Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json)
Hash identifier: eyJeKubUBcKYdVgct8L92/CDZRo+7VpGyY85TEPObuU=
Subject key identifier: 4A:FE:DE:39:00:EC:DB:C8:31:F9:EE:C3:0A:DF:B2:13:C8:19:AF:CB
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 0197488C33984CFD3D1430B84DEED6DE0AB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
Manifest number: 10BA
Signing time: Sat 07 Jun 2025 04:00:37 +0000
Manifest this update: Sat 07 Jun 2025 04:00:37 +0000
Manifest next update: Sun 08 Jun 2025 04:00:37 +0000
Files and hashes: 1: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: tsrx7zNPC4jz2F+Ooo3QYP97JNr19w747Fb4Xq4Hxlo=)
2: lx4r-_of66D7nj4_JxEX4B7iGSo.roa (hash: nBmUpTvMg37xBiu7Iw7rIz0CmSBaScYekCzZq9oCvAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:33:98:4c:fd:3d:14:30:b8:4d:ee:d6:de:0a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Jun 7 04:00:37 2025 GMT
Not After : Jun 8 04:00:37 2025 GMT
Subject: CN=4afede3900ecdbc831f9eec30adfb213c819afcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ea:a6:6c:5e:b4:fb:87:3d:7b:a1:f3:3f:1b:
1d:b2:ba:5e:b1:69:9b:9f:0a:9e:d3:fd:58:72:11:
c5:43:77:c6:b6:dd:82:c4:0c:3b:06:fd:3a:83:51:
62:fe:4c:c2:20:7b:74:87:a1:7a:27:25:4e:0a:23:
ce:dc:a7:72:c1:8a:d4:80:b0:25:ab:34:13:60:65:
a9:c5:ab:1d:41:e7:3c:04:75:4d:ef:88:a0:e8:67:
e9:96:22:57:10:97:a7:93:30:75:c6:f9:6e:27:2e:
48:fa:4c:33:6e:ed:94:29:b1:b0:a4:ab:b8:20:12:
73:c2:76:e7:88:69:3d:be:24:79:e3:a8:8a:b5:61:
6d:68:a3:ac:19:5c:33:f4:60:bb:e2:2a:08:2e:49:
eb:c7:ba:a4:66:9f:46:fb:9e:2d:d9:da:a2:a4:e1:
d7:3c:96:d9:3a:03:7b:31:1a:65:4a:5c:ae:2a:ca:
66:fa:12:11:f2:95:11:1d:02:09:a8:cc:bf:b2:26:
f2:c9:97:50:61:ed:89:48:b3:c3:f6:03:d6:7e:46:
bb:c4:36:fa:3b:93:63:4c:f2:17:75:86:d3:88:1e:
c8:40:4f:72:f2:4c:ab:f0:c2:8d:f0:40:2c:43:20:
09:2f:91:b8:63:5d:7f:61:c3:18:25:83:d6:3d:85:
ae:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:FE:DE:39:00:EC:DB:C8:31:F9:EE:C3:0A:DF:B2:13:C8:19:AF:CB
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:44:6b:70:d0:3a:69:31:36:4a:0d:0a:f0:31:8b:83:82:a8:
d4:f3:4f:d8:3f:da:50:a4:49:a2:9b:96:21:fa:cb:f1:9d:00:
14:1e:4c:dc:b4:f3:2f:3e:5c:cf:02:97:64:c5:6b:78:87:e8:
46:a4:70:dc:d8:30:e4:0d:f0:fd:d3:66:03:0a:53:e2:86:be:
ba:12:79:a0:a5:b5:71:9c:e5:2a:ed:ca:2e:e5:32:d3:61:b8:
3e:4b:8e:ef:21:cf:33:ad:d3:fe:09:18:78:cf:4f:0b:61:b0:
dd:5c:d1:12:a4:79:bf:3b:84:94:92:6d:7c:93:a9:24:2a:5b:
66:79:b0:fd:25:d8:ef:b6:2a:c2:82:25:68:21:15:7e:0f:19:
95:4a:d2:a9:04:7d:6f:c3:65:f3:76:e0:86:bd:3c:b0:94:4f:
d5:9f:6e:7d:0c:d4:43:f9:28:ff:86:40:da:05:6b:85:93:c7:
b4:c2:6e:45:04:77:ef:f8:ac:00:a1:73:e4:68:3b:2e:14:d1:
c6:20:33:6d:16:94:a6:25:91:ac:a8:54:d8:ea:b7:47:76:97:
ba:a9:0c:a4:58:d0:7f:49:99:2c:66:e4:9d:27:68:d8:e5:c4:
20:7a:67:43:72:a7:b2:9b:76:3e:e3:ad:de:91:f7:2a:c2:4b:
6a:75:1d:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjDOYTP09FDC4Te7W3gq5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZTJjMzM3MzFhZGNhNTdkY2MzM2IyZmI4MjMzZmMwMzhi
MDk1ZTkwHhcNMjUwNjA3MDQwMDM3WhcNMjUwNjA4MDQwMDM3WjAzMTEwLwYDVQQD
Eyg0YWZlZGUzOTAwZWNkYmM4MzFmOWVlYzMwYWRmYjIxM2M4MTlhZmNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOqmbF60+4c9e6HzPxsdsrpesWmb
nwqe0/1YchHFQ3fGtt2CxAw7Bv06g1Fi/kzCIHt0h6F6JyVOCiPO3KdywYrUgLAl
qzQTYGWpxasdQec8BHVN74ig6GfpliJXEJenkzB1xvluJy5I+kwzbu2UKbGwpKu4
IBJzwnbniGk9viR546iKtWFtaKOsGVwz9GC74ioILknrx7qkZp9G+54t2dqipOHX
PJbZOgN7MRplSlyuKspm+hIR8pURHQIJqMy/sibyyZdQYe2JSLPD9gPWfka7xDb6
O5NjTPIXdYbTiB7IQE9y8kyr8MKN8EAsQyAJL5G4Y11/YcMYJYPWPYWudQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEr+3jkA7NvIMfnuwwrfshPIGa/LMB8GA1UdIwQY
MBaAFADiwzcxrcpX3MM7L7gjP8A4sJXpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQU9MRE56R3R5bGZjd3pzdnVDTV93RGl3bGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS85ZDVmZWItYmVkYS00MTQ3LTlkODMt
YzlhZDM3Zjk0Y2Q3LzEvQU9MRE56R3R5bGZjd3pzdnVDTV93RGl3bGVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS85ZDVmZWItYmVkYS00MTQ3LTlkODMtYzlhZDM3Zjk0Y2Q3
LzEvQU9MRE56R3R5bGZjd3pzdnVDTV93RGl3bGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc0RrcNA6
aTE2Sg0K8DGLg4Ko1PNP2D/aUKRJopuWIfrL8Z0AFB5M3LTzLz5czwKXZMVreIfo
RqRw3Ngw5A3w/dNmAwpT4oa+uhJ5oKW1cZzlKu3KLuUy02G4PkuO7yHPM63T/gkY
eM9PC2Gw3VzREqR5vzuElJJtfJOpJCpbZnmw/SXY77YqwoIlaCEVfg8ZlUrSqQR9
b8Nl83bghr08sJRP1Z9ufQzUQ/ko/4ZA2gVrhZPHtMJuRQR37/isAKFz5Gg7LhTR
xiAzbRaUpiWRrKhU2Oq3R3aXuqkMpFjQf0mZLGbknSdo2OXEIHpnQ3Knspt2PuOt
3pH3KsJLanUdDA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:27:25 2025 by rpki-client