Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json)
Hash identifier: aZAeDoRo/59LooBh78IvuZ8l3HDJGQf6aBTyqZ71J4k=
Subject key identifier: 19:D6:E7:E4:5F:F9:95:66:29:F9:35:F5:71:80:DD:F3:8A:AF:6B:17
Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Certificate serial: 019679EA2B6174C9822F01BFF3CE5ADF3BB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
Manifest number: 150D
Signing time: Mon 28 Apr 2025 01:01:51 +0000
Manifest this update: Mon 28 Apr 2025 01:01:51 +0000
Manifest next update: Tue 29 Apr 2025 01:01:51 +0000
Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: Ysq1G4wOoa6cM9TKVoWH6vp9GYNWJezswN7lLErsVek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:ea:2b:61:74:c9:82:2f:01:bf:f3:ce:5a:df:3b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Validity
Not Before: Apr 28 01:01:51 2025 GMT
Not After : Apr 29 01:01:51 2025 GMT
Subject: CN=19d6e7e45ff9956629f935f57180ddf38aaf6b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5a:b0:96:a5:aa:f0:d3:be:dc:f7:60:cc:a0:
29:f5:4e:fa:53:ad:6c:c5:e7:c0:ad:6e:60:a9:f8:
62:86:8d:1d:e7:7e:55:50:a5:2f:60:87:7d:55:89:
09:0f:2b:72:77:05:da:27:aa:0d:09:df:81:c1:41:
fb:3d:82:69:50:8b:d4:f6:c8:e1:6e:14:c8:0d:fe:
ee:bf:e6:fb:bb:89:fc:06:3e:fb:cc:c9:53:02:24:
91:11:1d:e5:4f:26:eb:73:71:42:c7:07:26:d0:9d:
ea:04:dd:23:5c:a4:b1:63:0c:ae:34:4c:76:ab:6a:
75:83:f3:cd:bf:92:56:2b:53:cd:7c:93:ef:5f:45:
4f:26:c3:38:74:a8:c8:af:46:1a:82:1f:51:47:9f:
15:89:1b:68:a0:68:11:26:18:d9:96:a6:60:d0:be:
af:4e:fe:cb:d8:65:f2:d7:ff:46:eb:5c:b8:81:ce:
6b:f9:4a:58:1e:4c:56:1e:37:b3:de:db:52:b8:f5:
99:d8:a6:c0:e2:c7:3b:3d:39:f7:32:a6:ab:7a:9e:
03:25:c6:07:fa:a5:3c:44:0b:a8:80:4e:94:e2:fd:
29:c0:04:0a:aa:c3:56:1b:75:4d:b2:a8:e4:0a:16:
01:c0:4b:ed:2b:de:f8:e8:85:b0:16:d2:3a:db:23:
30:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D6:E7:E4:5F:F9:95:66:29:F9:35:F5:71:80:DD:F3:8A:AF:6B:17
X509v3 Authority Key Identifier:
keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:dd:20:13:0f:2d:2d:10:d3:f5:ce:66:d6:e0:6a:b9:e5:d0:
fc:d2:63:2b:c6:b4:30:53:0b:a1:22:79:e8:84:52:52:17:88:
0e:47:2d:3c:d4:85:05:1c:af:f0:49:8f:cc:cb:ae:f4:55:3a:
a2:4c:8b:6a:77:5f:ac:1d:3d:0b:d8:68:39:ce:6f:fb:f6:0b:
4b:5c:97:50:0d:d9:26:9a:da:30:b0:48:30:22:ef:75:f8:a1:
ec:fe:c4:ea:d7:bf:c6:99:0c:c8:97:e6:b5:e8:3a:5c:fa:ac:
e8:62:12:18:ee:cc:cc:6d:fc:ec:87:ca:ca:2a:42:b0:1f:ab:
23:6d:8b:78:78:a4:79:b1:d1:eb:3e:ec:91:66:ae:6f:30:a5:
67:12:52:07:f0:76:af:18:82:b7:7b:74:5b:bf:51:f1:09:5f:
f5:7e:dd:cb:31:a1:8e:09:f1:54:ea:aa:3d:87:60:9f:59:15:
c2:a6:e5:69:3f:ca:df:4d:89:39:c5:6d:f3:51:9c:6a:e8:d9:
04:37:a5:f8:3c:f9:06:82:8d:6f:4a:1a:6d:1a:2e:0d:c9:19:
60:82:a0:32:5e:70:e9:8c:5f:a0:be:b9:5e:24:3f:c9:e9:09:
b7:46:f7:05:d8:fe:75:e3:df:d6:41:21:c7:86:22:b5:7b:c8:
20:42:b2:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 05:32:42 2025 by rpki-client