Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
File: AIVd2JclbobaPL5plOlM4ulpryY.mft (raw, json)
Hash identifier: MVKCUygporXTjDyMjPqD13M+5axt7zY2IuKfNZNfoKU=
Subject key identifier: 24:2F:72:32:FF:EF:73:9D:1D:FA:66:77:7C:C0:65:70:5B:B4:78:06
Authority key identifier: 00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
Certificate issuer: /CN=00855dd897256e86da3cbe6994e94ce2e969af26
Certificate serial: 019748FA529E836AC55304F55ADC15D0966C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 06:00:54 +0000
Manifest this update: Sat 07 Jun 2025 06:00:54 +0000
Manifest next update: Sun 08 Jun 2025 06:00:54 +0000
Files and hashes: 1: AIVd2JclbobaPL5plOlM4ulpryY.crl (hash: vWhMciLrNURICcc48DhehKiCkgNjk7ooGZdK+LEixTE=)
2: MgGDvxLOtMPwXMbYQuh7K6Nu5E0.roa (hash: R8z9BxbXd7Dke2ejYNt/dzLTxcDWFrg7+4k/8QPKV/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:52:9e:83:6a:c5:53:04:f5:5a:dc:15:d0:96:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00855dd897256e86da3cbe6994e94ce2e969af26
Validity
Not Before: Jun 7 06:00:54 2025 GMT
Not After : Jun 8 06:00:54 2025 GMT
Subject: CN=242f7232ffef739d1dfa66777cc065705bb47806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d7:52:73:d6:c8:41:b8:c5:a6:4a:f2:a8:34:
68:95:8b:16:bc:19:ef:e4:d7:c7:f3:db:07:14:b7:
88:1b:b2:59:76:bd:cd:a4:2f:9d:1d:55:b7:06:0b:
80:bb:1a:e7:0c:bc:e3:81:7e:2c:0f:1d:6e:ed:99:
09:b9:15:0f:ad:74:91:0e:b2:bd:26:e4:d0:fe:cf:
59:47:76:70:0f:8f:b6:02:9b:80:5d:a8:eb:b0:7c:
ef:03:cc:25:e8:8c:7a:0f:69:e5:64:dd:58:fc:ea:
4b:74:e4:f4:55:b6:87:1b:53:75:0a:2b:78:5b:b7:
60:a4:4d:4f:25:b2:07:c2:39:27:7d:3c:44:80:bd:
e1:88:a1:1e:9f:22:15:11:94:cb:91:cb:c5:ab:59:
fc:02:79:6c:4b:d6:7d:e7:42:1e:f4:0d:ac:5d:1f:
e6:d1:3a:9a:c8:3b:40:7e:49:b5:e4:2e:93:06:5e:
50:68:ca:fd:85:f8:5c:33:84:3a:ab:38:51:d6:51:
08:30:c9:c3:6b:b6:ae:eb:e8:cf:a2:42:26:0e:9b:
b6:f2:4c:8d:86:06:e2:38:dc:e9:c2:f4:25:87:2b:
dd:2b:b5:88:89:3f:9b:91:69:e5:77:fb:45:5e:43:
4c:69:4e:52:3d:92:38:e0:10:54:2d:eb:30:f0:e6:
28:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:2F:72:32:FF:EF:73:9D:1D:FA:66:77:7C:C0:65:70:5B:B4:78:06
X509v3 Authority Key Identifier:
keyid:00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:75:5b:84:84:90:f0:49:12:c5:f4:1c:05:7d:95:42:0a:f2:
f9:24:6f:5e:8e:3b:c6:00:52:43:cc:8b:32:24:4f:d2:1d:43:
