Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
File: Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft (raw, json)
Hash identifier: RxiR0f6kpyPVrey8cTphRBe8YsaejhWphvvjHXx0hEM=
Subject key identifier: AB:31:60:61:17:AE:60:88:20:E1:7A:57:53:1C:32:02:20:F8:87:6F
Authority key identifier: 02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F
Certificate issuer: /CN=028fdf719d47a10033451a83384a6db68dbd5b0f
Certificate serial: 01974C320DD5EEA2EC3801AEE1A495DB3BD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
Manifest number: 0B86
Signing time: Sat 07 Jun 2025 21:00:38 +0000
Manifest this update: Sat 07 Jun 2025 21:00:38 +0000
Manifest next update: Sun 08 Jun 2025 21:00:38 +0000
Files and hashes: 1: Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl (hash: Ha/BoJr2mnVELJd94tugNOvr1M1gnlAIwyKvf7QQt78=)
2: PF_eVnR65kNetKj7PMmx-v4rMFw.roa (hash: /4k6yxxkJCQSm4rG3gdwumQHjo0wfUW3Pw4ZNvKY7P0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:0d:d5:ee:a2:ec:38:01:ae:e1:a4:95:db:3b:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028fdf719d47a10033451a83384a6db68dbd5b0f
Validity
Not Before: Jun 7 21:00:38 2025 GMT
Not After : Jun 8 21:00:38 2025 GMT
Subject: CN=ab31606117ae608820e17a57531c320220f8876f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f2:6f:e7:49:b6:81:40:93:25:c6:ce:be:6b:
39:33:e8:22:a8:61:c8:f0:32:60:9c:d7:61:3c:99:
bf:76:cd:b6:b9:6b:93:0b:2d:f8:d8:d4:73:57:ab:
00:56:29:0d:b3:1b:e1:2b:40:ba:10:ac:1d:8a:c6:
b9:8f:26:4e:68:7b:40:44:f2:27:4f:89:73:de:62:
9d:94:ed:8a:95:05:ed:c1:36:ac:39:08:7c:2b:c8:
28:ea:03:56:00:f1:7f:87:1b:84:9f:88:1f:cd:b2:
53:2d:a2:9c:2a:9b:08:01:1d:7e:5c:cd:0b:1d:c7:
25:f0:8c:aa:6c:96:32:1f:d1:2c:f0:07:73:5e:dc:
8b:b5:b7:14:4c:7d:75:4c:46:07:06:ac:ab:aa:b3:
5f:6c:62:be:84:fa:12:70:3e:3a:b0:a3:8c:52:59:
39:fb:b4:15:b6:9f:9c:b2:84:a3:b3:ce:04:66:a6:
e1:7b:81:b0:08:50:a0:76:94:c5:69:07:ab:b0:7d:
ee:de:ba:b8:2c:00:4f:b4:7c:56:83:84:bc:92:57:
18:4c:16:d2:ad:03:48:1e:24:8c:3d:69:e1:2f:9e:
5d:f4:40:53:ba:65:fc:9a:c0:66:30:42:27:ec:44:
9e:32:a6:c1:76:71:06:97:f4:f3:0b:97:04:d4:7d:
79:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:31:60:61:17:AE:60:88:20:E1:7A:57:53:1C:32:02:20:F8:87:6F
X509v3 Authority Key Identifier:
keyid:02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:64:21:c8:dc:98:cd:02:e6:b1:2b:34:99:57:d2:5a:26:d4:
79:a4:b8:6d:90:39:9d:20:ad:2e:61:5e:88:bd:5a:1f:21:35:
