Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
File: 1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft (raw, json)
Hash identifier: GDYTguFIGrHm9gxyUvYfs3TidxIsClAtYX7CPrXHAD8=
Subject key identifier: 7B:61:53:40:5C:9A:1B:50:56:64:B1:25:DF:A9:80:27:42:CE:3D:4E
Authority key identifier: D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
Certificate issuer: /CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Certificate serial: 01976BF43526DAFF7F2C44DA6E35F7109F52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
Manifest number: 0224
Signing time: Sat 14 Jun 2025 01:00:55 +0000
Manifest this update: Sat 14 Jun 2025 01:00:55 +0000
Manifest next update: Sun 15 Jun 2025 01:00:55 +0000
Files and hashes: 1: 1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl (hash: HfiXs0fIRcIyQmNoQ/ABa4vFzeP07yWpyko/qTY2lr0=)
2: d97Ch2oOF5rboQAm4Ny7S68pdDs.roa (hash: GTey3KF1CvpIvjeJCgqABtZ3XGUGtGoEyAaxaxLHaVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:35:26:da:ff:7f:2c:44:da:6e:35:f7:10:9f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Validity
Not Before: Jun 14 01:00:55 2025 GMT
Not After : Jun 15 01:00:55 2025 GMT
Subject: CN=7b6153405c9a1b505664b125dfa9802742ce3d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:54:89:64:7e:ed:c5:8e:3a:9d:1d:9e:26:87:
b7:64:54:5e:3c:d1:1f:79:c2:cd:bf:14:7b:0f:c3:
a2:fa:74:8d:6e:ec:29:c7:3f:52:ab:e0:3d:1e:56:
81:f6:f1:d6:26:ae:7c:92:0c:ef:5f:77:63:ec:0e:
89:a4:59:c1:e8:ad:81:a8:6d:f4:f2:2e:8d:08:81:
aa:69:65:db:6b:cd:aa:f5:36:65:ee:49:87:d8:e5:
77:f0:06:34:b5:a2:32:af:db:26:10:26:8a:1b:ac:
ae:ab:88:06:d6:c4:6b:33:96:0c:78:a4:4e:38:b8:
ec:10:02:18:92:10:84:34:8a:fe:0f:48:97:95:83:
0b:8c:f6:ed:02:d2:55:9c:27:a0:38:13:7b:de:75:
42:20:aa:33:96:f4:52:a3:a1:bd:a1:4c:72:9f:16:
de:b9:f2:88:98:50:9e:fe:a6:4d:0e:8c:b1:8f:dd:
d7:14:f4:09:f5:75:90:0b:81:53:44:62:de:50:0e:
32:71:39:8a:f5:08:39:e4:1c:dd:45:fd:6b:27:e0:
35:4e:0d:49:86:83:4b:e3:4b:70:3b:1d:b0:88:ad:
9b:ff:4a:17:05:61:4e:4e:db:e7:11:69:94:7f:f2:
6f:1c:2a:10:ac:d9:1d:1f:74:cd:7b:cf:17:3b:56:
1a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:61:53:40:5C:9A:1B:50:56:64:B1:25:DF:A9:80:27:42:CE:3D:4E
X509v3 Authority Key Identifier:
keyid:D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:f8:6c:ed:35:dc:2e:02:9a:8b:b7:c9:75:77:ce:fe:0a:38:
f8:6f:8b:47:ca:57:ca:b0:d8:f4:84:81:cb:6f:13:ca:89:1e:
33:4c:3d:a7:7f:be:82:ff:64:f9:e7:e7:62:16:f6:99:fa:39:
aa:e6:df:13:14:92:e1:16:3e:9b:f1:db:9d:d0:51:df:f4:04:
ce:8b:a0:0e:70:ef:1b:a2:a5:20:2a:10:9f:87:98:ac:be:aa:
5e:89:97:2c:cf:a7:2c:59:59:4d:89:e3:67:88:ca:a2:38:6b:
60:b3:b8:c2:31:9a:91:9f:ab:9b:b8:d0:69:50:bb:6e:09:37:
b9:f4:79:c0:13:c1:e7:68:48:09:b7:c7:ef:6b:9f:bd:7e:a2:
5c:f5:7d:08:aa:3b:d4:f6:95:24:17:2d:67:cf:c2:01:69:a2:
a5:42:e7:45:0f:b0:1a:a6:34:b3:b3:3b:0e:d5:01:d4:24:1e:
a0:e8:41:eb:f8:fc:79:ac:a1:41:fc:cf:69:d2:39:4e:bb:51:
8b:0c:01:c5:fc:e3:cf:77:21:ee:ef:6c:04:81:2e:4f:e2:76:
52:86:d1:3b:65:11:c5:81:28:35:55:00:0a:74:a6:f5:98:c5:
8e:ef:b3:cf:dd:f6:7d:c7:04:e4:54:da:3f:44:77:d9:4e:9e:
67:9e:77:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdr9DUm2v9/LETabjX3EJ9SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1YTg5MDk0ZTEyZTU0ZGQ5MDFlMzJkMzNjZTUxMzFlMDQ2
ZWU3MGMwHhcNMjUwNjE0MDEwMDU1WhcNMjUwNjE1MDEwMDU1WjAzMTEwLwYDVQQD
Eyg3YjYxNTM0MDVjOWExYjUwNTY2NGIxMjVkZmE5ODAyNzQyY2UzZDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkFSJZH7txY46nR2eJoe3ZFRePNEf
ecLNvxR7D8Oi+nSNbuwpxz9Sq+A9HlaB9vHWJq58kgzvX3dj7A6JpFnB6K2BqG30
8i6NCIGqaWXba82q9TZl7kmH2OV38AY0taIyr9smECaKG6yuq4gG1sRrM5YMeKRO
OLjsEAIYkhCENIr+D0iXlYMLjPbtAtJVnCegOBN73nVCIKozlvRSo6G9oUxynxbe
ufKImFCe/qZNDoyxj93XFPQJ9XWQC4FTRGLeUA4ycTmK9Qg55BzdRf1rJ+A1Tg1J
hoNL40twOx2wiK2b/0oXBWFOTtvnEWmUf/JvHCoQrNkdH3TNe88XO1YawwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHthU0BcmhtQVmSxJd+pgCdCzj1OMB8GA1UdIwQY
MBaAFNWokJThLlTdkB4y0zzlEx4EbucMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWFpUWxPRXVWTjJRSGpMVFBPVVRIZ1J1NXd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8yMmQyMGUtMGJkNi00OWZiLWI5YzMt
ZTIwZDcwN2MwMGZiLzEvMWFpUWxPRXVWTjJRSGpMVFBPVVRIZ1J1NXd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS8yMmQyMGUtMGJkNi00OWZiLWI5YzMtZTIwZDcwN2MwMGZi
LzEvMWFpUWxPRXVWTjJRSGpMVFBPVVRIZ1J1NXd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXfhs7TXc
LgKai7fJdXfO/go4+G+LR8pXyrDY9ISBy28TyokeM0w9p3++gv9k+efnYhb2mfo5
qubfExSS4RY+m/HbndBR3/QEzougDnDvG6KlICoQn4eYrL6qXomXLM+nLFlZTYnj
Z4jKojhrYLO4wjGakZ+rm7jQaVC7bgk3ufR5wBPB52hICbfH72ufvX6iXPV9CKo7
1PaVJBctZ8/CAWmipULnRQ+wGqY0s7M7DtUB1CQeoOhB6/j8eayhQfzPadI5TrtR
iwwBxfzjz3ch7u9sBIEuT+J2UobRO2URxYEoNVUACnSm9ZjFju+zz932fccE5FTa
P0R32U6eZ553VA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:47:17 2025 by rpki-client