90:a6:88:7e:39:59:26:15:c9:c5:e2:25:db:41:b4:03:3a:c0:
31:96:87:a8:03:a2:33:b2:93:01:dd:a4:74:96:64:24:cf:64:
a4:03:ae:93:ef:91:e0:f3:17:76:f4:a0:0d:66:1c:84:19:06:
cc:08:1f:0e:77:43:72:03:8f:0a:77:15:68:42:50:c6:16:65:
2d:90:10:26:89:12:17:59:d8:bc:da:e4:be:5c:f0:e7:e8:8e:
92:40:17:91:13:cc:e8:c1:c7:ec:31:ce:77:95:19:8f:da:a8:
e3:c8:0e:c7:61:75:ed:d0:b8:95:d9:99:66:0e:ac:73:42:87:
e6:f4:36:07:29:43:a3:c8:1c:c6:cb:6c:da:4c:fc:c1:8f:15:
fb:e3:a4:55:15:5d:ba:f6:1a:0b:a6:9a:41:26:a2:b8:b1:a6:
62:ae:b1:01:70:eb:6d:fa:0a:3e:38:c0:b3:72:cc:d1:c7:b8:
c5:6c:b3:d9:dd:1a:02:df:dd:a0:39:16:e0:db:25:a2:b3:2c:
6a:4e:6e:8d:be:98:38:08:bd:35:8d:b8:b1:98:a2:c2:dd:eb:
79:ea:06:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+lKeg2rFUwT1WtwV0JZsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwODU1ZGQ4OTcyNTZlODZkYTNjYmU2OTk0ZTk0Y2UyZTk2
OWFmMjYwHhcNMjUwNjA3MDYwMDU0WhcNMjUwNjA4MDYwMDU0WjAzMTEwLwYDVQQD
EygyNDJmNzIzMmZmZWY3MzlkMWRmYTY2Nzc3Y2MwNjU3MDViYjQ3ODA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29dSc9bIQbjFpkryqDRolYsWvBnv
5NfH89sHFLeIG7JZdr3NpC+dHVW3BguAuxrnDLzjgX4sDx1u7ZkJuRUPrXSRDrK9
JuTQ/s9ZR3ZwD4+2ApuAXajrsHzvA8wl6Ix6D2nlZN1Y/OpLdOT0VbaHG1N1Cit4
W7dgpE1PJbIHwjknfTxEgL3hiKEenyIVEZTLkcvFq1n8AnlsS9Z950Ie9A2sXR/m
0TqayDtAfkm15C6TBl5QaMr9hfhcM4Q6qzhR1lEIMMnDa7au6+jPokImDpu28kyN
hgbiONzpwvQlhyvdK7WIiT+bkWnld/tFXkNMaU5SPZI44BBULesw8OYoCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCQvcjL/73OdHfpmd3zAZXBbtHgGMB8GA1UdIwQY
MBaAFACFXdiXJW6G2jy+aZTpTOLpaa8mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUlWZDJKY2xib2JhUEw1cGxPbE00dWxwcnlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZmMzOTUtOThiYy00YWVkLTkzOWUt
ODg2ZjY2YmI2ZWU4LzEvQUlWZDJKY2xib2JhUEw1cGxPbE00dWxwcnlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC85ZmMzOTUtOThiYy00YWVkLTkzOWUtODg2ZjY2YmI2ZWU4
LzEvQUlWZDJKY2xib2JhUEw1cGxPbE00dWxwcnlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEXVbhISQ
8EkSxfQcBX2VQgry+SRvXo47xgBSQ8yLMiRP0h1DkKaIfjlZJhXJxeIl20G0AzrA
MZaHqAOiM7KTAd2kdJZkJM9kpAOuk++R4PMXdvSgDWYchBkGzAgfDndDcgOPCncV
aEJQxhZlLZAQJokSF1nYvNrkvlzw5+iOkkAXkRPM6MHH7DHOd5UZj9qo48gOx2F1
7dC4ldmZZg6sc0KH5vQ2BylDo8gcxsts2kz8wY8V++OkVRVduvYaC6aaQSaiuLGm
Yq6xAXDrbfoKPjjAs3LM0ce4xWyz2d0aAt/doDkW4NslorMsak5ujb6YOAi9NY24
sZiiwt3reeoGEg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:37:00 2025 by rpki-client