Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
File: aLw5QAVdFXTyY7X5arCQDGu0xfk.mft (raw, json)
Hash identifier: MycqehDt73c+7t7hW6sZiGEwtSGCMXIlYJw/5e1imvE=
Subject key identifier: E0:ED:BB:FE:B9:39:7E:4D:F9:FB:34:86:9B:E4:54:34:25:5E:FA:A8
Authority key identifier: 68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
Certificate issuer: /CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Certificate serial: 01976D065332B2984713A10791507BD35ADD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
Manifest number: 02FA
Signing time: Sat 14 Jun 2025 06:00:20 +0000
Manifest this update: Sat 14 Jun 2025 06:00:20 +0000
Manifest next update: Sun 15 Jun 2025 06:00:20 +0000
Files and hashes: 1: UTuku2NoRg5M3213fHsTSechO5U.roa (hash: mmVExhdm+qlv5wjD1nNIr2CTIIUIWrulidPSaVkzZdU=)
2: aLw5QAVdFXTyY7X5arCQDGu0xfk.crl (hash: 3ApQwaK6X6ewDqUN+av4SI7h3XSustejcVzyox+m8zA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:53:32:b2:98:47:13:a1:07:91:50:7b:d3:5a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Validity
Not Before: Jun 14 06:00:20 2025 GMT
Not After : Jun 15 06:00:20 2025 GMT
Subject: CN=e0edbbfeb9397e4df9fb34869be45434255efaa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:92:69:d2:45:10:11:75:fb:54:39:dc:20:de:
8f:ae:f1:56:6d:8d:cb:f9:f2:b3:01:e4:34:e8:cb:
5a:16:e5:e9:48:30:d6:fb:48:97:5c:92:0a:ad:ff:
db:c6:74:cb:a0:09:c0:68:5f:9e:b0:49:e9:38:98:
34:5d:54:c1:ad:bb:4a:b9:ec:f5:59:ab:79:e7:07:
f9:17:f9:8b:3b:f8:be:c0:b0:38:4b:09:32:80:9e:
6d:03:b7:c4:69:d1:58:9f:81:32:09:2a:e2:92:f5:
3c:98:fb:99:eb:9f:a8:56:0e:52:44:bc:e7:98:32:
c0:7a:86:0c:7b:9e:78:3d:7b:c9:ae:9f:de:32:93:
0b:1e:d6:d8:4c:09:31:19:db:5a:90:25:46:cd:9d:
0c:de:e7:ce:39:57:e8:bd:15:ca:60:7e:d4:f7:60:
51:a6:cb:6f:78:ca:69:1c:ef:9e:b1:e8:13:86:1d:
4a:f3:d4:17:ed:57:80:ad:c1:c5:f9:4e:0d:17:90:
c7:50:31:da:2b:8d:f3:85:8c:47:43:c2:a3:ab:4b:
a6:5f:c8:e7:d6:5d:20:9b:1a:b3:af:d8:57:42:0d:
95:3e:a5:ab:80:60:33:6c:2f:d2:22:04:34:7f:58:
ea:57:e7:f2:0d:61:2b:e1:1e:6e:2e:76:55:23:d2:
a5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:ED:BB:FE:B9:39:7E:4D:F9:FB:34:86:9B:E4:54:34:25:5E:FA:A8
X509v3 Authority Key Identifier:
keyid:68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:8d:9d:2c:39:4e:2a:9d:73:c4:79:38:03:42:f2:c1:9b:55:
21:66:dc:e0:5e:a3:a2:7a:81:4f:1b:ad:15:78:0a:50:ee:58:
