Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json)
Hash identifier: 4r0U/5sgQ96y56g4xcpFt+rLXlNcNPkzySnIskVUxa4=
Subject key identifier: CE:32:F3:17:2B:71:B2:14:2D:33:AA:F9:68:74:1E:1D:A0:7D:2B:3C
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 0197B890797537CEDCC6DBADCC099E4FEE41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
Manifest number: 05D6
Signing time: Sat 28 Jun 2025 22:02:45 +0000
Manifest this update: Sat 28 Jun 2025 22:02:45 +0000
Manifest next update: Sun 29 Jun 2025 22:02:45 +0000
Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: 5Dx7oFWxUJCtV0zTG6pbVtd9B6mfHfIpOwIIaTQbPTg=)
2: I1gkA5k4uMZob0hM5xQHdEl5cUo.roa (hash: EhH3dWMV5US/hFp8+LiY1Hpa7FxODhxAHT3s3CfUej8=)
3: V0uScWgIlxby8-atCI31gs7gIls.roa (hash: N1Pj+HryVhCS5We4uz7FXYt4pnqlzxV+cQWuG5ETX4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:79:75:37:ce:dc:c6:db:ad:cc:09:9e:4f:ee:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: Jun 28 22:02:45 2025 GMT
Not After : Jun 29 22:02:45 2025 GMT
Subject: CN=ce32f3172b71b2142d33aaf968741e1da07d2b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:22:6e:77:56:f4:68:02:b9:e4:c5:d1:1c:bf:
9a:e5:73:94:4f:c0:c6:50:1e:8c:76:b0:fe:4d:a8:
18:55:de:02:f3:fb:71:78:dc:fd:54:5c:e0:13:88:
8f:0b:db:43:26:fa:30:9c:90:fd:96:fb:84:47:b1:
44:76:af:40:46:ea:4e:95:55:f6:c9:34:e1:62:d5:
64:85:38:ab:5d:e0:25:4d:d5:65:0c:14:6a:45:c2:
18:ed:8f:fa:53:c0:57:bb:7f:2d:6b:20:31:e8:d8:
cb:e2:dc:cd:59:30:e2:4e:a0:2c:80:77:63:b6:e8:
c8:17:b9:d4:92:ad:97:e6:ef:03:f8:f5:12:92:1d:
8c:eb:43:71:f9:ae:4d:44:21:66:1e:98:2f:43:f6:
19:41:d6:59:fe:0b:e1:10:7b:4c:b2:9d:98:6f:cd:
f1:d2:cc:90:25:7f:ee:b2:f8:55:1c:17:3a:41:43:
d8:f7:d3:f6:ef:5c:e4:b7:0a:88:74:a4:4a:3d:ec:
2b:19:0b:c2:c8:29:f8:75:e3:7f:3e:8d:a4:c2:33:
76:48:1c:9a:a6:b2:84:a4:dd:56:7b:98:b2:8f:11:
6a:82:03:b8:99:8c:f0:6d:cb:e5:b1:55:f6:0c:87:
a9:46:0e:58:61:e1:55:5a:75:db:3c:4e:6d:7a:6d:
ae:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:32:F3:17:2B:71:B2:14:2D:33:AA:F9:68:74:1E:1D:A0:7D:2B:3C
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:54:3b:7b:2b:61:0c:f8:ee:4b:f5:1d:c0:e4:ef:65:57:16:
a9:ed:85:b4:94:1c:97:36:8e:7a:5e:bd:e9:34:02:70:3f:96:
44:32:1b:76:0c:36:81:8b:88:59:21:96:03:17:48:2e:ac:3b:
be:7e:9b:25:28:5a:c6:c9:ca:34:3c:1d:34:1d:34:92:38:5f:
96:46:f6:09:4a:8b:73:72:bc:7d:cf:fc:ea:26:7a:61:39:7c:
c4:0a:1e:bc:f2:e2:eb:e8:b5:71:ac:75:b1:22:35:68:7a:bc:
75:f8:37:f1:5c:6c:84:db:69:18:b7:7d:5f:96:50:6d:2d:1e:
57:26:9a:07:44:4f:5b:18:4b:b2:52:99:4e:45:4b:ef:c4:83:
81:1f:9d:a5:00:3e:48:05:1e:e7:d5:54:01:a9:05:6e:bc:68:
19:5f:e2:5d:d9:47:ff:9f:71:c8:b2:3c:40:46:d8:de:30:7e:
2e:4d:a2:8a:ff:98:9a:0b:fe:d7:70:22:03:c4:3c:8a:c3:f2:
87:35:04:5f:96:ad:a3:6e:0f:cf:4d:c0:dd:d0:59:61:d5:d9:
21:62:f6:f9:73:ba:13:2c:e1:6d:77:70:22:77:74:4b:ff:8c:
92:74:ac:65:12:cc:ad:8f:61:42:b9:5c:7e:6b:23:a4:fc:20:
63:ff:94:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4kHl1N87cxtutzAmeT+5BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNTNiOTE5ZDc1ZGMyMDRkOWNhMzhkYjdiMjhhMTc0ODM0
YjNiM2QwHhcNMjUwNjI4MjIwMjQ1WhcNMjUwNjI5MjIwMjQ1WjAzMTEwLwYDVQQD
EyhjZTMyZjMxNzJiNzFiMjE0MmQzM2FhZjk2ODc0MWUxZGEwN2QyYjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSJud1b0aAK55MXRHL+a5XOUT8DG
UB6MdrD+TagYVd4C8/txeNz9VFzgE4iPC9tDJvownJD9lvuER7FEdq9ARupOlVX2
yTThYtVkhTirXeAlTdVlDBRqRcIY7Y/6U8BXu38tayAx6NjL4tzNWTDiTqAsgHdj
tujIF7nUkq2X5u8D+PUSkh2M60Nx+a5NRCFmHpgvQ/YZQdZZ/gvhEHtMsp2Yb83x
0syQJX/usvhVHBc6QUPY99P271zktwqIdKRKPewrGQvCyCn4deN/Po2kwjN2SBya
prKEpN1We5iyjxFqggO4mYzwbcvlsVX2DIepRg5YYeFVWnXbPE5tem2u7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM4y8xcrcbIULTOq+Wh0Hh2gfSs8MB8GA1UdIwQY
MBaAFAJTuRnXXcIE2co423sooXSDSzs9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2Yt
NzNkYjBmMjg0MWM5LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2YtNzNkYjBmMjg0MWM5
LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbVQ7eyth
DPjuS/UdwOTvZVcWqe2FtJQclzaOel696TQCcD+WRDIbdgw2gYuIWSGWAxdILqw7
vn6bJShaxsnKNDwdNB00kjhflkb2CUqLc3K8fc/86iZ6YTl8xAoevPLi6+i1cax1
sSI1aHq8dfg38VxshNtpGLd9X5ZQbS0eVyaaB0RPWxhLslKZTkVL78SDgR+dpQA+
SAUe59VUAakFbrxoGV/iXdlH/59xyLI8QEbY3jB+Lk2iiv+Ymgv+13AiA8Q8isPy
hzUEX5ato24Pz03A3dBZYdXZIWL2+XO6EyzhbXdwInd0S/+MknSsZRLMrY9hQrlc
fmsjpPwgY/+UBA==
-----END CERTIFICATE-----
Generated at Sun Jun 29 06:29:38 2025 by rpki-client