Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: 3Oj69OlzMRUiFJF9WPGH2ryb22AlX+Y7DnljOHpkYiQ=
Subject key identifier: 3D:29:22:61:05:F2:4F:9C:77:64:97:9C:C3:18:F4:44:5F:FC:2B:17
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 019748FABFCCEFFE1147D50FD2940C7ACDC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 1589
Signing time: Sat 07 Jun 2025 06:01:21 +0000
Manifest this update: Sat 07 Jun 2025 06:01:21 +0000
Manifest next update: Sun 08 Jun 2025 06:01:21 +0000
Files and hashes: 1: 6QBVEiLusjnuHnwecVMK9Kg-WII.roa (hash: OapSvDTUmzDRZu9Q3KlIrLgI0CjCfgxrem8xot5UiSo=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: vz9q7KzcKB2RLAb7MGHk9f22iUaDyJyugJWPXztq0aM=)
3: GiC40GdnPgHbIqIbDNeP-spJi-M.roa (hash: Xd4LHWf6P2V0nuixtM1f8JXOI9EnPVM3k32pXeFOXiw=)
4: JeT3PicL3j6wpeXRT3s8FrJpy3w.roa (hash: tjXOPJYxlFtc8BfVkznJC0Nu37PcV0Dt33rxJApZ9kY=)
5: L5lOWtMXwmLYho3Arxcpd76R5sw.roa (hash: XM0Za1PmkukhwAWipMkx42usukTFibdWlbabSAWWgH4=)
6: Lwic0o2gw3k82wpfSkPa-wUg5Aw.roa (hash: pZ1a8TMxYqDEEa657nYARi2g7u3tXGj01SXvh3eUl1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:bf:cc:ef:fe:11:47:d5:0f:d2:94:0c:7a:cd:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Jun 7 06:01:21 2025 GMT
Not After : Jun 8 06:01:21 2025 GMT
Subject: CN=3d29226105f24f9c7764979cc318f4445ffc2b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:01:99:52:62:1a:ae:3f:f3:37:0d:b4:aa:0b:
80:43:01:56:2e:1b:b6:36:8c:9e:7d:65:02:45:c3:
24:33:f8:eb:f1:52:23:7b:94:59:21:a6:95:71:b9:
c3:34:a5:02:69:fd:61:b9:be:a2:cc:99:ea:d5:fb:
22:82:55:56:a7:2b:4c:a7:9f:28:66:e9:e0:e9:8b:
a6:33:22:73:9e:30:95:35:ac:91:1f:71:6b:c1:e9:
0d:4f:f3:1c:d4:8c:71:04:eb:af:ba:33:28:90:2d:
48:08:4b:0c:f5:4c:f6:76:f0:df:b4:c3:38:5d:10:
3b:3f:f0:35:8a:d2:14:43:03:56:84:30:85:61:ca:
e8:42:d0:38:8a:74:e6:f6:34:37:ff:d0:5d:72:60:
48:41:cd:2a:1b:54:a3:9f:3b:85:26:ea:73:61:4a:
45:c2:b4:ed:76:ef:73:6b:4f:96:39:fe:58:78:57:
f3:3f:36:44:46:c0:42:2b:97:cd:a3:0f:ce:93:0f:
69:09:67:66:32:c9:2a:b4:11:6c:9a:e8:c1:1d:55:
2a:8d:b9:fa:e7:e1:fc:c1:31:42:48:8c:18:b4:23:
c4:dd:70:72:d7:42:55:52:27:b4:ea:d0:35:66:f9:
7c:57:f5:81:fb:02:c0:6c:39:bc:c2:f9:67:a0:cd:
93:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:29:22:61:05:F2:4F:9C:77:64:97:9C:C3:18:F4:44:5F:FC:2B:17
