Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
File: aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft (raw, json)
Hash identifier: gMHne+uoWdJBYpMrhX0PVetF1jz2bJ4UtdH+D83HeO4=
Subject key identifier: 85:0F:8D:9C:D1:2B:8C:33:EE:C3:C7:6A:98:FB:33:14:DF:0D:8F:0D
Authority key identifier: 68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA
Certificate issuer: /CN=6809515d093644678703c024d92014c532f316ea
Certificate serial: 01987C780FECF5AD94EFCA8F5A5B15EE3AB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
Manifest number: 121A
Signing time: Tue 05 Aug 2025 23:01:39 +0000
Manifest this update: Tue 05 Aug 2025 23:01:39 +0000
Manifest next update: Wed 06 Aug 2025 23:01:39 +0000
Files and hashes: 1: aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl (hash: gXYod76GcCrShUlTV48MSpIUJeUiLXG8gIlbK6ZmlyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:78:0f:ec:f5:ad:94:ef:ca:8f:5a:5b:15:ee:3a:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6809515d093644678703c024d92014c532f316ea
Validity
Not Before: Aug 5 23:01:39 2025 GMT
Not After : Aug 6 23:01:39 2025 GMT
Subject: CN=850f8d9cd12b8c33eec3c76a98fb3314df0d8f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d5:d2:0b:3f:e2:57:44:46:fb:77:35:8d:9d:
be:9f:78:9d:95:0a:ed:4f:28:ea:48:fd:35:b5:fa:
95:b0:a1:e0:e4:5f:a5:bb:e3:51:8c:c3:44:ca:29:
d8:d9:82:67:de:77:b4:13:50:63:dd:86:46:04:80:
12:a5:e8:32:4d:68:51:b1:d2:53:cc:a0:29:8e:58:
87:0b:0f:5e:0c:c1:fc:56:a6:56:f4:c8:c4:0e:5d:
d1:80:70:17:a7:c3:22:ee:d3:76:e6:c3:1f:42:ef:
ac:1d:d3:17:c6:1c:d7:e8:72:d6:b2:95:b9:c0:83:
04:6c:81:7b:4d:1a:8b:1f:67:b8:39:97:02:52:7d:
e4:3b:12:ba:dc:15:5e:bc:40:d8:97:54:64:49:52:
2e:a5:5d:2a:25:c4:35:53:91:ca:c9:1f:6b:d1:76:
19:4d:00:ed:e7:0f:c8:52:85:5b:8d:a1:88:99:96:
92:7d:e5:5a:3f:5f:de:f5:bf:18:ec:aa:1d:44:71:
32:fe:7f:3a:da:70:24:a2:f5:d4:b2:8b:02:f9:95:
bb:1d:7e:ee:ec:ce:4c:8b:23:f6:27:18:51:5e:c5:
6b:bc:d1:4c:ec:f5:fe:eb:80:1e:83:ed:bc:b7:0c:
c5:92:ad:fe:46:b0:d6:72:15:d9:bf:74:5a:d7:6a:
9b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0F:8D:9C:D1:2B:8C:33:EE:C3:C7:6A:98:FB:33:14:DF:0D:8F:0D
X509v3 Authority Key Identifier:
keyid:68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:c4:73:97:7c:18:6f:98:11:bb:50:60:9f:5f:5b:34:44:31:
e8:5a:6b:f2:fe:7d:b1:9d:11:eb:4b:65:95:32:de:ee:cf:ba:
64:cd:db:02:31:4b:eb:17:71:f8:66:16:d1:ce:73:c6:9a:e6:
fd:6a:78:e6:96:46:ee:12:38:f0:98:56:c5:5c:81:09:aa:03:
e8:36:f6:aa:1a:be:96:e7:8b:93:ed:d0:98:c4:8a:b2:f7:ed:
6b:f4:6a:69:35:76:7f:55:95:c9:97:85:76:94:71:35:d4:4e:
a6:8a:44:c5:7d:fd:74:4f:b7:07:0c:0a:4d:62:dd:4f:88:b1:
22:d6:08:b5:18:2c:ad:f6:5f:19:af:75:8d:6d:64:8e:1a:86:
8b:bb:66:8d:85:ef:60:ee:b2:6a:5b:be:a4:19:7c:c7:c9:08:
a4:f9:d3:a2:6b:55:17:2e:95:93:e3:03:ce:91:28:f1:df:e4:
ce:53:a5:2b:65:28:95:bb:7d:4a:48:10:90:1a:ec:f0:27:69:
d5:d2:9c:8c:5d:af:ea:d3:82:05:0c:69:89:e5:36:c9:ec:43:
f3:9b:06:bc:c7:29:33:91:98:79:fc:5b:dd:8c:ba:75:e9:7f:
ca:4c:8e:93:8d:94:f7:f2:a1:7e:86:2e:10:e6:1c:65:06:d2:
1b:fb:52:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:29:09 2025 by rpki-client