Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
File: r7ALKTlueAM-26yv75hQsbDjUyM.mft (raw, json)
Hash identifier: 3OWpfuqTYJBmQ9dGdya292Jsrqo44rNTSBwRDvHPkdg=
Subject key identifier: CA:E8:12:03:94:92:D2:14:D4:7B:26:11:39:60:62:4E:55:D7:D8:A9
Authority key identifier: AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
Certificate issuer: /CN=afb00b29396e78033edbacafef9850b1b0e35323
Certificate serial: 019784339960C105A22B3BFF214D57E7A4AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
Manifest number: 0E48
Signing time: Wed 18 Jun 2025 18:01:03 +0000
Manifest this update: Wed 18 Jun 2025 18:01:03 +0000
Manifest next update: Thu 19 Jun 2025 18:01:03 +0000
Files and hashes: 1: CY3YIBeeXy7d304leRk_84B6aOw.roa (hash: a5cqctkZKmbgtiXrSitwhHqbpFExqVK4hQecaTEUPK8=)
2: r7ALKTlueAM-26yv75hQsbDjUyM.crl (hash: EudF6hsfmDig91lla1MRITqJM7kFnSjfene9U1CIMyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:84:33:99:60:c1:05:a2:2b:3b:ff:21:4d:57:e7:a4:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb00b29396e78033edbacafef9850b1b0e35323
Validity
Not Before: Jun 18 18:01:03 2025 GMT
Not After : Jun 19 18:01:03 2025 GMT
Subject: CN=cae812039492d214d47b26113960624e55d7d8a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:09:9e:81:d4:74:c8:8b:49:87:55:f6:96:82:
79:bc:46:d4:f4:0f:22:f1:2a:7c:2b:af:85:83:34:
94:45:d2:cf:f6:1c:86:29:2b:57:e6:24:b7:3e:25:
ca:77:cd:43:7d:65:59:87:5f:45:66:15:41:4f:f0:
5a:79:19:f1:09:85:4a:0d:76:be:b8:b5:02:54:a6:
68:55:33:ff:56:ad:f4:49:f2:1c:7e:2b:1b:2a:7f:
e3:a8:ad:2b:94:61:8f:a9:b6:36:d3:47:82:ed:49:
2c:d4:b8:c2:8d:29:d3:2f:d7:a6:9e:e2:c0:1c:d9:
5e:6f:1f:1b:ee:b8:2d:6c:42:3b:b6:16:9a:05:41:
65:37:7c:a0:c8:be:18:d6:39:3b:ec:ae:47:ec:d3:
e5:88:9d:67:e9:9a:14:6b:f6:d8:81:45:0f:ca:9e:
35:24:d0:f7:d5:82:6a:9f:72:d4:fa:30:d3:5c:42:
77:fa:dd:cb:05:ce:10:a5:53:30:b3:a1:df:10:4c:
3a:44:da:5e:34:f0:96:60:ea:c8:d0:16:71:8c:b9:
ba:f1:0a:f8:fc:be:03:08:0a:05:ed:e3:e9:7d:09:
e0:b7:13:af:cd:92:01:4a:bf:73:51:aa:a7:e5:e8:
91:a9:bf:41:91:7e:8a:b6:e7:8a:64:d6:89:aa:2d:
05:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E8:12:03:94:92:D2:14:D4:7B:26:11:39:60:62:4E:55:D7:D8:A9
X509v3 Authority Key Identifier:
keyid:AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:73:80:41:8d:ca:a2:e2:55:c3:2f:94:c6:84:cc:4f:27:a6:
e2:33:d1:48:82:2f:2f:a7:d1:5e:72:6d:ce:d9:ef:22:ab:df:
