Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.mft
File: aIPzR-OJH1c9-AFa1swzHM6wR2g.mft (raw, json)
Hash identifier: B+o5gERhz1J1uay5ib5J8OnVPNAQiYNqnCq1iDvNVCQ=
Subject key identifier: 80:BF:D3:73:18:2C:0E:7B:3D:B4:AE:EB:4A:B7:CB:3C:DF:00:6C:87
Authority key identifier: 68:83:F3:47:E3:89:1F:57:3D:F8:01:5A:D6:CC:33:1C:CE:B0:47:68
Certificate issuer: /CN=6883f347e3891f573df8015ad6cc331cceb04768
Certificate serial: 019746D49B0CCD51AF795F1515AFE080A756
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIPzR-OJH1c9-AFa1swzHM6wR2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.mft
Manifest number: 0524
Signing time: Fri 06 Jun 2025 20:00:27 +0000
Manifest this update: Fri 06 Jun 2025 20:00:27 +0000
Manifest next update: Sat 07 Jun 2025 20:00:27 +0000
Files and hashes: 1: aIPzR-OJH1c9-AFa1swzHM6wR2g.crl (hash: 8xsz+yqYJ2sFsR7i6JCKtO2WmvXq+xen4qWhQE0VdDI=)
2: yzwcVTa4_EkxmkA3zs7RU2L0KuA.roa (hash: DiSWwAw7nqN/ZHYKb36GWp0hrc3vDQ6bPbUIBdkwyko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIPzR-OJH1c9-AFa1swzHM6wR2g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:9b:0c:cd:51:af:79:5f:15:15:af:e0:80:a7:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6883f347e3891f573df8015ad6cc331cceb04768
Validity
Not Before: Jun 6 20:00:27 2025 GMT
Not After : Jun 7 20:00:27 2025 GMT
Subject: CN=80bfd373182c0e7b3db4aeeb4ab7cb3cdf006c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c8:37:81:23:8a:f7:34:66:86:02:da:f7:df:
79:77:d4:f5:e8:b2:cd:3a:92:0b:56:0b:57:8a:9f:
90:97:cd:c0:bb:71:8e:6b:7f:f5:76:15:6d:f8:2a:
a8:5e:74:2e:b7:08:f7:84:b1:4a:1a:75:16:6b:eb:
02:10:3c:fc:9d:9c:dc:11:2f:f5:9a:03:46:8a:9d:
b2:90:6a:73:62:b7:a0:27:9e:f6:34:ad:cc:9a:db:
d6:de:cb:f3:e8:f7:bf:95:82:fd:35:be:9b:8d:e6:
e6:9e:ef:50:c3:b6:cb:23:be:ab:fe:74:30:61:fb:
8f:ec:e8:1b:7f:ee:d1:b9:1f:57:8e:21:9d:8f:18:
6c:8b:a8:34:dd:03:b0:81:f1:b1:a7:99:62:48:08:
1b:e5:55:b2:fe:bb:72:3b:c1:ea:59:38:28:2a:8f:
2d:0b:60:a1:99:ed:19:30:51:c4:1d:fe:c7:3e:42:
83:07:9b:1e:99:31:59:63:80:55:c3:84:b2:24:05:
4f:67:2d:d7:9e:19:16:49:aa:e9:59:a0:5d:9d:7e:
82:43:d5:43:63:79:b3:9b:6d:1e:41:23:80:3f:96:
5c:0f:bb:71:71:e3:2e:42:aa:79:3d:4b:75:7d:eb:
38:50:e6:39:5b:49:7a:24:7a:60:03:1d:14:4b:4e:
06:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:BF:D3:73:18:2C:0E:7B:3D:B4:AE:EB:4A:B7:CB:3C:DF:00:6C:87
X509v3 Authority Key Identifier:
keyid:68:83:F3:47:E3:89:1F:57:3D:F8:01:5A:D6:CC:33:1C:CE:B0:47:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIPzR-OJH1c9-AFa1swzHM6wR2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:fb:26:11:ff:84:6a:f5:b0:22:65:6a:8b:0b:e9:c4:f1:2c:
1a:05:11:18:84:fd:60:23:31:da:7f:ad:ec:05:21:9e:40:c0:
da:9b:0a:94:3c:1a:6d:64:84:0e:88:87:e5:be:99:43:4c:a9:
ee:09:cc:a4:94:54:fe:8c:82:c7:a7:06:f2:32:79:ab:bd:b5:
33:cc:b5:18:31:55:23:ef:16:e8:08:1f:d4:4f:e8:44:2a:27:
d3:19:35:75:38:7b:bf:4e:5b:b1:3f:aa:f0:0e:d4:e2:79:dc:
b5:e7:38:a7:4c:47:e4:0c:f0:30:db:dd:c8:82:e9:ab:f5:fb:
75:a4:a7:46:b0:a5:1c:d2:52:a0:a0:a3:1b:cf:2f:67:98:ae:
b2:5d:14:d6:3a:0d:9c:a9:9b:d8:93:38:43:86:1e:91:9a:40:
7f:c1:c8:13:0c:83:60:0b:29:d5:de:4c:f3:b5:fb:e4:b5:c6:
89:0c:4e:7f:08:90:59:71:db:42:03:88:c2:f7:2f:7c:03:43:
ea:51:97:52:24:d2:e5:d3:fa:10:7e:ab:88:ce:4e:84:a3:21:
27:27:10:ea:93:9a:d7:89:f0:c2:8f:5d:dd:6b:1f:d8:33:b8:
6b:71:d2:19:66:a6:cf:0a:fd:ca:ef:45:77:76:06:b4:b1:8a:
9d:bb:25:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdG1JsMzVGveV8VFa/ggKdWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ODNmMzQ3ZTM4OTFmNTczZGY4MDE1YWQ2Y2MzMzFjY2Vi
MDQ3NjgwHhcNMjUwNjA2MjAwMDI3WhcNMjUwNjA3MjAwMDI3WjAzMTEwLwYDVQQD
Eyg4MGJmZDM3MzE4MmMwZTdiM2RiNGFlZWI0YWI3Y2IzY2RmMDA2Yzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMg3gSOK9zRmhgLa9995d9T16LLN
OpILVgtXip+Ql83Au3GOa3/1dhVt+CqoXnQutwj3hLFKGnUWa+sCEDz8nZzcES/1
mgNGip2ykGpzYregJ572NK3MmtvW3svz6Pe/lYL9Nb6bjebmnu9Qw7bLI76r/nQw
YfuP7Ogbf+7RuR9XjiGdjxhsi6g03QOwgfGxp5liSAgb5VWy/rtyO8HqWTgoKo8t
C2Chme0ZMFHEHf7HPkKDB5semTFZY4BVw4SyJAVPZy3XnhkWSarpWaBdnX6CQ9VD
Y3mzm20eQSOAP5ZcD7txceMuQqp5PUt1fes4UOY5W0l6JHpgAx0US04GuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIC/03MYLA57PbSu60q3yzzfAGyHMB8GA1UdIwQY
MBaAFGiD80fjiR9XPfgBWtbMMxzOsEdoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUlQelItT0pIMWM5LUFGYTFzd3pITTZ3UjJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS82MThkMzMtZGQ5Mi00ZDkxLWI4MjEt
ZTg1MDY3N2NmZmIzLzEvYUlQelItT0pIMWM5LUFGYTFzd3pITTZ3UjJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS82MThkMzMtZGQ5Mi00ZDkxLWI4MjEtZTg1MDY3N2NmZmIz
LzEvYUlQelItT0pIMWM5LUFGYTFzd3pITTZ3UjJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp/smEf+E
avWwImVqiwvpxPEsGgURGIT9YCMx2n+t7AUhnkDA2psKlDwabWSEDoiH5b6ZQ0yp
7gnMpJRU/oyCx6cG8jJ5q721M8y1GDFVI+8W6Agf1E/oRCon0xk1dTh7v05bsT+q
8A7U4nnctec4p0xH5AzwMNvdyILpq/X7daSnRrClHNJSoKCjG88vZ5iusl0U1joN
nKmb2JM4Q4YekZpAf8HIEwyDYAsp1d5M87X75LXGiQxOfwiQWXHbQgOIwvcvfAND
6lGXUiTS5dP6EH6riM5OhKMhJycQ6pOa14nwwo9d3Wsf2DO4a3HSGWamzwr9yu9F
d3YGtLGKnbsl1w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 00:59:09 2025 by rpki-client