Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
File: ASAlltXOzjfcNMhhBkV4_G2qXoY.mft (raw, json)
Hash identifier: dFqtXIb7rZ1QJl4syCnYsPZMd0RBtKjjpqWbPgUDroY=
Subject key identifier: D9:E0:3C:AB:4F:41:CE:79:05:AA:0E:BE:AB:B7:25:2E:83:56:AC:D5
Authority key identifier: 01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
Certificate issuer: /CN=01202596d5cece37dc34c861064578fc6daa5e86
Certificate serial: 0197B8901FDDF846C5ECA84CAB85F959D357
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
Manifest number: 0A80
Signing time: Sat 28 Jun 2025 22:02:22 +0000
Manifest this update: Sat 28 Jun 2025 22:02:22 +0000
Manifest next update: Sun 29 Jun 2025 22:02:22 +0000
Files and hashes: 1: ASAlltXOzjfcNMhhBkV4_G2qXoY.crl (hash: l+Pg7nLVeFoSqbw1/fxenBur62LsvRFdb2sMqDh5DaI=)
2: GESlc56i4-gdhOlM9uZOfgy8aCc.roa (hash: 9R3PoH4Q7y5D2LVnthi2TWzvIx4vLCuEUl/il2GVgqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:1f:dd:f8:46:c5:ec:a8:4c:ab:85:f9:59:d3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01202596d5cece37dc34c861064578fc6daa5e86
Validity
Not Before: Jun 28 22:02:22 2025 GMT
Not After : Jun 29 22:02:22 2025 GMT
Subject: CN=d9e03cab4f41ce7905aa0ebeabb7252e8356acd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d1:5d:ab:aa:b0:82:8e:b6:45:ce:39:be:3b:
52:0b:9d:56:ae:66:93:7c:74:1b:d7:5a:cd:12:9d:
03:c1:63:f8:25:15:11:74:73:cf:b7:d7:23:c9:f8:
c5:68:a7:a7:32:e2:a2:ea:9e:83:40:3f:19:12:f3:
6a:25:0c:49:5e:06:ad:3f:56:c2:e1:ea:94:93:2e:
3f:0b:71:66:d7:7b:93:c5:52:72:18:25:11:f5:3a:
fe:53:7e:1b:c3:93:c1:8f:90:52:b5:ab:1e:66:9b:
b7:f5:20:b3:d8:2a:be:b2:09:be:0c:3b:99:3f:bc:
b3:27:df:ad:5c:63:3a:6a:e9:2a:4e:8b:2f:61:fb:
fa:0f:28:3e:65:ce:c6:a7:cf:f5:c1:fc:ab:ef:b2:
b5:59:14:52:7a:e0:f1:a4:73:51:38:21:43:b5:38:
5c:b0:b9:e6:ec:09:aa:61:fe:a8:b9:c4:0f:64:2a:
87:92:45:63:81:bc:f5:87:d4:72:43:6e:73:ed:29:
5e:79:1a:f5:f4:80:ed:c1:d0:ef:b7:39:bd:41:ca:
aa:5a:aa:e4:87:79:be:54:bf:56:6b:12:8a:a0:4b:
07:46:b7:41:c5:17:1c:7f:d5:cd:87:55:ca:de:7b:
ca:16:2f:43:71:64:12:79:17:b0:7b:4f:c5:f4:99:
b5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E0:3C:AB:4F:41:CE:79:05:AA:0E:BE:AB:B7:25:2E:83:56:AC:D5
X509v3 Authority Key Identifier:
keyid:01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:0a:a9:06:96:1d:43:0f:d6:91:6d:80:89:69:e6:50:07:97:
28:36:f4:e6:7b:f3:ba:64:c0:35:87:82:c7:88:61:ab:5f:d2:
e8:fd:46:c5:d9:8c:a0:fe:f9:38:e9:dc:c6:65:38:1e:0f:11:
3e:d7:80:e3:86:20:3b:86:24:2e:0c:50:0e:ca:cd:80:85:3c:
46:70:dd:d6:05:ef:9d:72:bd:4c:32:ba:52:fb:b3:95:b8:6c:
b1:8e:83:a9:0d:57:a6:e5:00:71:08:6e:41:b6:ef:e0:8c:cd:
4f:82:84:79:7f:37:eb:f6:95:a5:fd:cb:06:2a:8e:b1:5d:a2:
5f:2f:41:f1:0d:8c:9e:bd:6e:05:99:0a:be:ec:c5:a6:a5:b8:
54:56:ed:ac:cd:86:b4:24:61:f0:b4:a4:27:97:31:ca:3c:e9:
4d:a6:ff:3e:e4:aa:a4:6d:2b:0d:d0:1b:68:74:b1:cf:e4:a5:
8d:a1:66:b3:37:db:af:7f:15:e8:98:4c:1f:b3:5f:a0:e0:88:
f3:b3:f9:eb:c2:57:25:2a:7e:43:52:a7:02:e4:ef:96:2b:ad:
53:c1:8d:5d:13:97:d8:95:b9:b1:59:25:a1:d7:b7:7d:4e:37:
52:f3:65:3e:85:a1:0b:78:a9:d0:22:6a:84:8b:80:19:74:01:
13:ff:91:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:33:48 2025 by rpki-client