
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
File: AlY31IiO4AWN6a06cMQtxGmWmpk.mft (raw, json)
Hash identifier: SsnbA6ktEVDuhyokjNvk30fo5m5jCACaoCIqlDfyFH8=
Subject key identifier: C7:FC:75:D2:ED:40:F3:BB:EB:91:CF:DF:5A:B9:53:B5:C0:2F:6B:EF
Authority key identifier: 02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
Certificate issuer: /CN=025637d4888ee0058de9ad3a70c42dc469969a99
Certificate serial: 0198744FDA75319E1308C0B0367C44EFD2E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
Manifest number: 0A8D
Signing time: Mon 04 Aug 2025 09:00:46 +0000
Manifest this update: Mon 04 Aug 2025 09:00:46 +0000
Manifest next update: Tue 05 Aug 2025 09:00:46 +0000
Files and hashes: 1: AlY31IiO4AWN6a06cMQtxGmWmpk.crl (hash: axxVDAyx4fkvTB8+bA+DXPFwtQGgI51h3H5ajWklW+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:4f:da:75:31:9e:13:08:c0:b0:36:7c:44:ef:d2:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025637d4888ee0058de9ad3a70c42dc469969a99
Validity
Not Before: Aug 4 09:00:46 2025 GMT
Not After : Aug 5 09:00:46 2025 GMT
Subject: CN=c7fc75d2ed40f3bbeb91cfdf5ab953b5c02f6bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:23:c1:98:b3:ca:5a:26:78:8a:db:eb:3c:cc:
70:98:de:6b:c3:49:14:2c:f0:63:89:b7:be:6b:70:
fd:cd:da:3a:1f:ec:9c:c5:8d:56:5e:21:9d:9a:e9:
73:12:c0:cd:d0:28:1e:32:f5:19:e4:eb:44:60:c4:
b6:f2:e7:4b:e4:e2:61:79:cc:a4:8b:f1:18:a2:21:
29:d8:2e:70:97:31:db:0f:79:b1:9a:62:9f:16:ef:
32:0e:62:80:4b:4d:15:b7:70:25:d4:93:28:64:c4:
36:b4:84:35:e3:62:68:c9:d2:da:87:c8:3f:52:fb:
0b:c6:6f:79:4d:ac:2c:c9:fc:8c:37:e4:e2:78:0a:
3c:a4:2d:2c:20:44:2d:0b:22:10:ca:af:fd:cf:ec:
9b:72:66:f8:fa:24:f3:7c:15:0c:34:b7:b4:0a:63:
2f:1d:1b:b3:96:ea:fa:f9:2b:1c:8b:a1:da:d7:05:
3a:93:dc:1b:2d:41:b7:9a:27:28:f4:60:f5:46:5d:
f0:cd:67:8f:11:10:03:4c:25:54:04:13:a3:45:5a:
2f:b3:c4:91:67:2d:af:3b:f2:6b:22:0a:cb:19:53:
0d:2a:33:88:b6:36:0c:f5:e0:61:8f:d2:71:62:dc:
19:e0:fe:c1:fb:26:6c:e3:ce:68:5e:9a:88:45:4d:
95:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:FC:75:D2:ED:40:F3:BB:EB:91:CF:DF:5A:B9:53:B5:C0:2F:6B:EF
X509v3 Authority Key Identifier:
keyid:02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:e3:65:af:48:6e:4d:91:56:2f:72:a4:25:44:85:16:61:2f:
f8:bb:03:00:09:55:2e:f7:61:4b:61:b5:aa:8f:7d:e9:36:b9:
c9:fd:4d:52:a2:85:9e:e8:6c:df:e3:c7:c1:b7:84:44:0a:9e:
04:e3:38:76:98:18:44:8a:ed:70:98:8b:83:f3:d7:a2:18:83:
0a:f3:73:4f:80:a9:62:32:2a:72:00:e7:20:d6:f5:60:e4:e6:
79:e9:a9:db:ff:b3:7a:2c:b8:b4:b7:4c:78:ff:ed:b3:59:8d:
98:75:e5:c3:dd:74:0e:06:78:db:6c:4a:2f:64:4a:00:af:86:
7f:cc:05:26:c1:d8:41:86:83:a4:97:bc:37:18:40:03:50:35:
57:51:53:f6:01:a8:b5:87:5e:94:44:31:6f:e2:f7:ab:7a:87:
f5:5b:31:c7:b6:a7:ce:ed:e5:7a:b1:d2:67:90:64:ac:91:39:
40:16:b1:ed:9c:d8:b5:f4:a5:16:2d:ed:62:db:f2:35:3a:c5:
43:29:0d:2b:81:5f:d9:48:ec:31:4c:e1:de:79:cf:ee:e6:c2:
00:35:d6:cd:8a:f1:b2:3b:da:16:12:9b:f9:36:d2:42:da:99:
d1:4f:b5:b7:6a:44:56:11:15:43:cb:65:00:99:4a:22:c2:b1:
c6:18:9d:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0T9p1MZ4TCMCwNnxE79LoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNTYzN2Q0ODg4ZWUwMDU4ZGU5YWQzYTcwYzQyZGM0Njk5
NjlhOTkwHhcNMjUwODA0MDkwMDQ2WhcNMjUwODA1MDkwMDQ2WjAzMTEwLwYDVQQD
EyhjN2ZjNzVkMmVkNDBmM2JiZWI5MWNmZGY1YWI5NTNiNWMwMmY2YmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCPBmLPKWiZ4itvrPMxwmN5rw0kU
LPBjibe+a3D9zdo6H+ycxY1WXiGdmulzEsDN0CgeMvUZ5OtEYMS28udL5OJhecyk
i/EYoiEp2C5wlzHbD3mxmmKfFu8yDmKAS00Vt3Al1JMoZMQ2tIQ142JoydLah8g/
UvsLxm95TawsyfyMN+TieAo8pC0sIEQtCyIQyq/9z+ybcmb4+iTzfBUMNLe0CmMv
HRuzlur6+Ssci6Ha1wU6k9wbLUG3mico9GD1Rl3wzWePERADTCVUBBOjRVovs8SR
Zy2vO/JrIgrLGVMNKjOItjYM9eBhj9JxYtwZ4P7B+yZs485oXpqIRU2VKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMf8ddLtQPO765HP31q5U7XAL2vvMB8GA1UdIwQY
MBaAFAJWN9SIjuAFjemtOnDELcRplpqZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9iMjk5MGQtNGM1Mi00MmZhLWI2Yjct
ZTBhNGE0ZjljYWJjLzEvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9iMjk5MGQtNGM1Mi00MmZhLWI2YjctZTBhNGE0ZjljYWJj
LzEvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI+Nlr0hu
TZFWL3KkJUSFFmEv+LsDAAlVLvdhS2G1qo996Ta5yf1NUqKFnuhs3+PHwbeERAqe
BOM4dpgYRIrtcJiLg/PXohiDCvNzT4CpYjIqcgDnINb1YOTmeemp2/+zeiy4tLdM
eP/ts1mNmHXlw910DgZ422xKL2RKAK+Gf8wFJsHYQYaDpJe8NxhAA1A1V1FT9gGo
tYdelEQxb+L3q3qH9Vsxx7anzu3lerHSZ5BkrJE5QBax7ZzYtfSlFi3tYtvyNTrF
QykNK4Ff2UjsMUzh3nnP7ubCADXWzYrxsjvaFhKb+TbSQtqZ0U+1t2pEVhEVQ8tl
AJlKIsKxxhidHw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:03:45 2025 by rpki-client