:8b:
c0:09:62:f3:aa:f1:d5:e7:30:b8:a7:06:1b:65:77:
2e:bd:c7:e1:04:aa:53:a0:07:ac:73:42:5d:3d:7e:
1b:fe:fa:13:79:cb:d4:b4:49:c4:52:97:d2:4d:b9:
03:84:01:54:40:f1:74:bd:94:d5:bc:45:a1:65:0f:
06:3e:ea:67:13:61:04:ea:3d:11:01:c4:aa:9c:3c:
69:fd:00:e8:6b:f4:82:82:32:8a:49:bc:7f:52:b6:
2a:2a:0a:70:49:80:9e:34:d2:6e:1d:5b:85:5a:b9:
fb:b6:4d:94:2a:55:5b:10:aa:1c:70:b2:01:cd:b2:
77:53:2c:b2:0f:a5:af:26:1b:72:7f:7c:78:1d:88:
3c:de:df:79:40:90:22:5a:6b:bb:2b:13:a0:05:52:
b8:f6:95:ae:8e:6f:e1:ba:f2:36:45:f5:ce:ca:42:
a6:1a:ba:bf:93:d2:46:dc:c5:36:b3:38:bd:d5:ad:
b3:e0:d5:a9:ec:a9:f1:75:da:72:e8:2c:46:63:a6:
cf:f0:4a:ca:e6:03:de:3d:2b:48:6f:c2:a3:c2:76:
2d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C6:C3:FA:0A:F6:E7:FE:A5:B3:2D:56:F8:FB:FC:81:DD:34:88:56
X509v3 Authority Key Identifier:
keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:86:60:6a:89:0f:09:81:34:66:06:f3:6a:78:98:03:4e:83:
44:bd:cf:35:80:ae:63:8f:31:a8:9a:e4:25:6f:1b:5f:de:b7:
ee:02:40:23:ad:32:b6:44:8d:49:f0:05:44:a9:67:99:f8:98:
aa:47:ba:be:e4:e0:34:16:ea:5a:02:0a:b3:17:5d:9f:cd:7e:
28:c3:7e:f6:04:2b:40:0e:d1:ed:e2:b8:8a:01:47:c1:0c:b1:
5d:32:60:c0:e0:ee:50:b5:29:53:6b:9d:f2:1c:48:44:19:8f:
e7:a8:05:70:a9:32:f7:49:a4:96:56:55:22:ef:ce:31:0d:02:
5e:5d:c1:fc:50:ab:ff:5a:1d:b2:cd:e9:38:e4:9f:ac:85:f8:
ba:88:45:ed:7d:de:b1:5f:96:e2:89:cd:e0:04:44:eb:14:f4:
95:95:12:4f:d6:fc:f0:3c:f2:f1:05:cb:08:e6:fa:da:bc:ef:
7f:84:1a:59:5d:6b:e7:fd:46:d7:45:d9:df:ba:0e:c9:f6:26:
98:15:93:21:35:2e:0b:46:b4:c3:5e:18:a0:ca:5f:92:60:9f:
5e:38:97:33:e3:c6:a9:a2:46:bb:8c:6e:83:00:70:f3:16:18:
c8:3a:b9:1a:e9:da:3c:49:d2:e5:38:71:fb:4d:a8:cd:84:72:
a6:98:f9:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdnO13WZ/a+P50zXQhk1CGfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ODU0YTU3YWIwZDhhM2M5MjJjOGY2YTc5YWE4ZmU4YTZh
MmMwOWUwHhcNMjUwNjEzMDMwMDMzWhcNMjUwNjE0MDMwMDMzWjAzMTEwLwYDVQQD
EyhjMmM2YzNmYTBhZjZlN2ZlYTViMzJkNTZmOGZiZmM4MWRkMzQ4ODU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArE/Sc4oKe5H6w4zTO+FK+ruXnvNY
Jbsb/kE/2LQiB/50pTYSC/nCkWiPeovACWLzqvHV5zC4pwYbZXcuvcfhBKpToAes
c0JdPX4b/voTecvUtEnEUpfSTbkDhAFUQPF0vZTVvEWhZQ8GPupnE2EE6j0RAcSq
nDxp/QDoa/SCgjKKSbx/UrYqKgpwSYCeNNJuHVuFWrn7tk2UKlVbEKoccLIBzbJ3
UyyyD6WvJhtyf3x4HYg83t95QJAiWmu7KxOgBVK49pWujm/huvI2RfXOykKmGrq/
k9JG3MU2szi91a2z4NWp7Knxddpy6CxGY6bP8ErK5gPePStIb8KjwnYtcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMLGw/oK9uf+pbMtVvj7/IHdNIhWMB8GA1UdIwQY
MBaAFGmFSlerDYo8kiyPanmqj+imosCeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQt
NTIzOGIwMzU0NWNhLzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQtNTIzOGIwMzU0NWNh
LzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu4ZgaokP
CYE0ZgbzaniYA06DRL3PNYCuY48xqJrkJW8bX9637gJAI60ytkSNSfAFRKlnmfiY
qke6vuTgNBbqWgIKsxddn81+KMN+9gQrQA7R7eK4igFHwQyxXTJgwODuULUpU2ud
8hxIRBmP56gFcKky90mkllZVIu/OMQ0CXl3B/FCr/1odss3pOOSfrIX4uohF7X3e
sV+W4onN4ARE6xT0lZUST9b88Dzy8QXLCOb62rzvf4QaWV1r5/1G10XZ37oOyfYm
mBWTITUuC0a0w14YoMpfkmCfXjiXM+PGqaJGu4xugwBw8xYYyDq5GunaPEnS5Thx
+02ozYRyppj5Pw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 11:09:17 2025 by rpki-client