Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
File: aH2bViukcmGPk5jiZcoOcQj2h6M.mft (raw, json)
Hash identifier: idhs8vG38uD81osl8bwo8woS1ZoULbjizYDayOmXe6k=
Subject key identifier: 57:22:45:4C:20:B4:28:63:AF:BA:13:2E:FD:CB:E1:A5:CD:AD:0B:1F
Authority key identifier: 68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
Certificate issuer: /CN=687d9b562ba472618f9398e265ca0e7108f687a3
Certificate serial: 01974967A8B0633A953DA24AF0D0AD7414AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
Manifest number: 150F
Signing time: Sat 07 Jun 2025 08:00:19 +0000
Manifest this update: Sat 07 Jun 2025 08:00:19 +0000
Manifest next update: Sun 08 Jun 2025 08:00:19 +0000
Files and hashes: 1: aH2bViukcmGPk5jiZcoOcQj2h6M.crl (hash: wyYRVpuwroWObMxjbgbO1mbpIBhnDjcGZv1MgWm0KCY=)
2: lwjpFv3HgemxBJqe9gi4ArggD88.roa (hash: 7p7Zr7Ya8mUheMjW/Ww4B8S5/Cc2CZ+iZfLnhmKVtRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:a8:b0:63:3a:95:3d:a2:4a:f0:d0:ad:74:14:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687d9b562ba472618f9398e265ca0e7108f687a3
Validity
Not Before: Jun 7 08:00:19 2025 GMT
Not After : Jun 8 08:00:19 2025 GMT
Subject: CN=5722454c20b42863afba132efdcbe1a5cdad0b1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b0:51:bf:92:76:36:33:af:42:09:a0:11:7d:
d5:5d:b9:20:26:1c:e7:3d:05:f0:f6:f9:18:b3:85:
38:15:c0:4b:58:47:ff:c4:f1:6f:43:db:bc:e4:a7:
b9:c4:a0:9f:3b:81:11:10:e6:50:3e:80:e6:f3:01:
68:91:f7:0a:9b:be:a6:66:0d:c9:7f:df:5f:c7:1c:
5b:e0:9c:ff:76:36:e5:17:80:cb:60:80:71:2e:f8:
fe:64:e2:16:ec:6f:4b:8c:65:05:6e:9d:02:22:e6:
6e:37:88:27:cf:48:a6:86:35:34:3b:a1:3d:2d:37:
ea:00:2c:22:2d:4b:ad:b0:06:79:cc:80:ce:22:73:
45:b7:bd:12:20:1e:c1:f5:54:06:a1:04:46:27:41:
01:74:05:bd:20:9b:04:11:82:dc:a5:79:ab:6a:6b:
33:19:de:22:c5:d4:07:6a:a2:a3:4a:09:ea:20:ff:
c2:40:7f:50:c6:08:be:a5:74:a2:ec:96:8b:ee:f0:
47:bd:8a:60:11:29:d2:59:e2:96:c7:5d:4f:68:10:
32:85:d6:d3:4f:5b:d4:28:0f:a6:a0:d9:c3:a3:cb:
d2:2f:9d:41:f2:52:62:a5:cc:a7:46:c3:d7:73:d6:
5c:6e:0e:ae:cd:8d:55:28:4f:f6:99:6e:e9:30:10:
64:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:22:45:4C:20:B4:28:63:AF:BA:13:2E:FD:CB:E1:A5:CD:AD:0B:1F
X509v3 Authority Key Identifier:
keyid:68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:39:0b:78:a2:17:47:d0:c1:fa:8e:69:b3:14:78:74:37:df:
eb:15:1c:42:1c:08:fb:a4:5d:ae:c5:ec:a4:62:4a:97:6a:56:
a1:25:e0:78:dd:eb:bd:21:34:e8:ea:b6:b7:34:63:4f:2c:4a:
85:f4:e9:1f:a6:2e:9f:13:73:58:d0:ab:81:d5:1c:df:44:54:
63:87:23:b2:ed:9c:ce:2c:ec:8a:da:e4:a3:fb:f5:53:fa:36:
29:d1:93:3e:df:0e:0c:63:23:39:f0:48:8e:70:a8:58:a1:bb:
86:bf:6c:94:01:b7:d6:0d:a7:4f:36:48:73:4b:ce:a7:a2:ff:
49:5d:d0:c4:ee:33:07:ea:94:ec:51:24:84:bb:40:a5:fb:9a:
79:5c:da:6d:b8:89:df:87:02:1f:66:2c:9f:fd:ac:87:f4:17:
2e:61:4e:24:97:67:f4:1b:1e:64:09:8c:ae:7a:bd:28:80:f5:
1c:b3:46:09:f9:d5:29:2b:46:d4:2b:d4:99:18:c1:58:76:be:
41:a5:74:54:4a:8c:53:29:07:b9:44:19:f3:21:7d:af:01:df:
df:8e:02:1e:34:8c:1e:9e:b8:ad:3e:c6:85:e1:ea:bc:20:25:
b3:6e:01:3f:55:57:6a:f9:aa:c4:9a:1b:ae:69:e3:0b:af:17:
02:61:eb:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJZ6iwYzqVPaJK8NCtdBStMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4N2Q5YjU2MmJhNDcyNjE4ZjkzOThlMjY1Y2EwZTcxMDhm
Njg3YTMwHhcNMjUwNjA3MDgwMDE5WhcNMjUwNjA4MDgwMDE5WjAzMTEwLwYDVQQD
Eyg1NzIyNDU0YzIwYjQyODYzYWZiYTEzMmVmZGNiZTFhNWNkYWQwYjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbBRv5J2NjOvQgmgEX3VXbkgJhzn
PQXw9vkYs4U4FcBLWEf/xPFvQ9u85Ke5xKCfO4EREOZQPoDm8wFokfcKm76mZg3J
f99fxxxb4Jz/djblF4DLYIBxLvj+ZOIW7G9LjGUFbp0CIuZuN4gnz0imhjU0O6E9
LTfqACwiLUutsAZ5zIDOInNFt70SIB7B9VQGoQRGJ0EBdAW9IJsEEYLcpXmramsz
Gd4ixdQHaqKjSgnqIP/CQH9Qxgi+pXSi7JaL7vBHvYpgESnSWeKWx11PaBAyhdbT
T1vUKA+moNnDo8vSL51B8lJipcynRsPXc9Zcbg6uzY1VKE/2mW7pMBBk0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFciRUwgtChjr7oTLv3L4aXNrQsfMB8GA1UdIwQY
MBaAFGh9m1YrpHJhj5OY4mXKDnEI9oejMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iODljMWYtOGRjYi00MzhiLThhZmQt
NjA1ZDEzNTEzNmY3LzEvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iODljMWYtOGRjYi00MzhiLThhZmQtNjA1ZDEzNTEzNmY3
LzEvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAczkLeKIX
R9DB+o5psxR4dDff6xUcQhwI+6RdrsXspGJKl2pWoSXgeN3rvSE06Oq2tzRjTyxK
hfTpH6YunxNzWNCrgdUc30RUY4cjsu2czizsitrko/v1U/o2KdGTPt8ODGMjOfBI
jnCoWKG7hr9slAG31g2nTzZIc0vOp6L/SV3QxO4zB+qU7FEkhLtApfuaeVzabbiJ
34cCH2Ysn/2sh/QXLmFOJJdn9BseZAmMrnq9KID1HLNGCfnVKStG1CvUmRjBWHa+
QaV0VEqMUykHuUQZ8yF9rwHf344CHjSMHp64rT7GheHqvCAls24BP1VXavmqxJob
rmnjC68XAmHrkA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 11:39:38 2025 by rpki-client