Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
File: AslIBM_MfvJY1G_DJMFnZEdgPvY.mft (raw, json)
Hash identifier: EdXNkgXjtpD0qZs+d1RtSK6/iYrtYWnPfnEn6cuVoVY=
Subject key identifier: B6:A9:0C:25:94:AB:64:2B:EB:45:24:EA:8E:60:1E:21:78:B6:87:23
Authority key identifier: 02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
Certificate issuer: /CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Certificate serial: 019A537635CCEC32CE1D2D55177E01AB46C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
Manifest number: 0747
Signing time: Wed 05 Nov 2025 10:00:47 +0000
Manifest this update: Wed 05 Nov 2025 10:00:47 +0000
Manifest next update: Thu 06 Nov 2025 10:00:47 +0000
Files and hashes: 1: AslIBM_MfvJY1G_DJMFnZEdgPvY.crl (hash: wwhxhn7OwMpRhFb7zDLNafKpBzNBxQel3iZJx5u9f7s=)
2: BJSflswBbF0KTW1WxnqGispYE6A.roa (hash: 0G9L1AGhPY7c7LWy6WEMdnKFLYng4LvVWndIKcOm2KU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:76:35:cc:ec:32:ce:1d:2d:55:17:7e:01:ab:46:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Validity
Not Before: Nov 5 10:00:47 2025 GMT
Not After : Nov 6 10:00:47 2025 GMT
Subject: CN=b6a90c2594ab642beb4524ea8e601e2178b68723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b0:27:81:fc:c4:66:25:c9:52:27:e3:77:f0:
d5:6c:67:96:11:0b:42:5c:22:a6:94:a4:29:a0:84:
37:73:51:59:7f:ae:49:49:1b:13:c6:8b:b2:84:e5:
b8:b7:1e:7a:4c:27:8a:ad:f5:e0:77:6e:ea:c3:35:
7b:ab:54:d3:52:58:52:d0:b0:a1:fa:85:ae:93:83:
a7:75:48:d5:05:00:11:b4:bb:a7:07:1a:4b:14:74:
00:53:16:d8:19:e8:de:96:b6:a4:e2:7d:e4:b7:ef:
62:6b:7a:22:76:c9:05:d5:80:a3:21:f3:12:78:e1:
4e:26:7d:08:97:c3:ed:67:e6:e8:1a:2b:15:63:24:
ea:2b:b6:e6:15:da:20:33:75:26:49:4c:0f:7d:25:
bb:29:80:93:49:fe:90:88:75:5e:39:25:9d:4a:cf:
77:d4:d5:da:dd:dc:29:a4:e0:64:57:aa:24:8e:05:
50:1a:ba:88:9f:45:b4:58:81:2e:c4:a1:2c:8a:e6:
16:fe:dc:be:5b:34:95:f6:1a:f1:0f:f8:f6:2e:9f:
2f:25:88:e3:41:a9:b1:6a:9e:73:50:bf:e1:b7:d9:
4b:d1:88:1f:00:67:6c:a9:d9:cb:83:a9:08:c2:d1:
1a:aa:af:b0:27:39:75:9b:c6:ce:12:4c:b9:99:21:
38:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A9:0C:25:94:AB:64:2B:EB:45:24:EA:8E:60:1E:21:78:B6:87:23
X509v3 Authority Key Identifier:
keyid:02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:15:3b:35:67:52:13:cf:f1:c8:f0:96:3f:97:95:ee:2c:83:
d4:e9:79:9f:ad:89:39:28:4e:5c:76:d9:0f:4d:87:ef:6f:da:
c0:2c:a1:2c:ef:ca:0b:b5:d0:b0:94:ea:8b:af:29:a6:0b:f4:
74:83:b7:a1:ab:04:a9:0a:75:47:98:79:61:a6:82:53:a7:cd:
df:d0:7d:11:da:a6:85:21:94:8b:81:29:08:fa:dc:c3:c9:f5:
4c:23:cc:68:ba:c2:72:97:c5:fe:3b:6e:f7:51:0e:a9:d0:bb:
36:11:14:3e:cf:3a:80:22:2e:67:f5:70:50:0f:00:f7:a7:e5:
72:29:2d:40:8e:3b:3d:81:7f:7a:f9:a3:14:9b:4f:2d:ad:53:
95:7f:b8:4d:45:a7:b1:fc:e2:87:e4:20:b8:d3:fd:f3:e9:bd:
6c:e9:01:29:b0:92:6a:63:fa:70:e5:59:45:94:44:1d:b1:51:
f4:a5:2d:cf:72:34:f2:94:4b:04:a6:84:64:34:ae:6f:21:90:
0d:b7:28:3d:4c:2a:8a:8d:3e:f9:0d:47:7f:35:b9:85:ea:32:
5c:66:02:33:86:d9:e7:48:3c:09:11:ea:8c:15:ff:3d:6a:2d:
ab:73:d3:e4:af:59:02:72:c5:f0:d6:76:43:02:c6:40:cb:64:
5a:0f:c7:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpTdjXM7DLOHS1VF34Bq0bHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyYzk0ODA0Y2ZjYzdlZjI1OGQ0NmZjMzI0YzE2NzY0NDc2
MDNlZjYwHhcNMjUxMTA1MTAwMDQ3WhcNMjUxMTA2MTAwMDQ3WjAzMTEwLwYDVQQD
EyhiNmE5MGMyNTk0YWI2NDJiZWI0NTI0ZWE4ZTYwMWUyMTc4YjY4NzIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbAngfzEZiXJUifjd/DVbGeWEQtC
XCKmlKQpoIQ3c1FZf65JSRsTxouyhOW4tx56TCeKrfXgd27qwzV7q1TTUlhS0LCh
+oWuk4OndUjVBQARtLunBxpLFHQAUxbYGejelrak4n3kt+9ia3oidskF1YCjIfMS
eOFOJn0Il8PtZ+boGisVYyTqK7bmFdogM3UmSUwPfSW7KYCTSf6QiHVeOSWdSs93
1NXa3dwppOBkV6okjgVQGrqIn0W0WIEuxKEsiuYW/ty+WzSV9hrxD/j2Lp8vJYjj
Qamxap5zUL/ht9lL0YgfAGdsqdnLg6kIwtEaqq+wJzl1m8bOEky5mSE4FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLapDCWUq2Qr60Uk6o5gHiF4tocjMB8GA1UdIwQY
MBaAFALJSATPzH7yWNRvwyTBZ2RHYD72MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXNsSUJNX01mdkpZMUdfREpNRm5aRWRnUHZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84NWZmMGEtMjJhYi00MTkwLTliNzMt
MjU5YmU5ZmJjMWYxLzEvQXNsSUJNX01mdkpZMUdfREpNRm5aRWRnUHZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84NWZmMGEtMjJhYi00MTkwLTliNzMtMjU5YmU5ZmJjMWYx
LzEvQXNsSUJNX01mdkpZMUdfREpNRm5aRWRnUHZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArhU7NWdS
E8/xyPCWP5eV7iyD1Ol5n62JOShOXHbZD02H72/awCyhLO/KC7XQsJTqi68ppgv0
dIO3oasEqQp1R5h5YaaCU6fN39B9EdqmhSGUi4EpCPrcw8n1TCPMaLrCcpfF/jtu
91EOqdC7NhEUPs86gCIuZ/VwUA8A96flciktQI47PYF/evmjFJtPLa1TlX+4TUWn
sfzih+QguNP98+m9bOkBKbCSamP6cOVZRZREHbFR9KUtz3I08pRLBKaEZDSubyGQ
DbcoPUwqio0++Q1HfzW5heoyXGYCM4bZ50g8CRHqjBX/PWotq3PT5K9ZAnLF8NZ2
QwLGQMtkWg/HvQ==
-----END CERTIFICATE-----
Generated at Wed Nov 5 11:44:29 2025 by rpki-client