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:7a:c6:c1:aa:23:6e:77:dd:bc:49:0e:13:15:8e:92:7e:aa:
11:0e:75:65:94:c0:58:64:ae:b5:6b:a1:13:ad:d7:67:a5:7a:
26:95:96:22:4b:ab:83:90:d6:b0:65:56:cd:10:f0:26:05:bc:
18:d9:30:d7:fc:86:cb:90:be:a3:bd:00:c9:72:7f:1c:ab:c9:
64:d7:23:95:cf:03:7f:af:8c:2c:4a:6a:42:82:25:fc:81:4b:
84:2b:c9:16:c5:db:06:d8:42:31:55:a7:64:eb:9a:75:f3:c4:
fe:ac:73:75:10:b6:0d:e7:ce:d0:af:5a:bb:01:db:bf:b4:0b:
9c:cb:83:53:1c:87:e3:de:bb:74:58:bb:a6:6c:c4:95:aa:4e:
5b:7d:80:d2:8a:4a:37:c5:72:74:0d:43:c1:b7:ec:2d:06:34:
98:17:17:31:e5:b0:17:25:5c:49:a7:06:7f:ac:5f:50:90:a2:
77:15:f5:67:e4:a1:d5:56:c8:1b:06:10:ad:64:f4:1a:dd:4c:
64:cd:67:9c:67:16:66:f7:9e:84:96:1c:58:7f:92:4a:cf:46:
50:25:8d:16:b1:05:d4:f2:91:e1:e8:37:8e:65:39:0b:42:f4:
fa:dd:bb:10:14:1d:05:56:0f:0e:71:43:85:2a:ab:e5:57:3d:
da:53:71:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+r/M7/4RR9UP0pQMes3JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNWYyYTkzZGIxMGYyZGQ1ZjZhNTViYjJhNDQwZjY3NDg2
Y2QxYTMwHhcNMjUwNjA3MDYwMTIxWhcNMjUwNjA4MDYwMTIxWjAzMTEwLwYDVQQD
EygzZDI5MjI2MTA1ZjI0ZjljNzc2NDk3OWNjMzE4ZjQ0NDVmZmMyYjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgGZUmIarj/zNw20qguAQwFWLhu2
NoyefWUCRcMkM/jr8VIje5RZIaaVcbnDNKUCaf1hub6izJnq1fsiglVWpytMp58o
Zung6YumMyJznjCVNayRH3FrwekNT/Mc1IxxBOuvujMokC1ICEsM9Uz2dvDftMM4
XRA7P/A1itIUQwNWhDCFYcroQtA4inTm9jQ3/9BdcmBIQc0qG1SjnzuFJupzYUpF
wrTtdu9za0+WOf5YeFfzPzZERsBCK5fNow/Okw9pCWdmMskqtBFsmujBHVUqjbn6
5+H8wTFCSIwYtCPE3XBy10JVUie06tA1Zvl8V/WB+wLAbDm8wvlnoM2TRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD0pImEF8k+cd2SXnMMY9ERf/CsXMB8GA1UdIwQY
MBaAFAJfKpPbEPLdX2pVuypED2dIbNGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYt
MmVjZGExMWRlMTUzLzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYtMmVjZGExMWRlMTUz
LzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQnrGwaoj
bnfdvEkOExWOkn6qEQ51ZZTAWGSutWuhE63XZ6V6JpWWIkurg5DWsGVWzRDwJgW8
GNkw1/yGy5C+o70AyXJ/HKvJZNcjlc8Df6+MLEpqQoIl/IFLhCvJFsXbBthCMVWn
ZOuadfPE/qxzdRC2DefO0K9auwHbv7QLnMuDUxyH4967dFi7pmzElapOW32A0opK
N8VydA1DwbfsLQY0mBcXMeWwFyVcSacGf6xfUJCidxX1Z+Sh1VbIGwYQrWT0Gt1M
ZM1nnGcWZveehJYcWH+SSs9GUCWNFrEF1PKR4eg3jmU5C0L0+t27EBQdBVYPDnFD
hSqr5Vc92lNxaw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:37:27 2025 by rpki-client