Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
File: aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft (raw, json)
Hash identifier: 08W5B8RVx3ANWvLulcecEXBmwRMjEC8BdNYOlWAK9sg=
Subject key identifier: 7E:7A:D1:0B:55:C5:97:BD:AC:35:0C:CE:A9:3C:DA:73:C9:5D:87:05
Authority key identifier: 69:97:10:A1:69:37:10:AC:83:5F:0B:67:45:F9:0D:2D:68:0A:12:00
Certificate issuer: /CN=699710a1693710ac835f0b6745f90d2d680a1200
Certificate serial: 01976D06CC072577AEB2F372D745C462FC53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
Manifest number: 1521
Signing time: Sat 14 Jun 2025 06:00:51 +0000
Manifest this update: Sat 14 Jun 2025 06:00:51 +0000
Manifest next update: Sun 15 Jun 2025 06:00:51 +0000
Files and hashes: 1: aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl (hash: NmW+h/h5RzUrzNHBiRu6RmVzzlXbrEsOq1+TBYRYFPo=)
2: koGXGlmTeestynS-D79F1iRgKe8.roa (hash: t/wGg6Ba4t68swMex8wPDhVXcBtDTQUAFrp4xf0H+oE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:cc:07:25:77:ae:b2:f3:72:d7:45:c4:62:fc:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=699710a1693710ac835f0b6745f90d2d680a1200
Validity
Not Before: Jun 14 06:00:51 2025 GMT
Not After : Jun 15 06:00:51 2025 GMT
Subject: CN=7e7ad10b55c597bdac350ccea93cda73c95d8705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:42:20:09:78:c2:00:6c:2f:ec:1f:ad:f1:74:
95:f4:8d:ef:aa:fe:28:e6:71:21:2a:cc:de:30:48:
d2:15:97:9f:e9:c3:d9:24:89:73:e1:92:62:c8:79:
6a:19:e7:e5:51:80:35:5c:5f:25:78:d3:00:ae:35:
8c:cf:76:6b:32:e9:63:ca:5c:38:12:98:44:95:c0:
57:13:3c:11:3f:6a:a8:65:24:37:f2:f1:a7:f4:f4:
f7:1e:cc:f7:d2:37:89:c3:d0:9d:18:2d:9e:8d:c3:
69:87:71:50:91:a2:30:9e:f8:51:93:fd:9e:0b:4f:
03:80:ba:04:70:49:8e:c2:d2:73:72:38:d6:a1:ab:
e3:e9:e1:6c:9b:70:11:2d:46:70:cd:b7:4c:81:6d:
0d:02:bd:3f:d8:10:00:f8:71:11:e2:a2:aa:bb:b2:
11:09:2e:0b:6b:ed:3a:76:40:95:ac:05:45:c7:1b:
4c:f9:06:ca:56:c0:1c:3f:0a:f0:78:43:35:c7:da:
0e:1f:6d:b6:0a:38:0a:9f:4f:99:8b:60:e3:3c:dc:
5d:b8:4c:12:0e:6a:48:9b:6c:f6:d9:f7:9b:c9:7b:
0c:2a:d5:c0:98:14:d1:58:4d:a2:10:c0:c9:dc:f9:
6c:7b:48:47:b5:2c:a9:51:e7:c1:7f:69:f3:fa:f4:
c1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:7A:D1:0B:55:C5:97:BD:AC:35:0C:CE:A9:3C:DA:73:C9:5D:87:05
X509v3 Authority Key Identifier:
keyid:69:97:10:A1:69:37:10:AC:83:5F:0B:67:45:F9:0D:2D:68:0A:12:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:45:22:8a:c8:ae:79:9d:c0:2f:53:eb:17:63:fa:95:f3:01:
cd:76:fe:b2:99:f4:22:17:60:d0:fa:a4:53:ea:f0:51:ff:10:
15:d1:f7:5a:a7:b7:60:48:e4:0c:66:bc:c9:14:d9:e4:9c:90:
03:44:10:89:20:98:30:a6:98:18:d3:d4:92:79:39:c3:05:01:
1a:df:24:57:28:4b:46:1a:3d:b1:2c:15:46:46:13:b1:07:dc:
e0:3d:dd:64:45:cb:b5:e5:1e:9f:ab:56:12:be:ca:2f:26:66:
5d:d5:e6:79:05:d9:21:e5:74:d7:e8:07:e3:bd:82:f5:9c:67:
87:03:e6:c0:4b:3c:02:cc:15:d7:bc:63:cb:d8:81:4b:5d:dd:
29:40:a4:92:a0:2d:96:b4:16:91:77:45:b7:10:91:7f:94:af:
80:97:de:94:e5:65:52:85:b2:95:20:cd:ae:47:fc:37:40:8e:
75:81:03:35:1a:2a:75:58:74:1d:d6:91:bd:b4:d7:62:f4:84:
a2:84:6d:66:c3:b7:f8:77:13:ee:0d:01:88:fd:3a:5c:84:d1:
f5:e1:84:ce:68:a2:62:58:20:90:23:7d:ca:6d:94:41:e7:9f:
a8:8b:60:cd:74:42:af:24:b4:fa:7b:04:4b:cd:c1:5a:0c:a8:
08:9b:b5:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtBswHJXeusvNy10XEYvxTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5OTcxMGExNjkzNzEwYWM4MzVmMGI2NzQ1ZjkwZDJkNjgw
YTEyMDAwHhcNMjUwNjE0MDYwMDUxWhcNMjUwNjE1MDYwMDUxWjAzMTEwLwYDVQQD
Eyg3ZTdhZDEwYjU1YzU5N2JkYWMzNTBjY2VhOTNjZGE3M2M5NWQ4NzA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUIgCXjCAGwv7B+t8XSV9I3vqv4o
5nEhKszeMEjSFZef6cPZJIlz4ZJiyHlqGeflUYA1XF8leNMArjWMz3ZrMuljylw4
EphElcBXEzwRP2qoZSQ38vGn9PT3Hsz30jeJw9CdGC2ejcNph3FQkaIwnvhRk/2e
C08DgLoEcEmOwtJzcjjWoavj6eFsm3ARLUZwzbdMgW0NAr0/2BAA+HER4qKqu7IR
CS4La+06dkCVrAVFxxtM+QbKVsAcPwrweEM1x9oOH222CjgKn0+Zi2DjPNxduEwS
DmpIm2z22febyXsMKtXAmBTRWE2iEMDJ3Plse0hHtSypUefBf2nz+vTBtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH560QtVxZe9rDUMzqk82nPJXYcFMB8GA1UdIwQY
MBaAFGmXEKFpNxCsg18LZ0X5DS1oChIAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVpjUW9XazNFS3lEWHd0blJma05MV2dLRWdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8wNzc0NWMtNDdjMS00MDAyLTk1MGYt
MjliOThlY2RmZjEyLzEvYVpjUW9XazNFS3lEWHd0blJma05MV2dLRWdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi8wNzc0NWMtNDdjMS00MDAyLTk1MGYtMjliOThlY2RmZjEy
LzEvYVpjUW9XazNFS3lEWHd0blJma05MV2dLRWdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbUUiisiu
eZ3AL1PrF2P6lfMBzXb+spn0Ihdg0PqkU+rwUf8QFdH3Wqe3YEjkDGa8yRTZ5JyQ
A0QQiSCYMKaYGNPUknk5wwUBGt8kVyhLRho9sSwVRkYTsQfc4D3dZEXLteUen6tW
Er7KLyZmXdXmeQXZIeV01+gH472C9ZxnhwPmwEs8AswV17xjy9iBS13dKUCkkqAt
lrQWkXdFtxCRf5SvgJfelOVlUoWylSDNrkf8N0COdYEDNRoqdVh0HdaRvbTXYvSE
ooRtZsO3+HcT7g0BiP06XITR9eGEzmiiYlggkCN9ym2UQeefqItgzXRCryS0+nsE
S83BWgyoCJu15A==
-----END CERTIFICATE-----
Generated at Sat Jun 14 10:33:36 2025 by rpki-client