Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
File: ASAlltXOzjfcNMhhBkV4_G2qXoY.mft (raw, json)
Hash identifier: TcTvQMKtjwSigkM/5mb1FDWOjjpJWqs/dPI35d+Pv6I=
Subject key identifier: 97:9F:85:4A:98:19:96:42:BC:E6:2C:CC:78:5B:4B:E2:2A:FF:21:11
Authority key identifier: 01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
Certificate issuer: /CN=01202596d5cece37dc34c861064578fc6daa5e86
Certificate serial: 0199FBEC3757BD17F256D51D038E9A00C1F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
Manifest number: 0BAC
Signing time: Sun 19 Oct 2025 10:03:05 +0000
Manifest this update: Sun 19 Oct 2025 10:03:05 +0000
Manifest next update: Mon 20 Oct 2025 10:03:05 +0000
Files and hashes: 1: ASAlltXOzjfcNMhhBkV4_G2qXoY.crl (hash: D3f5sq7U0yU6YX41bXJ7gAnb5sXPXX5Dxe6sNCdVA3s=)
2: GESlc56i4-gdhOlM9uZOfgy8aCc.roa (hash: 9R3PoH4Q7y5D2LVnthi2TWzvIx4vLCuEUl/il2GVgqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:03:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:37:57:bd:17:f2:56:d5:1d:03:8e:9a:00:c1:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01202596d5cece37dc34c861064578fc6daa5e86
Validity
Not Before: Oct 19 10:03:05 2025 GMT
Not After : Oct 20 10:03:05 2025 GMT
Subject: CN=979f854a98199642bce62ccc785b4be22aff2111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:84:ca:d1:cb:8c:f1:61:2f:56:13:ab:8f:ee:
20:0b:fd:1d:5b:30:e0:e7:ed:8e:4b:92:73:ab:fd:
3a:41:0f:8c:c1:37:64:32:45:0b:52:1d:be:d6:14:
b9:c3:ae:9a:d3:d5:44:f3:73:04:ca:41:c4:20:1b:
d5:a0:08:50:bb:b8:bd:f9:9e:3d:97:b7:21:11:9a:
05:72:e9:7b:a2:65:0d:70:83:c0:4a:ba:41:01:c2:
c7:73:69:64:05:6a:ee:dd:7f:26:64:97:0f:80:95:
88:e1:ca:5c:60:99:c0:e1:c3:38:8c:ff:f5:2f:a5:
11:94:8b:3b:63:da:1c:37:c3:23:86:67:8d:f5:7c:
f8:11:e3:31:8c:32:46:46:5b:e7:c3:a0:71:48:fe:
63:79:63:b4:31:2d:43:2b:75:dd:40:9d:3d:2b:88:
47:f4:bb:2b:e6:fb:cc:40:c1:36:8a:9d:ce:85:9a:
82:a4:e0:a2:ca:d6:00:98:fc:f6:21:ed:36:1e:5e:
e4:3a:b6:34:85:45:10:9f:5a:2d:57:53:19:e0:66:
84:cb:f7:6c:3a:1f:93:e9:5e:b7:fd:da:a3:60:d5:
f6:ca:67:5d:04:9c:6d:58:9f:2f:65:e7:88:0c:eb:
7b:71:76:87:41:0b:70:da:f5:72:47:77:7f:e2:01:
2a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:9F:85:4A:98:19:96:42:BC:E6:2C:CC:78:5B:4B:E2:2A:FF:21:11
X509v3 Authority Key Identifier:
keyid:01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:29:5d:12:88:37:32:09:43:fc:2b:74:48:31:a0:27:d5:6b:
ff:60:47:bc:db:8e:27:46:98:b6:fd:8e:64:06:de:f0:97:fe:
01:63:2a:91:93:9c:9c:a3:bf:e8:05:66:68:65:80:80:69:a4:
61:0b:41:40:92:69:e0:ac:d6:31:a1:27:c4:fe:f3:64:5c:f6:
6c:22:5e:c5:ad:f8:0a:ce:05:f0:21:d0:f9:b1:1a:6e:23:1b:
fb:de:d2:8e:6c:7c:66:bb:43:ca:37:fa:4a:20:9c:68:10:bb:
14:dc:38:69:87:80:3d:f8:8b:a2:68:33:db:c4:d0:f9:65:ec:
8e:36:13:88:01:2c:f8:f3:dd:43:5e:74:78:12:52:78:b0:d9:
39:87:6d:1e:c2:c9:ec:a0:df:eb:09:55:3c:6e:7c:74:21:4f:
4c:42:c9:de:69:44:cc:0f:87:46:f7:a9:4e:67:ff:8c:45:19:
9c:69:08:d9:73:c7:81:a2:17:ab:3b:56:00:51:bd:02:d5:89:
39:8f:06:45:9c:42:9b:89:95:31:1c:42:1f:5a:55:92:cf:fc:
9f:4f:12:7c:24:07:5f:9e:fc:82:00:55:fb:c7:00:ee:d4:b1:
e0:81:68:92:87:0d:ca:b7:a9:71:e1:c5:19:af:5c:ab:10:69:
49:bb:e1:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:29:43 2025 by rpki-client