93:1f:5f:e5:49:56:92:d2:6b:a6:b4:31:4b:a1:29:2a:3c:ac:
4f:61:66:a0:6c:8a:08:6f:30:b8:f2:0f:b1:92:2f:6f:45:7c:
c8:43:3f:70:1c:27:6f:25:4b:13:0c:d1:a0:16:75:5e:9a:54:
bb:22:0d:79:8c:fc:fd:87:08:15:61:f2:bf:65:95:0e:ef:dd:
d0:4e:bb:6f:6e:ef:f4:51:b6:75:61:cc:0f:49:3e:c3:01:4d:
1d:79:37:cd:10:5f:9f:78:49:e4:06:b7:1e:d4:ab:58:18:bc:
b7:3e:35:20:3a:9a:d4:b2:aa:05:a9:10:f5:6d:56:2e:1c:98:
8c:62:63:25:09:6c:5c:71:d8:ca:0c:58:60:32:ad:6a:97:2f:
f0:2e:6f:4e:9f:18:99:71:c1:f3:c6:6e:f9:88:8b:f9:ac:0b:
37:98:14:3d:12:05:b4:31:ea:b4:59:21:70:2a:8a:50:ee:2a:
4d:6e:2a:a4:47:2e:bb:a1:22:40:cd:1e:2d:a6:7b:3a:a0:19:
7f:ae:3d:bd:4d:1e:8b:76:12:01:cc:c5:fb:2c:91:d3:d7:c9:
de:1a:84:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeEM5lgwQWiKzv/IU1X56SrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYjAwYjI5Mzk2ZTc4MDMzZWRiYWNhZmVmOTg1MGIxYjBl
MzUzMjMwHhcNMjUwNjE4MTgwMTAzWhcNMjUwNjE5MTgwMTAzWjAzMTEwLwYDVQQD
EyhjYWU4MTIwMzk0OTJkMjE0ZDQ3YjI2MTEzOTYwNjI0ZTU1ZDdkOGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowmegdR0yItJh1X2loJ5vEbU9A8i
8Sp8K6+FgzSURdLP9hyGKStX5iS3PiXKd81DfWVZh19FZhVBT/BaeRnxCYVKDXa+
uLUCVKZoVTP/Vq30SfIcfisbKn/jqK0rlGGPqbY200eC7Uks1LjCjSnTL9emnuLA
HNlebx8b7rgtbEI7thaaBUFlN3ygyL4Y1jk77K5H7NPliJ1n6ZoUa/bYgUUPyp41
JND31YJqn3LU+jDTXEJ3+t3LBc4QpVMws6HfEEw6RNpeNPCWYOrI0BZxjLm68Qr4
/L4DCAoF7ePpfQngtxOvzZIBSr9zUaqn5eiRqb9BkX6KtueKZNaJqi0FoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMroEgOUktIU1HsmETlgYk5V19ipMB8GA1UdIwQY
MBaAFK+wCyk5bngDPtusr++YULGw41MjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjdBTEtUbHVlQU0tMjZ5djc1aFFzYkRqVXlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9lNGNhNTYtMTM4Ni00MzJjLTk2Y2It
NjVhOWE0ZGZhZDllLzEvcjdBTEtUbHVlQU0tMjZ5djc1aFFzYkRqVXlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9lNGNhNTYtMTM4Ni00MzJjLTk2Y2ItNjVhOWE0ZGZhZDll
LzEvcjdBTEtUbHVlQU0tMjZ5djc1aFFzYkRqVXlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD3OAQY3K
ouJVwy+UxoTMTyem4jPRSIIvL6fRXnJtztnvIqvfkx9f5UlWktJrprQxS6EpKjys
T2FmoGyKCG8wuPIPsZIvb0V8yEM/cBwnbyVLEwzRoBZ1XppUuyINeYz8/YcIFWHy
v2WVDu/d0E67b27v9FG2dWHMD0k+wwFNHXk3zRBfn3hJ5Aa3HtSrWBi8tz41IDqa
1LKqBakQ9W1WLhyYjGJjJQlsXHHYygxYYDKtapcv8C5vTp8YmXHB88Zu+YiL+awL
N5gUPRIFtDHqtFkhcCqKUO4qTW4qpEcuu6EiQM0eLaZ7OqAZf649vU0ei3YSAczF
+yyR09fJ3hqEoQ==
-----END CERTIFICATE-----
Generated at Wed Jun 18 20:14:32 2025 by rpki-client