Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
File: AJJn8-O54eu5eZaQgLDfqyTDYBo.mft (raw, json)
Hash identifier: ZCe9D3yZCrV8MlMpQlqoJFH4afdVqp15xursrVqtynI=
Subject key identifier: 50:87:C6:6E:DE:42:28:6E:E3:A2:0A:B4:8C:54:AC:28:6A:1C:CF:5E
Authority key identifier: 00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A
Certificate issuer: /CN=009267f3e3b9e1ebb979969080b0dfab24c3601a
Certificate serial: 01976FD0BFE7C7FD2835DFD9342FBA3B042B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
Manifest number: 0163
Signing time: Sat 14 Jun 2025 19:00:40 +0000
Manifest this update: Sat 14 Jun 2025 19:00:40 +0000
Manifest next update: Sun 15 Jun 2025 19:00:40 +0000
Files and hashes: 1: AJJn8-O54eu5eZaQgLDfqyTDYBo.crl (hash: JCW8Qdy8PtE/N9551K8cd1zRdgOND0p0US1/T6x3RKA=)
2: jt-iRSNGZBGhABnXoxTRm_rAskI.roa (hash: l7KIq5bWvwsgCT6cMEiSjjaqu0hDSyke8GcgCL2LIpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d0:bf:e7:c7:fd:28:35:df:d9:34:2f:ba:3b:04:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009267f3e3b9e1ebb979969080b0dfab24c3601a
Validity
Not Before: Jun 14 19:00:40 2025 GMT
Not After : Jun 15 19:00:40 2025 GMT
Subject: CN=5087c66ede42286ee3a20ab48c54ac286a1ccf5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e3:60:4d:97:a1:da:41:2a:30:42:8e:2b:54:
af:01:3e:95:92:12:3f:da:36:fb:3d:4d:b3:73:17:
08:91:dc:b6:bd:7c:c5:a0:e0:b1:bd:2d:67:db:e6:
cf:08:3b:0f:9b:82:01:78:27:fa:10:c0:28:9d:91:
d2:09:82:b7:66:9f:a2:88:3b:b8:c1:89:c2:4c:a3:
06:cb:52:96:2a:54:32:a9:c1:31:0f:77:c9:69:c7:
d3:63:ee:e1:0e:ef:46:da:a7:0c:06:43:a1:f3:72:
0e:e5:50:4e:d6:ed:f1:50:48:77:96:50:fe:d3:ec:
c6:52:9b:27:52:28:59:4c:cc:e6:8f:ea:c7:d4:d8:
57:e5:43:0b:24:a0:d0:8c:d5:9d:22:ec:ce:31:ca:
b3:10:5d:74:80:8c:f3:fc:31:10:d5:c9:7b:3c:af:
76:34:05:e3:ca:02:a9:b4:e0:05:70:b5:a6:da:bf:
13:c6:46:3a:42:9c:cc:d0:55:14:9f:fd:76:2c:0c:
93:07:7a:b9:fd:99:98:d5:80:34:da:2a:6c:24:53:
19:8e:a7:ee:66:fe:e9:06:8d:6c:cb:34:f2:f2:02:
44:d0:89:14:bd:3f:dd:05:b8:24:72:e6:2d:78:d1:
d7:13:ac:5f:44:40:75:c9:7b:8d:8b:70:8f:15:c3:
ca:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:87:C6:6E:DE:42:28:6E:E3:A2:0A:B4:8C:54:AC:28:6A:1C:CF:5E
X509v3 Authority Key Identifier:
keyid:00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:a1:cd:b1:5c:22:ea:bf:7a:00:0f:b0:d2:62:ad:22:05:9f:
a1:6b:e5:88:8e:db:ba:e7:4b:c9:d9:e6:a4:7a:9b:c2:eb:be:
5f:98:08:f6:58:c4:ea:5e:21:d6:93:f8:08:a3:8f:c2:af:ba:
b3:4b:94:8a:9d:18:05:ab:9d:51:5f:df:d3:37:a4:21:41:69:
d2:a8:17:9d:f7:24:c4:33:44:9a:ab:48:93:7b:c0:9f:52:c4:
1e:e3:b7:19:88:58:ae:c0:11:70:11:5b:16:c9:56:19:ef:5c:
36:cc:e2:9e:5a:ed:b0:51:c4:9e:29:2b:b7:11:e5:93:3c:c9:
2c:dd:68:23:20:85:77:21:4b:7f:6a:d0:13:05:4e:95:d1:d7:
e3:90:20:34:37:35:55:14:99:4c:50:5e:b2:73:ce:1a:0c:b7:
a9:d1:03:4c:ab:d1:37:76:53:01:ee:e2:30:08:d9:58:f0:ed:
4c:58:a8:cb:8c:30:32:74:4d:df:ca:e2:52:5c:60:d8:1d:dd:
4a:89:57:ed:4d:43:a5:7c:6d:1f:57:70:15:90:56:17:4d:04:
52:e2:29:4b:21:80:ff:9a:c0:fa:9d:47:97:d2:59:b9:a6:47:
96:ff:5d:20:a8:4b:d9:5d:ca:7f:43:05:e2:ee:f3:7e:1b:86:
9d:9a:47:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdv0L/nx/0oNd/ZNC+6OwQrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwOTI2N2YzZTNiOWUxZWJiOTc5OTY5MDgwYjBkZmFiMjRj
MzYwMWEwHhcNMjUwNjE0MTkwMDQwWhcNMjUwNjE1MTkwMDQwWjAzMTEwLwYDVQQD
Eyg1MDg3YzY2ZWRlNDIyODZlZTNhMjBhYjQ4YzU0YWMyODZhMWNjZjVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+NgTZeh2kEqMEKOK1SvAT6VkhI/
2jb7PU2zcxcIkdy2vXzFoOCxvS1n2+bPCDsPm4IBeCf6EMAonZHSCYK3Zp+iiDu4
wYnCTKMGy1KWKlQyqcExD3fJacfTY+7hDu9G2qcMBkOh83IO5VBO1u3xUEh3llD+
0+zGUpsnUihZTMzmj+rH1NhX5UMLJKDQjNWdIuzOMcqzEF10gIzz/DEQ1cl7PK92
NAXjygKptOAFcLWm2r8TxkY6QpzM0FUUn/12LAyTB3q5/ZmY1YA02ipsJFMZjqfu
Zv7pBo1syzTy8gJE0IkUvT/dBbgkcuYteNHXE6xfREB1yXuNi3CPFcPKmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFCHxm7eQihu46IKtIxUrChqHM9eMB8GA1UdIwQY
MBaAFACSZ/PjueHruXmWkICw36skw2AaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUpKbjgtTzU0ZXU1ZVphUWdMRGZxeVREWUJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9mNGRiYTYtNmQ5NC00MTBmLTliZTIt
ZDY5MDM4MjUwMThjLzEvQUpKbjgtTzU0ZXU1ZVphUWdMRGZxeVREWUJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9mNGRiYTYtNmQ5NC00MTBmLTliZTItZDY5MDM4MjUwMThj
LzEvQUpKbjgtTzU0ZXU1ZVphUWdMRGZxeVREWUJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtqHNsVwi
6r96AA+w0mKtIgWfoWvliI7buudLydnmpHqbwuu+X5gI9ljE6l4h1pP4CKOPwq+6
s0uUip0YBaudUV/f0zekIUFp0qgXnfckxDNEmqtIk3vAn1LEHuO3GYhYrsARcBFb
FslWGe9cNszinlrtsFHEnikrtxHlkzzJLN1oIyCFdyFLf2rQEwVOldHX45AgNDc1
VRSZTFBesnPOGgy3qdEDTKvRN3ZTAe7iMAjZWPDtTFioy4wwMnRN38riUlxg2B3d
SolX7U1DpXxtH1dwFZBWF00EUuIpSyGA/5rA+p1Hl9JZuaZHlv9dIKhL2V3Kf0MF
4u7zfhuGnZpH6g==
-----END CERTIFICATE-----
Generated at Sat Jun 14 22:02:14 2025 by rpki-client