
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
File: AslIBM_MfvJY1G_DJMFnZEdgPvY.mft (raw, json)
Hash identifier: TxXW0JwdA7q2Lm9upiCJomERPyAhdGDUaQM3sMRJHyU=
Subject key identifier: 39:BF:4A:71:17:EA:93:54:E5:06:B9:B6:F8:21:68:1D:54:2C:50:50
Authority key identifier: 02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
Certificate issuer: /CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Certificate serial: 01988BB3A169952B2FBE82012FEF80A08BE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
Manifest number: 065B
Signing time: Fri 08 Aug 2025 22:01:01 +0000
Manifest this update: Fri 08 Aug 2025 22:01:01 +0000
Manifest next update: Sat 09 Aug 2025 22:01:01 +0000
Files and hashes: 1: AslIBM_MfvJY1G_DJMFnZEdgPvY.crl (hash: 1otH8pObmZmyKKiIKIfoHx8KFYzwetXdEA0qd6SEVv8=)
2: BJSflswBbF0KTW1WxnqGispYE6A.roa (hash: 0G9L1AGhPY7c7LWy6WEMdnKFLYng4LvVWndIKcOm2KU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:b3:a1:69:95:2b:2f:be:82:01:2f:ef:80:a0:8b:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Validity
Not Before: Aug 8 22:01:01 2025 GMT
Not After : Aug 9 22:01:01 2025 GMT
Subject: CN=39bf4a7117ea9354e506b9b6f821681d542c5050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:69:83:1a:6c:63:ae:82:af:90:85:6d:1d:97:
70:7b:26:94:b5:ba:cb:df:50:0a:d6:0f:3a:31:93:
02:c8:64:85:3a:ff:6b:a9:0b:be:35:3a:08:a3:7d:
c5:cc:e5:b1:f8:3d:21:03:c5:8d:93:9b:cc:70:d5:
07:cb:34:2c:a1:01:aa:34:79:64:ed:83:fb:8e:64:
64:47:94:a9:da:2a:81:55:c3:7a:f1:e5:b6:6a:75:
ac:7c:4d:de:ca:44:e2:67:27:c8:49:43:33:06:bf:
48:27:02:b2:c6:60:5f:58:3b:8a:96:55:ba:66:9c:
ad:d3:c7:c9:fc:73:dc:c4:9b:67:92:ac:32:fe:a2:
5e:64:91:f6:ab:4c:56:b5:b8:3b:33:39:f1:c7:d3:
9f:4a:f8:ac:c2:a0:bc:19:9d:4c:34:7e:6b:c1:38:
27:77:a7:5b:d8:dc:57:48:8d:7b:92:c9:41:f5:7a:
5b:f4:27:c6:b3:1b:7d:ed:63:72:f2:61:1c:24:03:
93:9a:0d:58:bd:4d:22:2c:e3:e8:56:f1:b0:37:f8:
7d:8f:17:dd:58:27:dc:85:86:b2:18:93:bc:50:ef:
8d:87:d6:95:83:41:63:40:6f:e2:a2:6e:0a:06:cb:
6d:8f:09:17:36:61:61:76:b2:a3:93:5b:59:95:20:
bc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:BF:4A:71:17:EA:93:54:E5:06:B9:B6:F8:21:68:1D:54:2C:50:50
X509v3 Authority Key Identifier:
keyid:02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:5e:e0:1b:d0:ba:95:a4:34:78:8b:aa:aa:89:25:ca:c5:bb:
5e:ab:52:4a:af:57:e8:6d:77:f6:90:2a:af:5d:f6:96:0f:9a:
68:d2:37:a7:b1:d5:28:92:a1:48:a4:d2:1a:95:d6:cb:91:f9:
58:a3:bc:02:2f:e5:e7:02:fa:d9:81:76:ab:b1:06:e0:77:95:
24:be:c3:61:47:eb:3e:1c:1a:3a:54:e9:1a:d8:5d:93:f6:9b:
f6:9e:38:1a:55:e0:e5:7e:09:7d:15:a3:94:d9:c1:f8:4d:61:
43:33:44:12:00:10:38:d5:f5:e0:9f:93:3f:ee:ec:99:3e:e6:
f3:bb:02:59:0c:19:3e:b9:86:94:72:e7:b5:a1:9f:32:59:be:
58:95:00:63:e8:64:c5:75:3b:c3:18:26:81:f3:80:d3:69:eb:
d2:94:94:74:37:4a:a4:ff:17:d4:59:c8:37:cd:bf:e1:f7:1f:
b5:ea:99:9b:bc:ac:67:5d:d2:b9:c2:84:b6:9f:9f:95:f8:10:
b1:c8:ff:f4:2d:48:fa:72:d7:35:dc:ab:3d:21:38:8c:58:42:
51:c8:28:41:22:b1:5c:66:71:93:6b:6d:d5:ca:13:44:dd:fb:
7d:d0:8e:5c:b2:ba:29:9a:39:c1:f9:da:75:7f:35:d4:e5:78:
e7:ce:0d:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLs6FplSsvvoIBL++AoIvlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyYzk0ODA0Y2ZjYzdlZjI1OGQ0NmZjMzI0YzE2NzY0NDc2
MDNlZjYwHhcNMjUwODA4MjIwMTAxWhcNMjUwODA5MjIwMTAxWjAzMTEwLwYDVQQD
EygzOWJmNGE3MTE3ZWE5MzU0ZTUwNmI5YjZmODIxNjgxZDU0MmM1MDUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymmDGmxjroKvkIVtHZdweyaUtbrL
31AK1g86MZMCyGSFOv9rqQu+NToIo33FzOWx+D0hA8WNk5vMcNUHyzQsoQGqNHlk
7YP7jmRkR5Sp2iqBVcN68eW2anWsfE3eykTiZyfISUMzBr9IJwKyxmBfWDuKllW6
Zpyt08fJ/HPcxJtnkqwy/qJeZJH2q0xWtbg7Mznxx9OfSviswqC8GZ1MNH5rwTgn
d6db2NxXSI17kslB9Xpb9CfGsxt97WNy8mEcJAOTmg1YvU0iLOPoVvGwN/h9jxfd
WCfchYayGJO8UO+Nh9aVg0FjQG/iom4KBsttjwkXNmFhdrKjk1tZlSC8twIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDm/SnEX6pNU5Qa5tvghaB1ULFBQMB8GA1UdIwQY
MBaAFALJSATPzH7yWNRvwyTBZ2RHYD72MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXNsSUJNX01mdkpZMUdfREpNRm5aRWRnUHZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84NWZmMGEtMjJhYi00MTkwLTliNzMt
MjU5YmU5ZmJjMWYxLzEvQXNsSUJNX01mdkpZMUdfREpNRm5aRWRnUHZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84NWZmMGEtMjJhYi00MTkwLTliNzMtMjU5YmU5ZmJjMWYx
LzEvQXNsSUJNX01mdkpZMUdfREpNRm5aRWRnUHZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIF7gG9C6
laQ0eIuqqoklysW7XqtSSq9X6G139pAqr132lg+aaNI3p7HVKJKhSKTSGpXWy5H5
WKO8Ai/l5wL62YF2q7EG4HeVJL7DYUfrPhwaOlTpGthdk/ab9p44GlXg5X4JfRWj
lNnB+E1hQzNEEgAQONX14J+TP+7smT7m87sCWQwZPrmGlHLntaGfMlm+WJUAY+hk
xXU7wxgmgfOA02nr0pSUdDdKpP8X1FnIN82/4fcfteqZm7ysZ13SucKEtp+flfgQ
scj/9C1I+nLXNdyrPSE4jFhCUcgoQSKxXGZxk2tt1coTRN37fdCOXLK6KZo5wfna
dX811OV4584Nvg==
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:48:18 2025 by rpki-client