Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/AW2uI9Li62TJaFNIDgd4y9P9ViQ.mft
File: AW2uI9Li62TJaFNIDgd4y9P9ViQ.mft (raw, json)
Hash identifier: S0tTWVsSBT6Uj24/aVDyISNnUt5IKQsGdqERxNfw1NM=
Subject key identifier: 89:66:2B:AC:4C:5B:78:84:04:17:FF:17:7A:BF:12:68:D6:53:89:B9
Authority key identifier: 01:6D:AE:23:D2:E2:EB:64:C9:68:53:48:0E:07:78:CB:D3:FD:56:24
Certificate issuer: /CN=016dae23d2e2eb64c96853480e0778cbd3fd5624
Certificate serial: 01976F632A59328F63BE5E40E236BBD4BACF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AW2uI9Li62TJaFNIDgd4y9P9ViQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/AW2uI9Li62TJaFNIDgd4y9P9ViQ.mft
Manifest number: 1523
Signing time: Sat 14 Jun 2025 17:00:59 +0000
Manifest this update: Sat 14 Jun 2025 17:00:59 +0000
Manifest next update: Sun 15 Jun 2025 17:00:59 +0000
Files and hashes: 1: 1-V8d9umP0McsFhAezBGsGExpglU.roa (hash: CUsrGluvA/qkzyOPwb3wxAIF8Xp3/wYNAg7YgPlNKrk=)
2: AW2uI9Li62TJaFNIDgd4y9P9ViQ.crl (hash: HNHokADacXMxbjrDF4wP8pYPBvjjzt42I33zQ3D9kdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/AW2uI9Li62TJaFNIDgd4y9P9ViQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/AW2uI9Li62TJaFNIDgd4y9P9ViQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/AW2uI9Li62TJaFNIDgd4y9P9ViQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:63:2a:59:32:8f:63:be:5e:40:e2:36:bb:d4:ba:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=016dae23d2e2eb64c96853480e0778cbd3fd5624
Validity
Not Before: Jun 14 17:00:59 2025 GMT
Not After : Jun 15 17:00:59 2025 GMT
Subject: CN=89662bac4c5b78840417ff177abf1268d65389b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f4:90:e1:db:fa:2d:f1:ec:df:89:c7:5d:06:
f8:10:e7:8f:2c:a9:bf:00:f9:2b:71:cc:8d:0c:35:
e8:8b:5a:9c:0a:0d:1d:ef:e8:90:23:c6:89:86:bf:
98:54:f8:fe:e7:f3:e1:ec:0f:72:ad:25:4b:34:8f:
ad:b2:82:75:33:64:19:68:2c:77:34:00:5b:10:37:
1e:8f:e8:95:80:aa:cb:53:cc:05:5c:9c:7e:a9:7e:
b6:c8:38:14:09:27:90:8f:aa:ae:e5:0d:ed:c3:ee:
01:3f:da:48:6d:17:46:45:e7:5f:92:d8:15:22:7d:
b1:6d:0a:74:14:c8:ee:e0:09:f6:e1:33:3e:80:49:
a7:b0:f1:33:79:7d:0d:1b:a0:33:31:07:a0:ac:f3:
3f:e2:ec:09:58:d7:51:95:8c:3e:a0:0a:45:86:84:
d7:94:af:47:6b:b9:eb:a8:31:cc:a4:3a:c6:c2:9b:
d9:ea:fe:a4:70:3c:48:db:89:b6:ae:5d:af:2d:f7:
ae:42:79:f1:da:64:a4:02:c9:91:f0:ab:64:f4:ce:
51:c7:e3:d8:9c:05:66:e9:de:66:37:c3:db:51:26:
63:c1:9b:93:6e:b4:81:fd:4e:fb:99:55:6d:75:21:
f3:52:3e:62:6c:cc:16:66:aa:40:c0:2e:11:16:5a:
f5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:66:2B:AC:4C:5B:78:84:04:17:FF:17:7A:BF:12:68:D6:53:89:B9
X509v3 Authority Key Identifier:
keyid:01:6D:AE:23:D2:E2:EB:64:C9:68:53:48:0E:07:78:CB:D3:FD:56:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AW2uI9Li62TJaFNIDgd4y9P9ViQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/AW2uI9Li62TJaFNIDgd4y9P9ViQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/b63337-35e3-4c5e-a3e2-181597c3107e/1/AW2uI9Li62TJaFNIDgd4y9P9ViQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:24:7d:91:d0:e2:85:7c:cd:b3:94:87:13:a0:88:59:6d:b5:
65:7b:1e:39:8f:c9:f9:2d:a1:e3:1b:d1:85:8c:c6:f5:15:b4:
ff:bf:48:08:68:44:66:da:b7:41:e2:c8:6d:b2:a5:cb:f6:a8:
cb:01:29:e8:ba:c2:c8:17:2f:51:0a:06:7b:05:11:1c:ec:27:
4b:8d:95:94:85:12:0e:5f:20:ce:e3:14:3d:72:bc:19:32:cd:
43:66:15:95:de:a3:4c:b2:26:36:1d:29:db:59:ba:97:3e:b2:
a6:0b:08:e0:c9:b6:a2:b4:f2:86:77:4b:af:32:98:dd:15:ea:
54:c2:05:06:2e:f3:f3:6c:af:23:2e:44:86:9f:8e:29:ba:ff:
1e:0e:7e:ff:c9:aa:d9:61:eb:90:b4:b7:95:51:78:e0:91:f6:
9c:d9:58:af:93:14:02:64:14:cd:85:9e:d0:c2:dd:c6:ed:84:
72:1e:5b:af:aa:df:90:21:31:d3:7e:64:3e:d8:7c:69:5c:7d:
4a:e1:f0:72:aa:c7:d8:f5:55:9d:fc:cf:af:46:57:7c:1e:b4:
00:13:bc:5c:9d:ac:f4:a6:99:bc:a3:e6:01:0f:cb:79:27:b7:
77:fe:3a:a5:7a:15:1c:c9:a7:46:85:c0:e6:69:7d:ba:c3:bc:
13:ec:a6:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvYypZMo9jvl5A4ja71LrPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxNmRhZTIzZDJlMmViNjRjOTY4NTM0ODBlMDc3OGNiZDNm
ZDU2MjQwHhcNMjUwNjE0MTcwMDU5WhcNMjUwNjE1MTcwMDU5WjAzMTEwLwYDVQQD
Eyg4OTY2MmJhYzRjNWI3ODg0MDQxN2ZmMTc3YWJmMTI2OGQ2NTM4OWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/SQ4dv6LfHs34nHXQb4EOePLKm/
APkrccyNDDXoi1qcCg0d7+iQI8aJhr+YVPj+5/Ph7A9yrSVLNI+tsoJ1M2QZaCx3
NABbEDcej+iVgKrLU8wFXJx+qX62yDgUCSeQj6qu5Q3tw+4BP9pIbRdGRedfktgV
In2xbQp0FMju4An24TM+gEmnsPEzeX0NG6AzMQegrPM/4uwJWNdRlYw+oApFhoTX
lK9Ha7nrqDHMpDrGwpvZ6v6kcDxI24m2rl2vLfeuQnnx2mSkAsmR8Ktk9M5Rx+PY
nAVm6d5mN8PbUSZjwZuTbrSB/U77mVVtdSHzUj5ibMwWZqpAwC4RFlr14QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIlmK6xMW3iEBBf/F3q/EmjWU4m5MB8GA1UdIwQY
MBaAFAFtriPS4utkyWhTSA4HeMvT/VYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVcydUk5TGk2MlRKYUZOSURnZDR5OVA5VmlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9iNjMzMzctMzVlMy00YzVlLWEzZTIt
MTgxNTk3YzMxMDdlLzEvQVcydUk5TGk2MlRKYUZOSURnZDR5OVA5VmlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC9iNjMzMzctMzVlMy00YzVlLWEzZTItMTgxNTk3YzMxMDdl
LzEvQVcydUk5TGk2MlRKYUZOSURnZDR5OVA5VmlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsCR9kdDi
hXzNs5SHE6CIWW21ZXseOY/J+S2h4xvRhYzG9RW0/79ICGhEZtq3QeLIbbKly/ao
ywEp6LrCyBcvUQoGewURHOwnS42VlIUSDl8gzuMUPXK8GTLNQ2YVld6jTLImNh0p
21m6lz6ypgsI4Mm2orTyhndLrzKY3RXqVMIFBi7z82yvIy5Ehp+OKbr/Hg5+/8mq
2WHrkLS3lVF44JH2nNlYr5MUAmQUzYWe0MLdxu2Ech5br6rfkCEx035kPth8aVx9
SuHwcqrH2PVVnfzPr0ZXfB60ABO8XJ2s9KaZvKPmAQ/LeSe3d/46pXoVHMmnRoXA
5ml9usO8E+ymIQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 22:32:16 2025 by rpki-client