Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
File: ASAlltXOzjfcNMhhBkV4_G2qXoY.mft (raw, json)
Hash identifier: lkJFV1pzg6JeB3knZioBqwl7Ao/NxOQlLzOCe33B71A=
Subject key identifier: 77:E4:89:EC:6E:62:20:E6:B4:89:36:67:55:AF:B5:0A:BD:5C:6F:0F
Authority key identifier: 01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
Certificate issuer: /CN=01202596d5cece37dc34c861064578fc6daa5e86
Certificate serial: 0198D6614C2090667D9C1C2C70E82E7F8165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
Manifest number: 0B14
Signing time: Sat 23 Aug 2025 10:02:37 +0000
Manifest this update: Sat 23 Aug 2025 10:02:37 +0000
Manifest next update: Sun 24 Aug 2025 10:02:37 +0000
Files and hashes: 1: ASAlltXOzjfcNMhhBkV4_G2qXoY.crl (hash: s14+AsslxEV41Rrzo3QA5GqiDox0MuzdShxIxzBDsNk=)
2: GESlc56i4-gdhOlM9uZOfgy8aCc.roa (hash: 9R3PoH4Q7y5D2LVnthi2TWzvIx4vLCuEUl/il2GVgqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:4c:20:90:66:7d:9c:1c:2c:70:e8:2e:7f:81:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01202596d5cece37dc34c861064578fc6daa5e86
Validity
Not Before: Aug 23 10:02:37 2025 GMT
Not After : Aug 24 10:02:37 2025 GMT
Subject: CN=77e489ec6e6220e6b489366755afb50abd5c6f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:21:9b:57:13:03:56:bd:42:0e:9d:05:88:ad:
17:91:ab:6f:7c:35:0b:a2:c0:25:8c:9b:77:6c:c6:
66:5d:54:f6:ce:40:78:b5:f3:2f:c0:83:aa:1b:27:
3f:49:c9:fe:86:58:1c:69:f8:f1:c8:1b:2f:b1:cf:
95:e7:59:e4:14:e9:0f:99:57:53:b0:f9:fd:f2:d2:
8d:1e:a9:a0:8a:e4:2b:df:3f:83:e1:0d:5f:3f:e0:
47:44:7c:9d:12:e9:30:30:44:7c:b6:bc:7e:51:35:
e2:45:72:41:3c:3a:1a:63:0b:22:5a:bf:43:19:e5:
01:73:05:1f:d3:81:ef:68:3e:ed:72:54:22:b7:4a:
f0:ec:ff:7a:c3:56:58:7c:ee:6d:c9:6c:a4:57:8a:
25:ca:15:e9:1c:83:73:b6:a0:97:89:cf:38:f0:75:
8b:da:88:4e:20:d2:21:9c:d9:9c:f5:1a:3f:85:8b:
25:ea:38:14:92:44:d1:42:46:ee:5c:fc:34:ee:e7:
b1:ef:c3:4c:d1:e1:c6:68:b3:c6:3c:e7:be:01:3b:
82:28:ff:28:95:2f:56:74:1d:bc:d4:56:92:71:78:
28:ea:31:0a:b0:1c:0e:6a:7a:8e:ff:78:2e:37:ef:
c3:a4:b9:ba:91:a3:8e:0f:07:8b:cd:c9:ee:52:8c:
90:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E4:89:EC:6E:62:20:E6:B4:89:36:67:55:AF:B5:0A:BD:5C:6F:0F
X509v3 Authority Key Identifier:
keyid:01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:63:ca:91:9e:b8:9a:e8:73:65:43:c9:39:e8:48:70:56:fb:
45:be:0f:f2:df:d0:a3:fc:d1:5c:d2:5a:bd:6a:80:6a:f0:65:
0b:fa:15:09:ea:bf:80:06:a3:c0:79:5e:53:80:66:d6:35:da:
f2:c3:81:4c:98:79:8d:0e:16:c0:3c:2a:0e:b2:5e:f0:37:87:
24:ee:4b:6f:d2:14:c3:a1:f1:80:57:c2:f5:c6:90:f9:92:59:
93:16:ef:97:3d:ea:1a:a4:77:8e:bf:80:3b:32:e7:e3:48:f9:
9e:7a:b3:58:7a:6d:9f:f0:2e:89:a0:41:11:c6:85:36:f0:96:
b8:14:04:37:2e:4d:af:93:9c:3a:df:bf:99:86:0f:dd:9a:d6:
29:b8:26:86:b5:c4:5e:17:74:2d:3c:7e:d3:3c:4c:79:3d:06:
49:ac:b4:84:28:2e:86:33:5b:42:b2:c8:7f:10:e5:e8:48:cd:
d5:85:c3:c8:a1:f1:ee:24:5b:01:a8:fd:3c:57:a3:96:db:3d:
0a:72:3c:c9:4a:64:93:82:b0:85:a4:b1:7a:2a:ea:b3:89:ee:
f8:29:2b:37:d5:fd:22:30:c0:ac:40:90:e6:d3:d0:8d:76:fe:
5e:17:15:32:7d:a2:db:93:8b:a1:a9:fb:37:81:a7:c4:4b:88:
e0:34:a8:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYUwgkGZ9nBwscOguf4FlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxMjAyNTk2ZDVjZWNlMzdkYzM0Yzg2MTA2NDU3OGZjNmRh
YTVlODYwHhcNMjUwODIzMTAwMjM3WhcNMjUwODI0MTAwMjM3WjAzMTEwLwYDVQQD
Eyg3N2U0ODllYzZlNjIyMGU2YjQ4OTM2Njc1NWFmYjUwYWJkNWM2ZjBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCGbVxMDVr1CDp0FiK0XkatvfDUL
osAljJt3bMZmXVT2zkB4tfMvwIOqGyc/Scn+hlgcafjxyBsvsc+V51nkFOkPmVdT
sPn98tKNHqmgiuQr3z+D4Q1fP+BHRHydEukwMER8trx+UTXiRXJBPDoaYwsiWr9D
GeUBcwUf04HvaD7tclQit0rw7P96w1ZYfO5tyWykV4olyhXpHINztqCXic848HWL
2ohOINIhnNmc9Ro/hYsl6jgUkkTRQkbuXPw07uex78NM0eHGaLPGPOe+ATuCKP8o
lS9WdB281FaScXgo6jEKsBwOanqO/3guN+/DpLm6kaOODweLzcnuUoyQ1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHfkiexuYiDmtIk2Z1WvtQq9XG8PMB8GA1UdIwQY
MBaAFAEgJZbVzs433DTIYQZFePxtql6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVNBbGx0WE96amZjTk1oaEJrVjRfRzJxWG9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi85ODYxNjQtODAzMC00ZTQ3LTk4YjUt
NDgxMTUxYWNmMzI5LzEvQVNBbGx0WE96amZjTk1oaEJrVjRfRzJxWG9ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi85ODYxNjQtODAzMC00ZTQ3LTk4YjUtNDgxMTUxYWNmMzI5
LzEvQVNBbGx0WE96amZjTk1oaEJrVjRfRzJxWG9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF2PKkZ64
muhzZUPJOehIcFb7Rb4P8t/Qo/zRXNJavWqAavBlC/oVCeq/gAajwHleU4Bm1jXa
8sOBTJh5jQ4WwDwqDrJe8DeHJO5Lb9IUw6HxgFfC9caQ+ZJZkxbvlz3qGqR3jr+A
OzLn40j5nnqzWHptn/AuiaBBEcaFNvCWuBQENy5Nr5OcOt+/mYYP3ZrWKbgmhrXE
Xhd0LTx+0zxMeT0GSay0hCguhjNbQrLIfxDl6EjN1YXDyKHx7iRbAaj9PFejlts9
CnI8yUpkk4KwhaSxeirqs4nu+CkrN9X9IjDArECQ5tPQjXb+XhcVMn2i25OLoan7
N4GnxEuI4DSo8w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:08:06 2025 by rpki-client