5d:90:5d:e9:28:de:6c:a5:0d:d8:f4:15:e9:73:1e:a7:31:5d:
ad:97:8a:f3:44:b9:48:c4:c4:39:77:4d:e6:62:9e:85:94:b9:
a7:ca:a4:4d:05:45:e5:51:0a:46:b8:ec:56:ee:24:c3:10:66:
11:30:72:6e:6f:10:fd:90:78:02:40:cc:a8:9e:99:5d:92:ec:
db:e9:67:e3:73:db:14:ae:d8:fc:1b:90:06:88:57:6a:29:55:
46:fe:41:a1:a1:88:9f:4d:aa:48:3e:14:e6:92:5c:10:d7:37:
04:53:01:77:36:1a:2d:58:00:79:e4:07:11:6b:fb:f2:a6:a8:
18:e5:07:73:ec:65:27:e1:20:44:bc:16:cc:9e:d5:22:08:ab:
10:9f:10:53:84:93:88:6a:6a:67:87:77:00:c0:eb:ed:76:cf:
9c:89:8c:9f:59:cd:9c:a0:b0:99:da:dc:c2:08:ba:68:66:ea:
0d:74:2f:75:5a:c7:4b:42:76:67:8c:5d:17:0b:4f:48:6c:77:
a4:0e:a9:18:6e:f3:39:05:ab:0d:d5:fd:ff:57:9a:29:bd:1b:
f8:18:3e:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMMg3V7qLsOAGu4aSV2zvUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyOGZkZjcxOWQ0N2ExMDAzMzQ1MWE4MzM4NGE2ZGI2OGRi
ZDViMGYwHhcNMjUwNjA3MjEwMDM4WhcNMjUwNjA4MjEwMDM4WjAzMTEwLwYDVQQD
EyhhYjMxNjA2MTE3YWU2MDg4MjBlMTdhNTc1MzFjMzIwMjIwZjg4NzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PJv50m2gUCTJcbOvms5M+giqGHI
8DJgnNdhPJm/ds22uWuTCy342NRzV6sAVikNsxvhK0C6EKwdisa5jyZOaHtARPIn
T4lz3mKdlO2KlQXtwTasOQh8K8go6gNWAPF/hxuEn4gfzbJTLaKcKpsIAR1+XM0L
Hccl8IyqbJYyH9Es8AdzXtyLtbcUTH11TEYHBqyrqrNfbGK+hPoScD46sKOMUlk5
+7QVtp+csoSjs84EZqbhe4GwCFCgdpTFaQersH3u3rq4LABPtHxWg4S8klcYTBbS
rQNIHiSMPWnhL55d9EBTumX8msBmMEIn7ESeMqbBdnEGl/TzC5cE1H15zwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKsxYGEXrmCIIOF6V1McMgIg+IdvMB8GA1UdIwQY
MBaAFAKP33GdR6EAM0UagzhKbbaNvVsPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW9fZmNaMUhvUUF6UlJxRE9FcHR0bzI5V3c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9kNDlkNTItNTBiMS00OTQ4LWIxZjct
MDU1YTljYWQ4ZGY3LzEvQW9fZmNaMUhvUUF6UlJxRE9FcHR0bzI5V3c4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9kNDlkNTItNTBiMS00OTQ4LWIxZjctMDU1YTljYWQ4ZGY3
LzEvQW9fZmNaMUhvUUF6UlJxRE9FcHR0bzI5V3c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOmQhyNyY
zQLmsSs0mVfSWibUeaS4bZA5nSCtLmFeiL1aHyE1XZBd6SjebKUN2PQV6XMepzFd
rZeK80S5SMTEOXdN5mKehZS5p8qkTQVF5VEKRrjsVu4kwxBmETBybm8Q/ZB4AkDM
qJ6ZXZLs2+ln43PbFK7Y/BuQBohXailVRv5BoaGIn02qSD4U5pJcENc3BFMBdzYa
LVgAeeQHEWv78qaoGOUHc+xlJ+EgRLwWzJ7VIgirEJ8QU4STiGpqZ4d3AMDr7XbP
nImMn1nNnKCwmdrcwgi6aGbqDXQvdVrHS0J2Z4xdFwtPSGx3pA6pGG7zOQWrDdX9
/1eaKb0b+Bg+rA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 00:13:44 2025 by rpki-client