Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json)
Hash identifier: 5l+eEJ5lINJPH8F65G4t1OmTDYAz9vDsUbuYmUkJXXs=
Subject key identifier: 41:A6:E2:18:95:C3:E1:F7:C2:5A:B0:9E:D6:E2:BF:BB:A1:F1:FF:27
Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d
Certificate serial: 019746D4F7628517BE7ABF93689B04F0FC4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
Manifest number: 0754
Signing time: Fri 06 Jun 2025 20:00:51 +0000
Manifest this update: Fri 06 Jun 2025 20:00:51 +0000
Manifest next update: Sat 07 Jun 2025 20:00:51 +0000
Files and hashes: 1: aHJU3TtGM9M9L2c33hiqaeAD6-M.roa (hash: Jnk6c3GJ5E4y6b+inckEyRoPVADxMl1TsyYlid/Y0Y0=)
2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: G4O4HQTYRnNzuKoXNYG4zDRaBEqCziP9TxPSRyXUtWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 20:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:f7:62:85:17:be:7a:bf:93:68:9b:04:f0:fc:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d
Validity
Not Before: Jun 6 20:00:51 2025 GMT
Not After : Jun 7 20:00:51 2025 GMT
Subject: CN=41a6e21895c3e1f7c25ab09ed6e2bfbba1f1ff27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:cd:ad:9d:b4:42:46:c3:b9:46:47:42:f5:dd:
67:0f:a0:42:5e:7c:a6:3d:3e:a7:63:4d:f1:0b:c8:
4f:4b:76:25:83:4d:ec:f7:54:b3:5d:c4:83:42:98:
b0:47:19:46:02:6c:6a:fd:c9:1d:aa:e7:8a:65:b2:
6d:35:af:14:74:7a:05:6d:80:e1:57:9d:4b:78:73:
68:9d:89:f9:f3:f9:0c:67:7c:6a:3b:c1:e3:1a:a7:
43:0d:e8:bc:01:b3:e6:9e:62:19:d9:f4:1d:66:26:
0e:89:c7:dc:56:20:6e:5b:fd:44:fd:1d:07:ce:cf:
f3:9b:b6:10:a3:99:fa:0a:0c:ec:bc:e0:ab:c2:e7:
fd:52:cc:e7:5a:1e:d0:44:fe:6d:ee:c4:97:ed:12:
fa:c5:40:ae:25:11:3e:22:0b:2e:24:bc:d2:47:54:
fd:bc:c7:89:28:9f:79:85:86:d4:29:0c:94:4c:1c:
f8:31:ae:65:3c:80:9b:7b:05:b3:a3:72:58:5b:88:
ae:ea:75:a4:1c:c5:98:4d:dd:7a:0c:77:c8:60:fe:
f3:37:06:07:5d:d1:56:ba:7c:2d:09:4c:5c:a0:87:
58:a9:98:f9:df:35:47:6a:42:c8:f0:75:12:29:ef:
85:4f:f6:a8:df:17:48:6a:04:2f:22:08:05:07:93:
d0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A6:E2:18:95:C3:E1:F7:C2:5A:B0:9E:D6:E2:BF:BB:A1:F1:FF:27
X509v3 Authority Key Identifier:
keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:e6:bb:91:ad:a1:24:f9:57:17:8c:4d:ad:18:c9:c6:2b:e6:
f7:c8:66:ae:4a:92:6e:23:8d:dc:72:77:52:18:69:c8:c9:cb:
93:cd:e7:c5:16:c6:2d:54:4c:83:7c:fe:8b:80:ca:ba:57:27:
30:8b:7d:80:da:b0:20:3e:5d:7a:a9:d2:53:4b:e4:ae:12:c6:
d7:00:91:1b:e6:bb:21:63:f0:6e:fd:45:c9:d3:c5:09:d7:21:
1e:1f:bd:18:18:44:14:dc:04:59:19:70:7c:cf:d7:05:95:50:
c1:7c:b8:92:8e:32:b7:34:d1:c0:8e:4d:7b:3a:88:de:7e:b0:
33:ba:5d:8e:98:32:59:3c:f4:e1:79:ce:ed:92:c5:a7:6d:84:
69:44:51:89:b6:89:85:e2:44:3e:b2:d3:32:c2:d6:57:eb:0a:
f2:3f:d5:6a:aa:88:9f:6b:97:e8:14:a0:a3:48:73:94:80:20:
51:ab:54:b3:d2:14:d6:2f:81:3e:5b:05:26:bd:00:50:8b:48:
95:97:9a:45:b4:30:ce:53:67:48:47:a1:69:bd:54:52:80:43:
7f:8c:d7:69:0a:7d:32:4e:27:b1:1f:f0:22:df:3b:ca:c1:e9:
d6:00:20:ad:47:b2:c1:de:13:95:9d:40:d0:99:58:1a:c6:6c:
35:07:a3:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdG1PdihRe+er+TaJsE8PxMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NTI1YTM2MmU4NzcwNWExZWMwMjJkMTY1NjBmMjc2ZDU5
Y2VlMWQwHhcNMjUwNjA2MjAwMDUxWhcNMjUwNjA3MjAwMDUxWjAzMTEwLwYDVQQD
Eyg0MWE2ZTIxODk1YzNlMWY3YzI1YWIwOWVkNmUyYmZiYmExZjFmZjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1s2tnbRCRsO5RkdC9d1nD6BCXnym
PT6nY03xC8hPS3Ylg03s91SzXcSDQpiwRxlGAmxq/ckdqueKZbJtNa8UdHoFbYDh
V51LeHNonYn58/kMZ3xqO8HjGqdDDei8AbPmnmIZ2fQdZiYOicfcViBuW/1E/R0H
zs/zm7YQo5n6CgzsvOCrwuf9UsznWh7QRP5t7sSX7RL6xUCuJRE+IgsuJLzSR1T9
vMeJKJ95hYbUKQyUTBz4Ma5lPICbewWzo3JYW4iu6nWkHMWYTd16DHfIYP7zNwYH
XdFWunwtCUxcoIdYqZj53zVHakLI8HUSKe+FT/ao3xdIagQvIggFB5PQ7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEGm4hiVw+H3wlqwntbiv7uh8f8nMB8GA1UdIwQY
MBaAFGlSWjYuh3BaHsAi0WVg8nbVnO4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzkt
NjVkNmNhM2Y0OWQ4LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzktNjVkNmNhM2Y0OWQ4
LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiua7ka2h
JPlXF4xNrRjJxivm98hmrkqSbiON3HJ3UhhpyMnLk83nxRbGLVRMg3z+i4DKulcn
MIt9gNqwID5deqnSU0vkrhLG1wCRG+a7IWPwbv1FydPFCdchHh+9GBhEFNwEWRlw
fM/XBZVQwXy4ko4ytzTRwI5NezqI3n6wM7pdjpgyWTz04XnO7ZLFp22EaURRibaJ
heJEPrLTMsLWV+sK8j/VaqqIn2uX6BSgo0hzlIAgUatUs9IU1i+BPlsFJr0AUItI
lZeaRbQwzlNnSEehab1UUoBDf4zXaQp9Mk4nsR/wIt87ysHp1gAgrUeywd4TlZ1A
0JlYGsZsNQejPQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:36:26 2025 by rpki-client