Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
File: AL8jAERknAbXXjAsUXUATb_GcmE.mft (raw, json)
Hash identifier: MwoRwRnahV7cRbjnbYu+/oiQvleuxxanLxKej3zBQBw=
Subject key identifier: AF:3F:D8:B3:A2:C2:1F:0F:F8:FD:F1:2C:1C:3D:7D:A7:43:D8:B0:2D
Authority key identifier: 00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
Certificate issuer: /CN=00bf230044649c06d75e302c5175004dbfc67261
Certificate serial: 01974C31FDD51CE3FB4F3D43DB2307213045
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
Manifest number: 0C22
Signing time: Sat 07 Jun 2025 21:00:34 +0000
Manifest this update: Sat 07 Jun 2025 21:00:34 +0000
Manifest next update: Sun 08 Jun 2025 21:00:34 +0000
Files and hashes: 1: AL8jAERknAbXXjAsUXUATb_GcmE.crl (hash: aKwD0oPrsFm1NakaqWJyR8siMonJkmfEwQGWsxga1Xk=)
2: qzSVGtS_jWsXuo115ysr12jv81o.roa (hash: 6sU/7Xohp1bS1zbTFVnz4YbGVdQCm8u0BmBoUOstkdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:fd:d5:1c:e3:fb:4f:3d:43:db:23:07:21:30:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00bf230044649c06d75e302c5175004dbfc67261
Validity
Not Before: Jun 7 21:00:34 2025 GMT
Not After : Jun 8 21:00:34 2025 GMT
Subject: CN=af3fd8b3a2c21f0ff8fdf12c1c3d7da743d8b02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c3:89:26:27:11:f8:e7:f5:b0:3b:fa:20:f1:
f9:5a:03:f5:34:06:88:c3:6b:99:8c:d1:86:3c:4c:
e1:76:dc:de:c0:7c:03:8c:f0:39:b2:ce:be:4f:12:
59:47:1e:d9:9c:98:7e:df:3b:15:df:48:be:f2:d8:
26:bc:54:8e:a2:13:ee:c6:e4:f5:53:50:7c:6d:b1:
bf:2e:dd:11:31:f1:57:16:8c:5e:45:17:b8:3f:20:
4d:c3:cf:51:c1:55:f3:1e:c2:61:e9:73:b5:9e:c9:
f2:f7:e6:ff:83:5d:5c:0e:7a:69:ea:a2:32:ec:f5:
df:df:43:6e:07:0f:92:4d:f2:5e:bc:7f:ae:36:92:
97:a9:2f:1e:12:a9:e9:ee:a4:96:64:8a:77:66:f1:
56:ab:f0:f3:38:4a:a4:2c:ba:cf:25:0e:a1:be:7d:
7a:46:ff:60:9f:b0:ec:40:bf:c6:08:9c:a3:ab:b2:
3f:f2:10:4d:ed:d8:10:ad:48:8a:90:2d:6d:9a:d7:
c9:e4:5e:de:7a:4f:47:d1:8a:d7:34:78:1c:d7:a5:
26:b1:34:2b:02:24:27:64:3f:89:da:26:3e:a8:e8:
90:ca:d5:9b:74:5e:52:9e:03:64:d2:13:ab:57:58:
de:0a:a3:f2:f4:7c:2b:4e:91:07:3c:00:29:64:33:
51:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3F:D8:B3:A2:C2:1F:0F:F8:FD:F1:2C:1C:3D:7D:A7:43:D8:B0:2D
X509v3 Authority Key Identifier:
keyid:00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:e6:85:6f:7f:b7:96:00:1b:91:32:80:5e:7e:84:b9:5c:f5:
2d:8b:7d:6d:03:60:0a:e2:f6:06:c0:81:c4:51:b2:d2:1c:39:
02:3d:26:17:48:06:25:8b:cc:d5:11:c8:ab:78:51:da:1a:06:
9e:d5:59:bb:15:e0:f2:4b:4e:e8:6b:b5:8b:d7:6d:1b:02:cb:
d2:6e:f1:0c:c4:35:29:0e:50:93:b2:48:1b:e4:96:7f:6e:49:
38:37:c9:f0:dd:63:02:c5:c2:81:86:d1:e6:bb:55:1c:f0:3f:
34:bf:a2:68:41:4d:4d:1b:e0:4b:a3:8a:a2:ea:a7:0e:71:59:
33:3f:0c:6f:03:6f:3d:2c:b8:b4:3b:f9:2a:a0:91:71:ca:43:
37:34:46:b6:cc:71:df:af:fe:50:cb:54:75:1d:27:c0:e8:c1:
90:53:7f:56:96:36:de:73:0e:c4:cd:e7:be:1b:07:70:4c:de:
a9:97:f6:ba:1d:27:66:cc:ef:e7:71:3e:43:fe:03:06:3f:b0:
b9:78:8f:24:e7:b8:9d:1f:78:f1:6e:e2:05:00:a4:fa:7f:f8:
3c:de:21:8b:1f:d9:78:11:a2:64:1e:46:01:12:88:0f:b1:07:
c1:b3:94:e4:18:12:68:81:46:e9:42:8c:68:50:ac:bd:ac:f8:
56:d5:df:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMMf3VHOP7Tz1D2yMHITBFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYmYyMzAwNDQ2NDljMDZkNzVlMzAyYzUxNzUwMDRkYmZj
NjcyNjEwHhcNMjUwNjA3MjEwMDM0WhcNMjUwNjA4MjEwMDM0WjAzMTEwLwYDVQQD
EyhhZjNmZDhiM2EyYzIxZjBmZjhmZGYxMmMxYzNkN2RhNzQzZDhiMDJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8OJJicR+Of1sDv6IPH5WgP1NAaI
w2uZjNGGPEzhdtzewHwDjPA5ss6+TxJZRx7ZnJh+3zsV30i+8tgmvFSOohPuxuT1
U1B8bbG/Lt0RMfFXFoxeRRe4PyBNw89RwVXzHsJh6XO1nsny9+b/g11cDnpp6qIy
7PXf30NuBw+STfJevH+uNpKXqS8eEqnp7qSWZIp3ZvFWq/DzOEqkLLrPJQ6hvn16
Rv9gn7DsQL/GCJyjq7I/8hBN7dgQrUiKkC1tmtfJ5F7eek9H0YrXNHgc16UmsTQr
AiQnZD+J2iY+qOiQytWbdF5SngNk0hOrV1jeCqPy9HwrTpEHPAApZDNRxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK8/2LOiwh8P+P3xLBw9fadD2LAtMB8GA1UdIwQY
MBaAFAC/IwBEZJwG114wLFF1AE2/xnJhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUw4akFFUmtuQWJYWGpBc1VYVUFUYl9HY21FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9kODgxMjItZGVkYS00ZmQwLTlhNjct
NmVmMWQ5NjgxM2EyLzEvQUw4akFFUmtuQWJYWGpBc1VYVUFUYl9HY21FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC9kODgxMjItZGVkYS00ZmQwLTlhNjctNmVmMWQ5NjgxM2Ey
LzEvQUw4akFFUmtuQWJYWGpBc1VYVUFUYl9HY21FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAseaFb3+3
lgAbkTKAXn6EuVz1LYt9bQNgCuL2BsCBxFGy0hw5Aj0mF0gGJYvM1RHIq3hR2hoG
ntVZuxXg8ktO6Gu1i9dtGwLL0m7xDMQ1KQ5Qk7JIG+SWf25JODfJ8N1jAsXCgYbR
5rtVHPA/NL+iaEFNTRvgS6OKouqnDnFZMz8MbwNvPSy4tDv5KqCRccpDNzRGtsxx
36/+UMtUdR0nwOjBkFN/VpY23nMOxM3nvhsHcEzeqZf2uh0nZszv53E+Q/4DBj+w
uXiPJOe4nR948W7iBQCk+n/4PN4hix/ZeBGiZB5GARKID7EHwbOU5BgSaIFG6UKM
aFCsvaz4VtXf5Q==
-----END CERTIFICATE-----
Generated at Sun Jun 8 00:34:27 2025 by rpki-client