Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json)
Hash identifier: ro/x2IkeYP/jspGG6wvktpKEXoCLu/RFeX1Qx7lpIG4=
Subject key identifier: 63:1C:52:67:DF:05:A6:D5:AD:FC:CC:4C:4D:34:0B:12:3C:F3:11:65
Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c
Certificate serial: 01977AF94F7D548768999C1654950C16A4CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
Manifest number: 09A7
Signing time: Mon 16 Jun 2025 23:00:48 +0000
Manifest this update: Mon 16 Jun 2025 23:00:48 +0000
Manifest next update: Tue 17 Jun 2025 23:00:48 +0000
Files and hashes: 1: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: Wyc2nb8yOqwRNvvSivu4GjmeU+D8MFqDJbG5hSKI45Q=)
2: vq_lB1n1a8tSkpEaBYJenT9A5i0.roa (hash: TQs2bRUGUy5hOg6esXq8436QciZ59nHTgLwMPf5bhwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:f9:4f:7d:54:87:68:99:9c:16:54:95:0c:16:a4:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c
Validity
Not Before: Jun 16 23:00:48 2025 GMT
Not After : Jun 17 23:00:48 2025 GMT
Subject: CN=631c5267df05a6d5adfccc4c4d340b123cf31165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fd:e0:34:10:d9:ef:37:98:2b:ec:93:0c:ec:
1b:27:51:3c:23:34:2d:f4:6d:aa:53:67:87:c7:bb:
24:67:da:e8:20:c4:22:b3:e9:a6:90:43:49:e5:6e:
38:5a:6c:ee:7f:88:8f:c8:4b:35:12:9a:a0:eb:4b:
9b:90:35:dc:89:67:19:f2:16:ee:1d:8d:08:b2:71:
44:0e:51:86:9c:e0:9d:cf:83:1d:cb:0a:dc:e9:e1:
77:1d:92:14:1f:7f:45:ae:52:4e:a5:02:05:5e:29:
e7:ec:35:66:24:70:02:c1:7f:5d:86:31:a9:07:cd:
00:06:a1:89:a0:ee:6b:04:70:af:78:69:b6:d7:01:
a6:6e:15:69:6a:b3:f5:40:0d:8c:61:9d:ac:f7:69:
16:1e:69:b6:4f:c3:c2:85:d3:d6:3d:35:4e:49:0b:
da:7a:b8:24:66:fd:98:28:2e:9a:68:c1:10:1e:b9:
8b:d7:66:1d:fd:88:18:79:18:11:6b:9f:33:7e:f3:
a3:16:d2:26:b7:8a:fe:87:a3:3b:23:80:8b:46:3d:
63:52:3c:d2:c8:c4:f0:05:36:3c:8f:04:51:e1:d9:
42:18:38:30:bc:77:9c:eb:09:da:2d:45:5c:de:14:
18:d4:2a:da:42:ff:0d:e6:d4:20:30:58:35:b9:0b:
c9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:1C:52:67:DF:05:A6:D5:AD:FC:CC:4C:4D:34:0B:12:3C:F3:11:65
X509v3 Authority Key Identifier:
keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:a7:60:2a:ba:10:fa:91:c0:6f:e0:3c:2a:e2:21:51:8a:23:
e2:05:6d:a0:f2:9f:d2:06:74:1e:58:08:b2:0e:7c:85:0c:95:
67:9c:85:11:ea:90:32:f5:82:eb:f2:3c:37:67:54:b5:d2:11:
93:76:05:98:ee:3b:2d:f8:56:d2:2e:06:7a:2c:47:16:63:72:
2b:d2:e5:2f:65:53:4e:e8:ea:4e:9d:f1:c7:f3:c0:c2:f9:6d:
f3:46:91:4b:d1:fe:f5:9c:0a:8e:2a:2a:ab:8f:65:fd:6b:a6:
08:65:cd:cc:37:49:1f:d2:5c:9c:c6:11:11:9b:f7:71:6b:b6:
8b:77:29:98:67:82:7b:0f:38:2f:e6:b5:5f:03:4c:7d:3c:c5:
be:91:db:67:f6:27:4a:34:77:c8:86:66:e2:fc:9c:fa:99:c7:
19:c2:a7:e1:7d:67:a1:8c:5e:54:47:76:31:d2:0b:3c:07:ad:
b7:ff:f6:53:9d:bb:de:aa:c6:c7:72:2b:56:8d:f8:23:14:9a:
0e:b8:30:08:bb:46:c4:0b:12:d2:16:0d:27:c2:92:96:7a:29:
5c:5d:cf:33:e9:1f:5d:71:6b:8c:bd:c7:1e:c4:40:b7:f5:63:
a1:df:b0:62:c4:1f:3b:0b:1c:f9:71:5d:f5:3c:cd:14:31:92:
b6:21:57:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd6+U99VIdomZwWVJUMFqTNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ODEwZmZlNGY5MjAzYTEwMDY3N2Q2NTE5M2I0NDI2Nzg5
YWNmNWMwHhcNMjUwNjE2MjMwMDQ4WhcNMjUwNjE3MjMwMDQ4WjAzMTEwLwYDVQQD
Eyg2MzFjNTI2N2RmMDVhNmQ1YWRmY2NjNGM0ZDM0MGIxMjNjZjMxMTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAov3gNBDZ7zeYK+yTDOwbJ1E8IzQt
9G2qU2eHx7skZ9roIMQis+mmkENJ5W44Wmzuf4iPyEs1Epqg60ubkDXciWcZ8hbu
HY0IsnFEDlGGnOCdz4Mdywrc6eF3HZIUH39FrlJOpQIFXinn7DVmJHACwX9dhjGp
B80ABqGJoO5rBHCveGm21wGmbhVparP1QA2MYZ2s92kWHmm2T8PChdPWPTVOSQva
ergkZv2YKC6aaMEQHrmL12Yd/YgYeRgRa58zfvOjFtImt4r+h6M7I4CLRj1jUjzS
yMTwBTY8jwRR4dlCGDgwvHec6wnaLUVc3hQY1CraQv8N5tQgMFg1uQvJLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGMcUmffBabVrfzMTE00CxI88xFlMB8GA1UdIwQY
MBaAFGiBD/5PkgOhAGd9ZRk7RCZ4ms9cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDct
YmRmNDMxZWI5NGYwLzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDctYmRmNDMxZWI5NGYw
LzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiqdgKroQ
+pHAb+A8KuIhUYoj4gVtoPKf0gZ0HlgIsg58hQyVZ5yFEeqQMvWC6/I8N2dUtdIR
k3YFmO47LfhW0i4GeixHFmNyK9LlL2VTTujqTp3xx/PAwvlt80aRS9H+9ZwKjioq
q49l/WumCGXNzDdJH9JcnMYREZv3cWu2i3cpmGeCew84L+a1XwNMfTzFvpHbZ/Yn
SjR3yIZm4vyc+pnHGcKn4X1noYxeVEd2MdILPAett//2U5273qrGx3IrVo34IxSa
DrgwCLtGxAsS0hYNJ8KSlnopXF3PM+kfXXFrjL3HHsRAt/Vjod+wYsQfOwsc+XFd
9TzNFDGStiFXsA==
-----END CERTIFICATE-----
Generated at Tue Jun 17 09:00:43 2025 by rpki-client