99:d3:bf:e4:bb:de:17:a1:0e:f7:d4:72:0d:e7:24:16:2a:69:
ca:58:a2:79:c0:ca:f7:6c:c1:58:fd:63:6f:31:3b:fd:bc:df:
bc:79:33:46:b0:9f:09:22:3d:3d:74:4c:f1:32:fa:6c:0f:ee:
3f:f8:63:7a:07:33:9f:ea:8d:31:be:09:19:8d:1d:a6:3b:eb:
65:6f:ce:84:f9:d9:e6:e2:fc:f0:ca:23:05:88:9b:51:a1:4c:
9e:27:ac:e6:b6:2f:4a:98:77:91:ad:c8:d0:03:49:80:90:27:
4b:6f:76:b7:6d:fc:4e:1e:ef:84:86:3d:48:88:1d:49:8b:b7:
0c:6b:93:b7:83:63:c1:b1:b8:ea:18:c9:dc:26:39:04:76:8c:
4f:59:bc:b2:96:35:45:02:5f:06:c3:6d:ca:82:ed:06:07:ac:
51:e4:85:fd:cb:01:00:bf:1c:3d:ec:00:3d:1a:09:44:9a:63:
15:37:dd:5e:41:12:e5:c6:42:c6:dc:de:94:39:08:8b:c0:75:
53:ef:0f:81:9e:81:0b:24:89:75:ba:16:a2:ad:f3:ad:19:15:
8d:ac:53:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtBlMysphHE6EHkVB701rdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YmMzOTQwMDU1ZDE1NzRmMjYzYjVmOTZhYjA5MDBjNmJi
NGM1ZjkwHhcNMjUwNjE0MDYwMDIwWhcNMjUwNjE1MDYwMDIwWjAzMTEwLwYDVQQD
EyhlMGVkYmJmZWI5Mzk3ZTRkZjlmYjM0ODY5YmU0NTQzNDI1NWVmYWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5Jp0kUQEXX7VDncIN6PrvFWbY3L
+fKzAeQ06MtaFuXpSDDW+0iXXJIKrf/bxnTLoAnAaF+esEnpOJg0XVTBrbtKuez1
Wat55wf5F/mLO/i+wLA4SwkygJ5tA7fEadFYn4EyCSrikvU8mPuZ65+oVg5SRLzn
mDLAeoYMe554PXvJrp/eMpMLHtbYTAkxGdtakCVGzZ0M3ufOOVfovRXKYH7U92BR
pstveMppHO+esegThh1K89QX7VeArcHF+U4NF5DHUDHaK43zhYxHQ8Kjq0umX8jn
1l0gmxqzr9hXQg2VPqWrgGAzbC/SIgQ0f1jqV+fyDWEr4R5uLnZVI9KlBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFODtu/65OX5N+fs0hpvkVDQlXvqoMB8GA1UdIwQY
MBaAFGi8OUAFXRV08mO1+WqwkAxrtMX5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUx3NVFBVmRGWFR5WTdYNWFyQ1FER3UweGZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9kMDJiMzItOTY3ZC00NzUxLTgyZDMt
MTIxYTE0YTlhNDBlLzEvYUx3NVFBVmRGWFR5WTdYNWFyQ1FER3UweGZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy9kMDJiMzItOTY3ZC00NzUxLTgyZDMtMTIxYTE0YTlhNDBl
LzEvYUx3NVFBVmRGWFR5WTdYNWFyQ1FER3UweGZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc42dLDlO
Kp1zxHk4A0LywZtVIWbc4F6jonqBTxutFXgKUO5YmdO/5LveF6EO99RyDeckFipp
yliiecDK92zBWP1jbzE7/bzfvHkzRrCfCSI9PXRM8TL6bA/uP/hjegczn+qNMb4J
GY0dpjvrZW/OhPnZ5uL88MojBYibUaFMnies5rYvSph3ka3I0ANJgJAnS292t238
Th7vhIY9SIgdSYu3DGuTt4NjwbG46hjJ3CY5BHaMT1m8spY1RQJfBsNtyoLtBges
UeSF/csBAL8cPewAPRoJRJpjFTfdXkES5cZCxtzelDkIi8B1U+8PgZ6BCySJdboW
oq3zrRkVjaxT3A==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:16:26 2025 by rpki-client