Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
File: aNLCXQU0pAJ8aVViqM5PABzVOW8.mft (raw, json)
Hash identifier: cEde2qqrlvrB4ttxg5oZHCOG72IvINIjNvaM2d4wVs8=
Subject key identifier: 51:DC:12:95:94:AF:92:89:67:7C:F0:E1:E9:55:DB:E5:E1:1E:14:64
Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Certificate serial: 01977E30F3FE18A3EF9A3E7322140C4CF506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
Manifest number: 11EB
Signing time: Tue 17 Jun 2025 14:00:26 +0000
Manifest this update: Tue 17 Jun 2025 14:00:26 +0000
Manifest next update: Wed 18 Jun 2025 14:00:26 +0000
Files and hashes: 1: SALrx8y5x39WJ8efwGiimpmg788.roa (hash: CtpmQiaYAVz0sehGOLMPmKtW82021GvqOFqhQ5ojIPI=)
2: aNLCXQU0pAJ8aVViqM5PABzVOW8.crl (hash: VMqmRJwgry1w38mYt4OLfzALwCEVlWtIMeqKk2jsaPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 13:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7e:30:f3:fe:18:a3:ef:9a:3e:73:22:14:0c:4c:f5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Validity
Not Before: Jun 17 14:00:26 2025 GMT
Not After : Jun 18 14:00:26 2025 GMT
Subject: CN=51dc129594af9289677cf0e1e955dbe5e11e1464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:27:cf:a3:b2:7b:b2:35:75:5d:60:82:b4:a2:
6b:79:8d:42:60:da:71:05:20:97:bb:b1:7d:5b:3f:
0e:83:0d:a6:33:51:49:78:7a:68:4e:55:c8:44:7d:
1b:02:78:71:11:e5:77:cd:62:bc:3e:b1:19:2d:9b:
d1:30:06:fc:21:be:d2:cc:08:6c:3e:0b:24:16:ab:
f6:ea:1f:42:d1:d3:ca:03:26:6a:32:31:52:da:36:
d8:73:a9:c5:c8:15:34:cc:23:de:0d:03:55:b3:f8:
b8:8d:ed:5a:14:5f:a4:3b:a0:46:0a:e4:9e:ea:ea:
52:53:7d:50:87:52:14:22:02:43:2c:82:e5:83:6d:
5b:ca:8f:7c:bf:6a:89:39:5b:f6:51:ee:9f:ff:5e:
ee:f1:f6:84:7d:3a:e8:a4:78:eb:fc:a6:0e:ea:2d:
e1:f0:15:24:d6:1c:12:fa:51:48:32:1e:5b:2b:97:
fd:cf:83:23:1e:9b:ba:1f:a4:2e:a5:50:54:8e:65:
93:16:d2:30:e9:ae:74:bc:8c:3b:e6:02:47:61:54:
1c:13:24:69:6e:da:cd:20:b9:d3:62:76:bd:93:4c:
c5:04:b8:9b:1e:ab:a8:dc:27:b9:9f:67:0d:3a:0b:
21:8a:a2:c1:a7:47:10:0a:8c:60:54:62:34:b8:74:
74:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DC:12:95:94:AF:92:89:67:7C:F0:E1:E9:55:DB:E5:E1:1E:14:64
X509v3 Authority Key Identifier:
keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:8d:01:7e:94:44:14:23:d5:d7:07:c7:b9:f3:0f:f6:f7:5d:
55:b4:98:93:7a:ab:6f:8b:b7:8d:0a:ff:46:ab:87:07:6a:04:
4d:98:8e:52:32:7b:e0:36:bc:e6:33:9d:42:74:c9:7e:e1:11:
09:82:b0:bd:ed:e9:62:b8:63:07:01:f4:7d:c3:3f:cc:82:f6:
2a:dc:f9:57:70:12:b3:03:f3:e7:c0:b6:52:7f:0b:ed:31:ab:
d8:e5:9e:e0:f9:08:71:e5:84:fb:a6:22:fc:ec:cb:a4:e6:49:
b5:04:8b:12:58:1c:f3:da:80:99:c5:72:69:bc:da:41:ba:ec:
c8:82:5c:b3:e1:e8:07:e5:26:6c:43:18:80:0c:66:b0:db:4d:
a9:fc:42:cf:b2:c2:67:b5:90:e7:eb:f8:66:f4:84:d0:d0:00:
bc:bf:a3:58:6c:1e:35:18:4b:76:16:d2:b3:e9:cb:0e:42:6e:
26:07:55:27:d4:91:fb:13:c0:66:46:a7:e1:9b:29:6d:f0:38:
a4:f4:1a:05:3d:4e:a9:97:fb:85:88:91:46:df:c2:e1:4c:29:
3e:c5:9a:c5:59:25:23:3b:15:df:cb:b5:94:b6:94:6e:8e:23:
4f:04:32:d3:fd:1f:be:f0:ad:2e:7a:5e:dc:b7:65:ad:8f:fc:
c1:e5:66:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd+MPP+GKPvmj5zIhQMTPUGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZDJjMjVkMDUzNGE0MDI3YzY5NTU2MmE4Y2U0ZjAwMWNk
NTM5NmYwHhcNMjUwNjE3MTQwMDI2WhcNMjUwNjE4MTQwMDI2WjAzMTEwLwYDVQQD
Eyg1MWRjMTI5NTk0YWY5Mjg5Njc3Y2YwZTFlOTU1ZGJlNWUxMWUxNDY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnifPo7J7sjV1XWCCtKJreY1CYNpx
BSCXu7F9Wz8Ogw2mM1FJeHpoTlXIRH0bAnhxEeV3zWK8PrEZLZvRMAb8Ib7SzAhs
PgskFqv26h9C0dPKAyZqMjFS2jbYc6nFyBU0zCPeDQNVs/i4je1aFF+kO6BGCuSe
6upSU31Qh1IUIgJDLILlg21byo98v2qJOVv2Ue6f/17u8faEfTropHjr/KYO6i3h
8BUk1hwS+lFIMh5bK5f9z4MjHpu6H6QupVBUjmWTFtIw6a50vIw75gJHYVQcEyRp
btrNILnTYna9k0zFBLibHquo3Ce5n2cNOgshiqLBp0cQCoxgVGI0uHR0kQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFHcEpWUr5KJZ3zw4elV2+XhHhRkMB8GA1UdIwQY
MBaAFGjSwl0FNKQCfGlVYqjOTwAc1TlvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEt
MTQ3OTdlYWM1MjJlLzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEtMTQ3OTdlYWM1MjJl
LzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq40BfpRE
FCPV1wfHufMP9vddVbSYk3qrb4u3jQr/RquHB2oETZiOUjJ74Da85jOdQnTJfuER
CYKwve3pYrhjBwH0fcM/zIL2Ktz5V3ASswPz58C2Un8L7TGr2OWe4PkIceWE+6Yi
/OzLpOZJtQSLElgc89qAmcVyabzaQbrsyIJcs+HoB+UmbEMYgAxmsNtNqfxCz7LC
Z7WQ5+v4ZvSE0NAAvL+jWGweNRhLdhbSs+nLDkJuJgdVJ9SR+xPAZkan4ZspbfA4
pPQaBT1OqZf7hYiRRt/C4UwpPsWaxVklIzsV38u1lLaUbo4jTwQy0/0fvvCtLnpe
3LdlrY/8weVmEQ==
-----END CERTIFICATE-----
Generated at Tue Jun 17 19:53:16 2025 by rpki-client