Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
File: ASAlltXOzjfcNMhhBkV4_G2qXoY.mft (raw, json)
Hash identifier: k9a1IN1QO5HhuJqsMe+PJEe1bAES3puBmavtIB9s1Lw=
Subject key identifier: 2D:D1:A2:7F:ED:C0:01:52:53:C3:92:E6:89:4C:80:99:1B:AE:92:5D
Authority key identifier: 01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
Certificate issuer: /CN=01202596d5cece37dc34c861064578fc6daa5e86
Certificate serial: 0196C728A0AA57B6357F72AE5918F4CEFDC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
Manifest number: 0A03
Signing time: Tue 13 May 2025 01:00:50 +0000
Manifest this update: Tue 13 May 2025 01:00:50 +0000
Manifest next update: Wed 14 May 2025 01:00:50 +0000
Files and hashes: 1: ASAlltXOzjfcNMhhBkV4_G2qXoY.crl (hash: L7ezFA/BnMMiEGTMV2bQBw4WYhj4Ve6CmEbX4OTACJU=)
2: GESlc56i4-gdhOlM9uZOfgy8aCc.roa (hash: 9R3PoH4Q7y5D2LVnthi2TWzvIx4vLCuEUl/il2GVgqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:28:a0:aa:57:b6:35:7f:72:ae:59:18:f4:ce:fd:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01202596d5cece37dc34c861064578fc6daa5e86
Validity
Not Before: May 13 01:00:50 2025 GMT
Not After : May 14 01:00:50 2025 GMT
Subject: CN=2dd1a27fedc0015253c392e6894c80991bae925d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fe:e7:65:07:60:26:40:d5:28:66:29:9f:71:
64:2f:0e:11:b8:d5:0a:ec:d4:fc:10:3d:0c:10:fb:
f1:ac:be:d0:ca:08:9a:86:46:7f:33:38:02:00:21:
43:f8:42:39:8e:02:c0:56:28:ff:a3:90:d7:ef:eb:
b4:d4:e9:75:aa:57:ab:cf:f3:b1:fd:be:e8:28:68:
6a:ba:37:de:d7:02:a7:8f:a6:52:4c:fe:36:5c:7c:
b9:7d:54:62:7a:0d:d7:7d:f8:b5:e5:22:04:ff:0c:
ac:71:36:d8:57:df:c8:32:57:d5:49:9a:de:4c:1b:
45:30:65:61:77:d7:3e:08:fd:ea:fb:15:3b:5e:2a:
dd:51:50:f7:69:d6:11:db:20:94:05:51:f9:ca:2d:
54:e4:ca:05:08:f4:4d:e6:31:76:35:2e:1b:aa:65:
2a:a2:e7:0b:db:5b:bc:f8:18:cc:b7:3a:ba:6a:1e:
51:d5:51:9b:64:18:f2:2f:85:9a:f3:ee:80:41:1a:
9c:74:36:3d:cb:d9:e4:65:04:8c:6d:3c:73:60:00:
53:5c:e5:d0:b2:d4:9a:1d:1b:6d:d6:6b:94:46:74:
85:2e:2e:6a:09:54:65:98:7e:d9:c4:7e:73:b3:8e:
2b:7d:9b:71:d7:8f:c9:9c:98:af:dd:87:b0:e4:96:
90:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D1:A2:7F:ED:C0:01:52:53:C3:92:E6:89:4C:80:99:1B:AE:92:5D
X509v3 Authority Key Identifier:
keyid:01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:7e:e0:b0:0a:59:ce:0f:20:3b:e6:0c:dc:35:86:ab:19:e1:
05:4e:53:43:01:90:c2:ce:55:d2:2a:37:50:64:45:1c:f0:67:
fa:b2:57:ab:c4:d8:20:18:d9:95:2d:e7:ad:f5:21:e2:fe:e2:
21:74:a6:55:46:8f:10:2f:25:a0:91:fe:3c:53:b7:fb:a7:86:
83:e6:56:64:d2:ca:74:ed:21:79:a3:eb:dd:c8:cc:48:67:62:
1c:ab:81:f1:89:9b:3e:5a:c4:af:de:80:42:79:d6:7f:9f:1d:
eb:be:71:b9:8d:1e:6d:ae:6e:23:b7:b7:9b:2e:36:11:c7:58:
81:73:cf:6e:e8:90:ab:37:50:fe:d2:b8:6c:c4:bf:c1:97:f0:
75:d9:3a:3b:38:e7:8f:78:05:a9:6b:f7:59:57:8d:91:fc:23:
76:3c:11:e8:b0:17:4d:3e:91:1f:04:30:31:76:7a:e9:5a:24:
94:19:02:d7:0a:47:3b:c3:bf:f2:6c:19:51:08:8f:ac:10:f0:
ce:70:1d:5c:87:e8:dc:d3:b0:0e:17:5f:55:9c:3a:a6:24:70:
61:3c:e2:a9:eb:3c:4a:6a:1e:5f:8b:15:fb:4b:a9:66:8c:6e:
fe:7a:b1:a3:79:1f:7e:31:89:3b:9e:79:9f:8f:fb:03:0e:51:
77:5e:0e:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbHKKCqV7Y1f3KuWRj0zv3IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxMjAyNTk2ZDVjZWNlMzdkYzM0Yzg2MTA2NDU3OGZjNmRh
YTVlODYwHhcNMjUwNTEzMDEwMDUwWhcNMjUwNTE0MDEwMDUwWjAzMTEwLwYDVQQD
EygyZGQxYTI3ZmVkYzAwMTUyNTNjMzkyZTY4OTRjODA5OTFiYWU5MjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvf7nZQdgJkDVKGYpn3FkLw4RuNUK
7NT8ED0MEPvxrL7QygiahkZ/MzgCACFD+EI5jgLAVij/o5DX7+u01Ol1qlerz/Ox
/b7oKGhqujfe1wKnj6ZSTP42XHy5fVRieg3Xffi15SIE/wyscTbYV9/IMlfVSZre
TBtFMGVhd9c+CP3q+xU7XirdUVD3adYR2yCUBVH5yi1U5MoFCPRN5jF2NS4bqmUq
oucL21u8+BjMtzq6ah5R1VGbZBjyL4Wa8+6AQRqcdDY9y9nkZQSMbTxzYABTXOXQ
stSaHRtt1muURnSFLi5qCVRlmH7ZxH5zs44rfZtx14/JnJiv3Yew5JaQqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC3Ron/twAFSU8OS5olMgJkbrpJdMB8GA1UdIwQY
MBaAFAEgJZbVzs433DTIYQZFePxtql6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVNBbGx0WE96amZjTk1oaEJrVjRfRzJxWG9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi85ODYxNjQtODAzMC00ZTQ3LTk4YjUt
NDgxMTUxYWNmMzI5LzEvQVNBbGx0WE96amZjTk1oaEJrVjRfRzJxWG9ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi85ODYxNjQtODAzMC00ZTQ3LTk4YjUtNDgxMTUxYWNmMzI5
LzEvQVNBbGx0WE96amZjTk1oaEJrVjRfRzJxWG9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAan7gsApZ
zg8gO+YM3DWGqxnhBU5TQwGQws5V0io3UGRFHPBn+rJXq8TYIBjZlS3nrfUh4v7i
IXSmVUaPEC8loJH+PFO3+6eGg+ZWZNLKdO0heaPr3cjMSGdiHKuB8YmbPlrEr96A
QnnWf58d675xuY0eba5uI7e3my42EcdYgXPPbuiQqzdQ/tK4bMS/wZfwddk6Ozjn
j3gFqWv3WVeNkfwjdjwR6LAXTT6RHwQwMXZ66VoklBkC1wpHO8O/8mwZUQiPrBDw
znAdXIfo3NOwDhdfVZw6piRwYTziqes8SmoeX4sV+0upZoxu/nqxo3kffjGJO555
n4/7Aw5Rd14OMw==
-----END CERTIFICATE-----
Generated at Tue May 13 08:30:25 2025 by rpki-client