Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
File: 0AL76fCkE2A-3vtzOlMfLiwOnAY.mft (raw, json)
Hash identifier: WGKU/yVugDvLgGhaEsYIVHIzAMSgNSYOyx9iVj5QHmQ=
Subject key identifier: 3B:6F:9F:20:BB:D6:02:39:44:F3:CF:C5:70:09:3D:A0:FA:68:DC:DB
Authority key identifier: D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
Certificate issuer: /CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Certificate serial: 01984A09C68DD6930DBCBA0A772E3B823B41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
Manifest number: 1600
Signing time: Sun 27 Jul 2025 04:00:11 +0000
Manifest this update: Sun 27 Jul 2025 04:00:11 +0000
Manifest next update: Mon 28 Jul 2025 04:00:11 +0000
Files and hashes: 1: 0AL76fCkE2A-3vtzOlMfLiwOnAY.crl (hash: /5Rg5BPTQX7IEGTyekm6VwF4Er61MfsygV3JgMFCjjE=)
2: _XUidn5LGX4qhZ_75ajbeYWe1Ao.roa (hash: b/pfq31DckGw+o1qBs5ugJl7vAflaGA+vdef1tZYmPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:09:c6:8d:d6:93:0d:bc:ba:0a:77:2e:3b:82:3b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Validity
Not Before: Jul 27 04:00:11 2025 GMT
Not After : Jul 28 04:00:11 2025 GMT
Subject: CN=3b6f9f20bbd6023944f3cfc570093da0fa68dcdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:36:8d:ff:6f:69:13:34:38:2f:d4:32:4b:7d:
e8:40:d5:a8:0b:44:db:ef:4b:89:da:b9:f7:46:9b:
f0:04:3f:3a:e5:d9:76:d0:5d:66:34:55:36:50:e8:
6b:f6:bd:c3:5f:90:9d:c9:2d:95:10:e8:46:27:f4:
a1:b6:6b:24:48:8d:a6:47:3f:ce:e3:25:c8:a5:22:
01:5a:27:37:e0:64:be:46:73:c4:f6:c8:bf:7f:45:
61:36:55:cf:0a:14:83:6f:bc:80:29:16:18:5e:0b:
5b:34:56:b7:59:a4:e0:4e:5b:7e:2b:0e:ad:7b:14:
1f:9e:d4:81:69:d2:39:9d:b4:02:12:ea:e6:e8:f7:
ee:22:47:a4:97:0c:35:11:e7:19:66:9c:3f:3f:8f:
1e:ef:c3:cd:d2:7b:11:95:a2:de:6a:9f:55:bf:ae:
e1:33:ba:7c:16:92:90:b9:50:db:a4:7b:61:2e:73:
d5:27:74:5b:61:93:13:89:93:c7:af:83:36:a8:39:
3a:9b:17:1c:d9:51:37:39:2d:0e:ff:41:4c:60:d4:
c7:d0:61:c3:fb:7e:4e:6c:e5:eb:20:19:ea:75:4c:
39:30:77:da:7b:ad:ad:2f:58:11:33:ea:ea:43:66:
29:55:18:31:4a:8c:9e:00:41:2a:f4:89:a7:a5:11:
e1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:6F:9F:20:BB:D6:02:39:44:F3:CF:C5:70:09:3D:A0:FA:68:DC:DB
X509v3 Authority Key Identifier:
keyid:D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:d7:2e:ea:92:9a:3a:df:57:3e:c2:30:a9:14:8b:16:0d:e1:
aa:b0:4a:7a:bf:9d:07:60:54:dd:cd:b6:82:c2:1a:37:70:46:
a1:e0:ad:eb:5c:96:81:9c:33:51:2b:45:f5:ec:d5:a9:5d:0d:
d4:78:94:c5:2c:da:52:c4:9a:03:f6:da:22:e8:ba:9b:34:7c:
da:3a:e9:8f:f0:ee:78:b2:2b:fa:01:55:71:5b:1f:af:74:bd:
4b:f5:68:c5:8e:0a:9a:6e:34:97:79:54:d3:46:e2:97:53:f2:
6d:40:2d:8d:eb:96:b5:8c:9d:0f:c6:14:fe:18:84:87:8e:05:
0b:61:83:d9:8a:b7:39:63:df:00:df:08:46:da:81:5b:7c:da:
2c:72:68:12:6a:87:e6:f3:b5:50:63:12:51:fa:d2:76:34:d1:
16:bf:6e:8f:35:0d:d0:7c:36:eb:4f:af:89:65:0a:c1:9c:c5:
85:58:0e:a4:e8:e4:0c:c9:27:15:b1:29:96:52:3e:f9:56:97:
dc:e4:19:92:cc:40:f3:b2:50:19:29:a4:89:67:d2:a2:1a:7d:
2f:98:3f:77:9c:94:2e:ce:1c:67:65:a8:6d:13:8d:59:e8:3c:
8f:b9:96:9c:92:29:26:19:6b:83:7c:19:82:d9:55:33:8f:96:
77:b6:62:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhKCcaN1pMNvLoKdy47gjtBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwMDJmYmU5ZjBhNDEzNjAzZWRlZmI3MzNhNTMxZjJlMmMw
ZTljMDYwHhcNMjUwNzI3MDQwMDExWhcNMjUwNzI4MDQwMDExWjAzMTEwLwYDVQQD
EygzYjZmOWYyMGJiZDYwMjM5NDRmM2NmYzU3MDA5M2RhMGZhNjhkY2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2jaN/29pEzQ4L9QyS33oQNWoC0Tb
70uJ2rn3RpvwBD865dl20F1mNFU2UOhr9r3DX5CdyS2VEOhGJ/ShtmskSI2mRz/O
4yXIpSIBWic34GS+RnPE9si/f0VhNlXPChSDb7yAKRYYXgtbNFa3WaTgTlt+Kw6t
exQfntSBadI5nbQCEurm6PfuIkeklww1EecZZpw/P48e78PN0nsRlaLeap9Vv67h
M7p8FpKQuVDbpHthLnPVJ3RbYZMTiZPHr4M2qDk6mxcc2VE3OS0O/0FMYNTH0GHD
+35ObOXrIBnqdUw5MHfae62tL1gRM+rqQ2YpVRgxSoyeAEEq9ImnpRHhfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDtvnyC71gI5RPPPxXAJPaD6aNzbMB8GA1UdIwQY
MBaAFNAC++nwpBNgPt77czpTHy4sDpwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEFMNzZmQ2tFMkEtM3Z0ek9sTWZMaXdPbkFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS85YmFmYjEtMGM0Mi00MjViLWFhMjkt
MTljMDQ1YzZhMTRmLzEvMEFMNzZmQ2tFMkEtM3Z0ek9sTWZMaXdPbkFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS85YmFmYjEtMGM0Mi00MjViLWFhMjktMTljMDQ1YzZhMTRm
LzEvMEFMNzZmQ2tFMkEtM3Z0ek9sTWZMaXdPbkFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOdcu6pKa
Ot9XPsIwqRSLFg3hqrBKer+dB2BU3c22gsIaN3BGoeCt61yWgZwzUStF9ezVqV0N
1HiUxSzaUsSaA/baIui6mzR82jrpj/DueLIr+gFVcVsfr3S9S/VoxY4Kmm40l3lU
00bil1PybUAtjeuWtYydD8YU/hiEh44FC2GD2Yq3OWPfAN8IRtqBW3zaLHJoEmqH
5vO1UGMSUfrSdjTRFr9ujzUN0Hw260+viWUKwZzFhVgOpOjkDMknFbEpllI++VaX
3OQZksxA87JQGSmkiWfSohp9L5g/d5yULs4cZ2WobRONWeg8j7mWnJIpJhlrg3wZ
gtlVM4+Wd7ZiEQ==
-----END CERTIFICATE-----
Generated at Sun Jul 27 08:56:12 2025 by rpki-client