Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json)
Hash identifier: ZDcXmUOxbz8sF3i7oM5JXCYYEtkWn+VWS+OId1tDb2w=
Subject key identifier: AE:03:E1:E7:B5:F1:86:55:20:82:3A:C4:AB:51:F8:35:C5:B5:87:11
Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Certificate serial: 01977AC2F1342A09CF0A39BDD9475F5526BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
Manifest number: 1592
Signing time: Mon 16 Jun 2025 22:01:25 +0000
Manifest this update: Mon 16 Jun 2025 22:01:25 +0000
Manifest next update: Tue 17 Jun 2025 22:01:25 +0000
Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: 9yR3Z5gV3TtdO6UF+UCTKF6Syyh2/9LhkGoKeS7Q1kA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 22:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:c2:f1:34:2a:09:cf:0a:39:bd:d9:47:5f:55:26:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Validity
Not Before: Jun 16 22:01:25 2025 GMT
Not After : Jun 17 22:01:25 2025 GMT
Subject: CN=ae03e1e7b5f1865520823ac4ab51f835c5b58711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5f:98:ba:66:75:18:e9:9f:60:89:e3:03:36:
52:66:c5:68:92:55:6a:04:16:78:32:a5:ab:ed:7b:
26:7a:95:cb:a9:cb:4d:38:58:29:04:43:2d:51:39:
4c:52:cf:ee:27:b0:c8:de:7e:d4:1a:b8:96:c3:f7:
62:34:3a:35:27:3f:06:a6:6a:37:b5:1c:02:2e:83:
ff:d7:44:76:12:ba:d1:bc:3a:f9:a8:16:8c:98:45:
e8:14:0b:a4:b8:8d:8a:3d:89:54:cd:86:f6:e8:e8:
d2:45:0f:25:4d:eb:99:f3:30:ab:e9:f0:18:db:83:
64:e3:58:4e:1f:f9:fa:f9:d1:29:06:24:70:f1:3e:
1c:68:a9:ee:7f:e0:29:9b:c6:24:ee:96:23:97:98:
06:5f:45:8a:62:85:67:20:eb:0d:5d:9b:ea:e1:31:
ce:d1:bb:79:87:95:1f:ae:88:ac:31:9f:29:88:36:
e9:6f:5c:54:6f:e7:98:15:e5:36:d2:5a:b7:20:01:
a3:09:27:42:43:7d:3c:51:bc:31:77:bc:d0:2f:13:
0f:83:be:20:e9:62:3f:d4:48:ac:34:2d:19:a4:4a:
9e:d4:27:69:dd:14:db:02:d9:a7:00:74:8b:ed:74:
1b:46:b5:ef:f0:d7:93:18:f0:78:1b:2e:04:56:95:
41:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:03:E1:E7:B5:F1:86:55:20:82:3A:C4:AB:51:F8:35:C5:B5:87:11
X509v3 Authority Key Identifier:
keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:ae:93:23:68:e0:19:b1:88:a7:54:0a:2d:ac:ea:2d:c8:46:
5b:91:5f:8a:27:6e:66:a0:38:92:80:b6:68:2b:c8:09:bf:7a:
ac:db:92:2c:96:35:b1:c9:c1:d9:39:14:67:8f:7e:5f:08:fc:
6a:dd:7d:72:28:68:7a:6b:18:c0:87:30:0f:4e:ad:c6:9c:e3:
a9:dc:3d:db:c8:cb:f1:3f:1a:07:ce:d4:2c:26:93:8f:d7:a3:
ef:c2:aa:3a:7d:48:e7:cd:46:56:67:ec:64:02:04:54:fd:57:
03:b3:21:51:6e:4e:e0:73:46:b3:ef:ad:20:12:bd:bb:71:c4:
56:ae:ed:fa:e7:ea:29:b5:b1:b1:0c:77:4e:cb:8b:e0:77:f7:
2a:95:1e:9d:94:56:20:08:09:fc:a9:55:5d:94:f6:62:d5:36:
ba:3b:58:e3:0c:ee:50:6b:dd:8b:f5:d2:41:c7:f0:69:a2:48:
8a:de:e3:9c:ab:99:4e:dc:18:0c:23:86:46:7f:e7:d4:d1:bb:
ae:26:ae:f4:38:7a:9e:e9:b8:32:c9:ea:3c:7e:82:37:97:b3:
37:96:70:4e:64:e0:18:3c:8d:c3:7c:8b:91:b2:81:15:8c:b2:
f0:41:4b:f8:31:25:ae:9a:60:09:4b:97:19:f6:a9:c8:6d:96:
d0:d8:a2:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 08:09:26 2025 by rpki-client