Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
File: AslIBM_MfvJY1G_DJMFnZEdgPvY.mft (raw, json)
Hash identifier: Q63cSlhtddLlucyrJ5qWIRacDcONttalhXz438QcLMU=
Subject key identifier: 02:40:87:8F:D0:C2:86:7C:B0:E4:03:2A:5C:8B:00:B9:6D:BE:67:8B
Authority key identifier: 02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
Certificate issuer: /CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Certificate serial: 01978131F9E369F580AAD8E09122389170A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
Manifest number: 05D1
Signing time: Wed 18 Jun 2025 04:00:25 +0000
Manifest this update: Wed 18 Jun 2025 04:00:25 +0000
Manifest next update: Thu 19 Jun 2025 04:00:25 +0000
Files and hashes: 1: AslIBM_MfvJY1G_DJMFnZEdgPvY.crl (hash: kikOmyxWAc0G2h06vCX0BbvP0q8XZ4EptVP4PFpLrzQ=)
2: BJSflswBbF0KTW1WxnqGispYE6A.roa (hash: 0G9L1AGhPY7c7LWy6WEMdnKFLYng4LvVWndIKcOm2KU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:81:31:f9:e3:69:f5:80:aa:d8:e0:91:22:38:91:70:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Validity
Not Before: Jun 18 04:00:25 2025 GMT
Not After : Jun 19 04:00:25 2025 GMT
Subject: CN=0240878fd0c2867cb0e4032a5c8b00b96dbe678b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a3:60:3b:c4:dd:98:fd:4a:f0:77:24:67:0e:
3c:42:7e:c3:d2:05:0e:36:de:1c:a1:ac:db:f8:00:
ef:5d:e0:f1:ea:4c:30:90:d7:01:31:5a:39:25:e3:
b8:88:4b:93:22:90:7e:fb:7f:06:04:a1:01:07:e0:
08:8d:72:4c:b2:28:b0:e3:78:e6:11:0c:40:2d:69:
f0:65:95:c4:fc:92:c6:48:59:8b:7a:15:20:56:5a:
04:cf:38:5a:59:f7:5f:c8:98:a3:dc:0e:fd:b5:8a:
66:63:4e:ea:68:36:36:4b:3a:43:f7:3e:2b:58:83:
0f:71:27:18:f3:80:66:de:12:86:d8:3f:41:f9:20:
50:91:b3:86:4f:74:e7:d6:f1:b2:15:b7:39:e3:25:
25:85:fe:22:d9:7f:47:7c:db:24:4a:27:08:fe:0d:
0b:22:99:1a:eb:e7:3e:7d:35:59:1f:9b:cd:c8:ca:
8b:79:39:0a:36:47:81:f4:52:da:44:dd:03:ea:e8:
99:f9:75:01:97:c5:9c:0c:be:f3:93:df:8f:f5:f5:
ef:ec:bb:2f:fe:1d:a4:7c:6d:9b:3f:9c:d2:6d:8f:
84:f4:db:cc:42:96:35:41:a3:a9:3b:2a:5c:72:bc:
d5:68:6c:37:a6:72:a3:37:06:36:21:6d:32:e9:73:
0a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:40:87:8F:D0:C2:86:7C:B0:E4:03:2A:5C:8B:00:B9:6D:BE:67:8B
X509v3 Authority Key Identifier:
keyid:02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:e6:9c:66:d6:5f:c3:16:13:97:bd:00:6a:a1:8e:f6:5e:07:
c6:f3:23:16:88:63:0c:ea:73:0f:52:bc:d2:53:34:d6:25:93:
99:3a:08:73:75:62:b3:51:00:ce:e1:6c:b7:f1:0b:19:eb:fb:
1b:5d:70:c0:a4:a9:67:75:63:d1:35:ae:42:66:ba:3d:2f:94:
cd:ad:5e:fe:7e:ca:9e:b3:70:11:74:2e:93:be:b4:70:0f:97:
a7:37:0b:92:ff:26:a7:ff:67:bd:f8:35:63:95:d1:d8:68:49:
62:21:39:94:ea:38:ef:d6:5e:1b:f5:a4:82:68:16:ee:85:91:
69:5d:ec:96:8d:79:1c:a0:53:3d:f8:18:f8:6f:fd:8f:d7:98:
cb:4e:7e:24:49:90:3d:dd:ec:83:7a:82:8a:b8:c3:c0:1c:40:
6b:80:2d:c6:49:79:41:75:df:84:1d:46:c5:41:32:ba:73:f9:
9d:29:c3:07:42:3b:69:cc:a6:cb:b5:4b:9f:2b:55:01:35:97:
62:22:60:cb:aa:9e:e8:8c:c7:ab:22:4b:af:54:e0:cc:93:45:
1c:20:66:ba:78:6a:94:a0:46:16:85:ba:53:e9:9d:4c:d9:cc:
3e:6b:66:c4:81:bf:52:a9:a2:23:3b:7b:a8:77:31:12:c6:a6:
d5:eb:64:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 13:53:12 2025 by rpki-client