Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
File: AJJn8-O54eu5eZaQgLDfqyTDYBo.mft (raw, json)
Hash identifier: pgEepqjhg5gyuqydo1XclQK1g6hJKJsKieYvsk3fRvY=
Subject key identifier: FE:EA:FD:41:72:F7:AC:06:9B:FA:1F:15:41:7E:9B:E6:26:37:90:0F
Authority key identifier: 00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A
Certificate issuer: /CN=009267f3e3b9e1ebb979969080b0dfab24c3601a
Certificate serial: 01987486903720AC1EAE2BB5CDCD1DA64F5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
Manifest number: 01EA
Signing time: Mon 04 Aug 2025 10:00:32 +0000
Manifest this update: Mon 04 Aug 2025 10:00:32 +0000
Manifest next update: Tue 05 Aug 2025 10:00:32 +0000
Files and hashes: 1: AJJn8-O54eu5eZaQgLDfqyTDYBo.crl (hash: NM+M8pAZuEgMeR3UGBRiYOZwjwPwHGJE14kqlDYHpvM=)
2: jt-iRSNGZBGhABnXoxTRm_rAskI.roa (hash: l7KIq5bWvwsgCT6cMEiSjjaqu0hDSyke8GcgCL2LIpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:86:90:37:20:ac:1e:ae:2b:b5:cd:cd:1d:a6:4f:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009267f3e3b9e1ebb979969080b0dfab24c3601a
Validity
Not Before: Aug 4 10:00:32 2025 GMT
Not After : Aug 5 10:00:32 2025 GMT
Subject: CN=feeafd4172f7ac069bfa1f15417e9be62637900f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1d:0a:79:58:bb:43:9f:7f:94:8d:b8:df:be:
92:80:78:e4:d1:94:6f:bc:66:48:99:ab:a5:be:90:
dc:24:f0:9e:48:e6:62:c4:27:07:9e:0e:b4:00:4b:
75:cc:80:58:0b:18:f9:55:46:ab:0e:00:44:0b:9d:
2e:61:5e:28:2e:3f:ac:f6:a0:c0:64:1a:d7:e0:61:
3a:b7:16:15:30:e0:b9:88:78:21:3b:21:14:32:0c:
77:b8:e1:27:43:43:b7:8b:fe:2f:5e:63:22:c1:08:
3d:78:45:07:58:e7:fc:11:7b:ba:33:c3:82:3b:d7:
ad:8a:07:53:f9:11:23:73:cb:b5:8b:61:12:af:5d:
32:ea:73:13:a6:73:cd:7c:e4:2e:d9:c7:82:e7:59:
cb:ad:72:9c:ef:b2:e4:1f:d6:e8:98:28:be:16:76:
a9:a5:28:99:8e:51:ad:28:76:1e:65:1a:f4:af:c9:
44:94:3f:20:06:71:bf:b1:8e:5b:63:6c:bc:98:32:
2c:03:32:35:8e:91:80:d8:a0:5f:e7:c2:f2:76:f3:
3c:6b:b8:7e:08:36:db:e7:8d:24:6d:2b:21:6d:a2:
da:f0:29:2b:8d:f9:ec:23:90:13:19:18:13:64:47:
fd:fa:16:4d:20:9f:2a:a5:0a:cb:ca:0d:d3:94:3d:
4c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:EA:FD:41:72:F7:AC:06:9B:FA:1F:15:41:7E:9B:E6:26:37:90:0F
X509v3 Authority Key Identifier:
keyid:00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:92:8d:c4:c9:c7:3e:03:84:38:87:4e:a5:7d:a3:eb:a8:5d:
0c:48:94:7b:0c:1d:cb:29:50:24:d3:35:25:95:ab:ca:dd:58:
e3:71:2b:06:94:04:a9:e0:c4:be:97:51:45:0c:a3:ba:4b:89:
9f:f7:52:89:ad:80:16:de:3b:13:e4:02:9c:53:db:27:95:3b:
40:a2:cc:a9:23:28:59:67:81:c7:29:02:a7:63:0d:1d:cc:0b:
eb:08:12:3c:1d:54:11:2e:c8:c6:30:94:a5:19:f4:48:13:14:
c0:d9:91:7a:72:f1:9e:aa:e9:d6:e2:b7:c7:a0:c2:ef:52:21:
82:41:96:05:cc:07:bb:b5:ea:c8:31:33:64:71:88:21:dc:39:
8a:59:d6:e8:a5:ae:73:42:08:26:da:c8:48:0e:41:e1:98:f9:
0f:51:7e:3a:cf:6c:9a:f4:87:22:3b:56:4e:3b:3f:cb:83:12:
15:92:21:7a:c8:34:13:c7:74:16:59:57:f5:0e:92:c8:e6:98:
01:29:c2:79:8a:49:72:e0:5a:7f:c1:54:fc:ba:37:ec:e2:d7:
5c:52:46:a9:9f:fd:2c:a1:a1:d8:4f:26:2d:fe:a1:80:f8:9d:
ba:59:89:01:79:9c:11:38:2f:c1:6a:68:3f:48:3e:71:3b:c2:
2e:83:fb:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0hpA3IKweriu1zc0dpk9cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwOTI2N2YzZTNiOWUxZWJiOTc5OTY5MDgwYjBkZmFiMjRj
MzYwMWEwHhcNMjUwODA0MTAwMDMyWhcNMjUwODA1MTAwMDMyWjAzMTEwLwYDVQQD
EyhmZWVhZmQ0MTcyZjdhYzA2OWJmYTFmMTU0MTdlOWJlNjI2Mzc5MDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjR0KeVi7Q59/lI24376SgHjk0ZRv
vGZImaulvpDcJPCeSOZixCcHng60AEt1zIBYCxj5VUarDgBEC50uYV4oLj+s9qDA
ZBrX4GE6txYVMOC5iHghOyEUMgx3uOEnQ0O3i/4vXmMiwQg9eEUHWOf8EXu6M8OC
O9etigdT+REjc8u1i2ESr10y6nMTpnPNfOQu2ceC51nLrXKc77LkH9bomCi+Fnap
pSiZjlGtKHYeZRr0r8lElD8gBnG/sY5bY2y8mDIsAzI1jpGA2KBf58LydvM8a7h+
CDbb540kbSshbaLa8CkrjfnsI5ATGRgTZEf9+hZNIJ8qpQrLyg3TlD1MbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP7q/UFy96wGm/ofFUF+m+YmN5APMB8GA1UdIwQY
MBaAFACSZ/PjueHruXmWkICw36skw2AaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUpKbjgtTzU0ZXU1ZVphUWdMRGZxeVREWUJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9mNGRiYTYtNmQ5NC00MTBmLTliZTIt
ZDY5MDM4MjUwMThjLzEvQUpKbjgtTzU0ZXU1ZVphUWdMRGZxeVREWUJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9mNGRiYTYtNmQ5NC00MTBmLTliZTItZDY5MDM4MjUwMThj
LzEvQUpKbjgtTzU0ZXU1ZVphUWdMRGZxeVREWUJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnpKNxMnH
PgOEOIdOpX2j66hdDEiUewwdyylQJNM1JZWryt1Y43ErBpQEqeDEvpdRRQyjukuJ
n/dSia2AFt47E+QCnFPbJ5U7QKLMqSMoWWeBxykCp2MNHcwL6wgSPB1UES7IxjCU
pRn0SBMUwNmRenLxnqrp1uK3x6DC71IhgkGWBcwHu7XqyDEzZHGIIdw5ilnW6KWu
c0IIJtrISA5B4Zj5D1F+Os9smvSHIjtWTjs/y4MSFZIhesg0E8d0FllX9Q6SyOaY
ASnCeYpJcuBaf8FU/Lo37OLXXFJGqZ/9LKGh2E8mLf6hgPidulmJAXmcETgvwWpo
P0g+cTvCLoP7xQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 18:30:42 2025 by rpki-client