Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: /4/Hlwcz1z2LnJlpVeVkkeA9RqnbmOTwroFhhBNh+FQ=
Subject key identifier: 95:4C:D7:19:AB:97:A9:82:A3:0C:AC:74:68:9E:2C:23:DC:C4:87:BE
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 0197477996BD1450EC5A72117E3E1066E86B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 0FF6
Signing time: Fri 06 Jun 2025 23:00:40 +0000
Manifest this update: Fri 06 Jun 2025 23:00:40 +0000
Manifest next update: Sat 07 Jun 2025 23:00:40 +0000
Files and hashes: 1: 6zOYtzjXBD-DYg3_-ZbwFYlxy-U.roa (hash: bndS1Tzx6VzHh/lOs3pK1BLzPGIXQ0EzQwN4Ak3MXSs=)
2: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: OWZraw7Ks2y0AjZhvbqHv+DX3N8p1/CKkbmFvy0JRz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 23:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:96:bd:14:50:ec:5a:72:11:7e:3e:10:66:e8:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Jun 6 23:00:40 2025 GMT
Not After : Jun 7 23:00:40 2025 GMT
Subject: CN=954cd719ab97a982a30cac74689e2c23dcc487be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:80:c5:b0:13:9f:92:bd:0c:76:f2:c6:e6:b7:
2a:e4:4e:7d:8d:63:a9:c3:c9:d2:91:54:3b:d9:52:
46:d2:f2:b9:22:8b:09:1d:4d:83:a4:18:a0:65:35:
55:7a:20:e0:1c:ec:6b:be:ef:fe:55:43:99:52:d9:
31:ed:81:0d:1e:1d:6c:fa:38:56:dd:5f:fe:ba:76:
0f:09:5b:a8:7d:3f:d9:74:f0:8c:d3:05:41:a0:d2:
88:94:ec:c5:08:2e:95:82:9a:b0:05:b6:65:33:f6:
82:49:e4:e1:b4:6f:2c:88:f6:4f:8d:68:4f:a6:10:
f7:1e:42:19:b6:40:27:1b:62:75:5a:1c:11:0f:ad:
2e:dd:85:9a:7e:05:1b:a6:ae:53:c7:a9:94:d5:cd:
1f:1b:0e:55:f2:25:6e:5d:c4:fe:f0:c3:b2:00:bf:
ca:8f:f4:51:78:66:12:a1:1f:26:dd:99:10:a6:e3:
dc:61:0f:af:fc:2b:9e:32:e2:6b:fd:05:52:12:c2:
e3:87:dc:64:14:9a:35:29:d7:54:ce:96:68:4f:1a:
4d:e0:fc:86:c0:3e:5f:8b:78:45:d0:3f:7b:1c:df:
4a:c4:97:e7:2e:b5:0f:49:68:d4:48:99:ec:0b:1a:
dd:c0:c6:33:4d:72:01:54:78:77:e8:7c:33:77:e2:
56:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4C:D7:19:AB:97:A9:82:A3:0C:AC:74:68:9E:2C:23:DC:C4:87:BE
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:25:38:05:83:d8:a3:31:1e:6b:8a:39:8c:2f:81:da:01:c2:
2c:fb:d2:cd:5e:e9:1c:76:cc:1d:da:3e:3b:cd:02:61:37:32:
5f:f1:96:d6:99:56:b5:af:07:1b:c6:bb:ac:b0:d8:2d:93:df:
04:6a:70:b5:a0:f8:f8:60:72:93:44:39:e3:51:ee:4e:b3:8a:
42:28:b8:b6:79:a0:40:b4:8b:6d:66:5a:a6:06:97:ef:35:13:
de:4a:86:9c:87:42:2c:8f:30:fb:b0:80:5c:c1:36:be:d9:8d:
1c:39:22:d0:b4:62:de:31:20:60:1b:0b:2b:0a:29:d1:07:5c:
2c:fc:c5:24:28:f8:30:da:43:29:d3:b4:0a:fc:77:8a:77:89:
fa:8b:c9:59:5e:25:19:a8:38:47:3f:0d:36:be:c7:e2:dd:64:
3a:88:fa:71:a0:5f:ea:07:53:15:81:44:bd:91:51:6e:1f:a4:
49:e7:1a:fe:a7:8e:56:96:73:74:e8:9c:b4:5d:d7:4a:00:5c:
88:e7:f2:09:3c:9d:87:b6:4e:b8:70:d7:df:d4:fb:99:e0:10:
11:d3:cb:d9:6e:6e:dd:b5:01:3d:35:0e:87:08:64:33:6e:6f:
d2:70:bb:15:c7:a9:06:ba:9f:66:f4:80:75:d9:1c:48:8a:a1:
11:01:a1:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHeZa9FFDsWnIRfj4QZuhrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMGI0ZmFhYzc5YmIxOTY5MGMzYWY1YTA3OGM2Y2IxNGE5
MWFkNDIwHhcNMjUwNjA2MjMwMDQwWhcNMjUwNjA3MjMwMDQwWjAzMTEwLwYDVQQD
Eyg5NTRjZDcxOWFiOTdhOTgyYTMwY2FjNzQ2ODllMmMyM2RjYzQ4N2JlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4DFsBOfkr0MdvLG5rcq5E59jWOp
w8nSkVQ72VJG0vK5IosJHU2DpBigZTVVeiDgHOxrvu/+VUOZUtkx7YENHh1s+jhW
3V/+unYPCVuofT/ZdPCM0wVBoNKIlOzFCC6VgpqwBbZlM/aCSeThtG8siPZPjWhP
phD3HkIZtkAnG2J1WhwRD60u3YWafgUbpq5Tx6mU1c0fGw5V8iVuXcT+8MOyAL/K
j/RReGYSoR8m3ZkQpuPcYQ+v/CueMuJr/QVSEsLjh9xkFJo1KddUzpZoTxpN4PyG
wD5fi3hF0D97HN9KxJfnLrUPSWjUSJnsCxrdwMYzTXIBVHh36Hwzd+JWWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJVM1xmrl6mCowysdGieLCPcxIe+MB8GA1UdIwQY
MBaAFAALT6rHm7GWkMOvWgeMbLFKka1CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS85OTBiYjUtZmU0Mi00OTg1LTljYWYt
YTA5NmVlY2RhNzkzLzEvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS85OTBiYjUtZmU0Mi00OTg1LTljYWYtYTA5NmVlY2RhNzkz
LzEvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOSU4BYPY
ozEea4o5jC+B2gHCLPvSzV7pHHbMHdo+O80CYTcyX/GW1plWta8HG8a7rLDYLZPf
BGpwtaD4+GByk0Q541HuTrOKQii4tnmgQLSLbWZapgaX7zUT3kqGnIdCLI8w+7CA
XME2vtmNHDki0LRi3jEgYBsLKwop0QdcLPzFJCj4MNpDKdO0Cvx3ineJ+ovJWV4l
Gag4Rz8NNr7H4t1kOoj6caBf6gdTFYFEvZFRbh+kSeca/qeOVpZzdOictF3XSgBc
iOfyCTydh7ZOuHDX39T7meAQEdPL2W5u3bUBPTUOhwhkM25v0nC7FcepBrqfZvSA
ddkcSIqhEQGhvA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:21:54 2025 by rpki-client