Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
File: AhfGZs2iPpINFLkK6TY3EzUKrB4.mft (raw, json)
Hash identifier: cbu3h/72+og8yvY3LjJh462jO7cewMsaCLZ7asP/1FM=
Subject key identifier: 66:76:C3:49:FD:B7:09:7C:14:0D:A0:6F:9B:C4:AD:E2:58:C7:39:9B
Authority key identifier: 02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
Certificate issuer: /CN=0217c666cda23e920d14b90ae9363713350aac1e
Certificate serial: 01977007A65961F1EB0E3F8BF50ACA4813C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 20:00:38 +0000
Manifest this update: Sat 14 Jun 2025 20:00:38 +0000
Manifest next update: Sun 15 Jun 2025 20:00:38 +0000
Files and hashes: 1: AhfGZs2iPpINFLkK6TY3EzUKrB4.crl (hash: f5+IKiVCZPJm19FFpLHXJq5PUMiz4L6ONKI3ZkFT0Hw=)
2: osyzbtU7GZmaeY_CNmdQy5Vz8jw.roa (hash: /Wf83f8E6EuxQUr3auZsag/VGfFdi1UD8Jonkresr4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:07:a6:59:61:f1:eb:0e:3f:8b:f5:0a:ca:48:13:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0217c666cda23e920d14b90ae9363713350aac1e
Validity
Not Before: Jun 14 20:00:38 2025 GMT
Not After : Jun 15 20:00:38 2025 GMT
Subject: CN=6676c349fdb7097c140da06f9bc4ade258c7399b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:56:ca:3b:a1:60:39:9e:f8:2f:c1:95:bc:b1:
91:bd:a8:11:3c:94:d0:7c:27:c8:81:e4:f7:70:9b:
f3:dc:6c:6a:1f:e7:51:18:1a:f5:ef:15:01:75:26:
a9:80:8a:0f:5f:a0:d2:7e:36:09:43:ff:52:86:57:
6b:12:68:c8:5a:82:c7:5b:6a:e4:30:8d:97:64:bb:
3b:1a:cd:21:5c:f7:22:9a:d1:52:a5:9f:3d:ea:35:
47:f3:c9:5a:29:96:84:1c:f3:3e:64:99:f2:06:fa:
e3:41:1e:93:dc:97:b9:93:8b:f9:3f:a5:2b:43:27:
ff:ba:f6:69:c9:37:1d:39:1e:12:23:51:03:c8:1d:
5d:63:f0:92:0d:17:1e:d3:69:96:01:f4:d0:1b:6c:
18:57:73:11:36:19:b8:c0:41:2f:62:30:3a:bc:a2:
e9:14:be:5e:68:12:d6:63:60:95:06:de:a3:a6:50:
e5:03:2a:e2:6f:01:46:72:b2:a0:bc:e9:44:ef:39:
93:1e:ed:9a:56:b4:a1:8a:18:65:3d:0e:f4:e1:f5:
3d:a3:03:de:93:15:28:24:6e:ff:b5:fb:c9:17:38:
f0:88:fe:92:03:dc:e3:57:b0:d0:e3:06:a6:3d:85:
e2:fa:5c:c8:2d:92:2a:2c:cb:2d:fa:b9:b0:64:cb:
05:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:76:C3:49:FD:B7:09:7C:14:0D:A0:6F:9B:C4:AD:E2:58:C7:39:9B
X509v3 Authority Key Identifier:
keyid:02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:54:c8:f5:e2:4f:07:0d:02:9e:5c:76:61:7b:92:ac:9d:22:
75:64:5a:e4:df:c8:73:5a:03:50:f4:0f:ad:50:02:38:9d:cd:
4f:17:23:ca:9f:97:c4:42:a7:b3:8b:77:e8:d7:a6:94:64:ab:
af:91:d5:81:27:51:e5:6a:22:6d:43:9b:16:d3:11:55:e0:42:
0d:d4:15:17:b0:c5:ae:3d:8a:01:8d:e3:7c:5a:cd:4b:95:e7:
27:5d:67:e8:8f:7d:d7:85:91:44:98:e7:c8:d3:c3:b6:e3:6a:
88:26:f7:8b:d5:b0:7b:33:3c:d4:6a:47:a1:70:7d:90:ed:ab:
87:cc:c4:f4:ae:dd:bc:4b:93:8c:a3:64:ca:9d:ae:f5:92:c3:
cf:49:05:a6:2b:49:d4:de:91:12:94:db:21:e4:22:a9:b7:1e:
48:c6:11:8b:75:ce:7b:12:31:c4:0c:ec:de:d9:ba:e3:56:1c:
ff:86:aa:07:de:5e:ea:9b:cf:df:a1:ba:9c:a8:d8:9c:bb:8d:
43:bb:29:e3:01:33:76:59:37:cf:93:02:6b:63:86:94:87:ce:
ed:92:02:b1:48:0c:9a:96:fa:7e:3d:7e:5e:68:84:2e:11:e4:
2c:c9:9f:34:ca:a3:36:3c:be:ea:c2:93:34:2e:2d:8c:81:8a:
97:5a:9d:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwB6ZZYfHrDj+L9QrKSBPAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyMTdjNjY2Y2RhMjNlOTIwZDE0YjkwYWU5MzYzNzEzMzUw
YWFjMWUwHhcNMjUwNjE0MjAwMDM4WhcNMjUwNjE1MjAwMDM4WjAzMTEwLwYDVQQD
Eyg2Njc2YzM0OWZkYjcwOTdjMTQwZGEwNmY5YmM0YWRlMjU4YzczOTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxlbKO6FgOZ74L8GVvLGRvagRPJTQ
fCfIgeT3cJvz3GxqH+dRGBr17xUBdSapgIoPX6DSfjYJQ/9ShldrEmjIWoLHW2rk
MI2XZLs7Gs0hXPcimtFSpZ896jVH88laKZaEHPM+ZJnyBvrjQR6T3Je5k4v5P6Ur
Qyf/uvZpyTcdOR4SI1EDyB1dY/CSDRce02mWAfTQG2wYV3MRNhm4wEEvYjA6vKLp
FL5eaBLWY2CVBt6jplDlAyribwFGcrKgvOlE7zmTHu2aVrShihhlPQ704fU9owPe
kxUoJG7/tfvJFzjwiP6SA9zjV7DQ4wamPYXi+lzILZIqLMst+rmwZMsFfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGZ2w0n9twl8FA2gb5vEreJYxzmbMB8GA1UdIwQY
MBaAFAIXxmbNoj6SDRS5Cuk2NxM1CqweMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWhmR1pzMmlQcElORkxrSzZUWTNFelVLckI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9jZmEwYjUtZTFhMS00MWZmLTg4Y2It
MDI5NzE1ZGU0YzZmLzEvQWhmR1pzMmlQcElORkxrSzZUWTNFelVLckI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi9jZmEwYjUtZTFhMS00MWZmLTg4Y2ItMDI5NzE1ZGU0YzZm
LzEvQWhmR1pzMmlQcElORkxrSzZUWTNFelVLckI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIVTI9eJP
Bw0Cnlx2YXuSrJ0idWRa5N/Ic1oDUPQPrVACOJ3NTxcjyp+XxEKns4t36NemlGSr
r5HVgSdR5WoibUObFtMRVeBCDdQVF7DFrj2KAY3jfFrNS5XnJ11n6I9914WRRJjn
yNPDtuNqiCb3i9WwezM81GpHoXB9kO2rh8zE9K7dvEuTjKNkyp2u9ZLDz0kFpitJ
1N6REpTbIeQiqbceSMYRi3XOexIxxAzs3tm641Yc/4aqB95e6pvP36G6nKjYnLuN
Q7sp4wEzdlk3z5MCa2OGlIfO7ZICsUgMmpb6fj1+XmiELhHkLMmfNMqjNjy+6sKT
NC4tjIGKl1qdfw==
-----END CERTIFICATE-----
Generated at Sun Jun 15 03:07:59 2025 by rpki-client