Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: ANh305278mwHdlGuporUjTKVMX+kS+9K0qzi9ftnimA=
Subject key identifier: 39:06:C8:1C:1B:E3:AD:E1:45:52:11:2B:75:9C:A5:AB:78:C3:D2:CA
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 0196756758875639663D17178DE6490645EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 150F
Signing time: Sun 27 Apr 2025 04:00:29 +0000
Manifest this update: Sun 27 Apr 2025 04:00:29 +0000
Manifest next update: Mon 28 Apr 2025 04:00:29 +0000
Files and hashes: 1: 8b2Sz4cL93cXk3-Io7s2vbwBznU.roa (hash: OdYsHSgXYM8f8BmJb0rgKjd3SquS1uJD7loVl2Lg/xI=)
2: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: zvqieHxy6ykEuflpqRft9DGCeUteRNrCNHBHYG57mrQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:58:87:56:39:66:3d:17:17:8d:e6:49:06:45:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Apr 27 04:00:29 2025 GMT
Not After : Apr 28 04:00:29 2025 GMT
Subject: CN=3906c81c1be3ade14552112b759ca5ab78c3d2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:63:9c:21:25:b1:4b:1d:82:b7:38:b2:cb:1a:
92:9f:85:24:38:63:4e:c7:f0:3e:ad:77:a3:bd:1a:
33:b2:ce:35:30:06:e3:44:77:d8:b5:f6:1e:f6:03:
86:f7:94:98:27:3a:68:f3:40:ee:92:12:e4:f0:ec:
4f:2c:2f:ab:06:08:2f:85:a4:96:b6:3c:05:91:c2:
12:8b:71:f0:40:e1:8d:77:a2:9e:db:29:0c:78:59:
1c:97:ee:28:ef:42:61:4b:81:82:40:a6:3a:02:8c:
cb:6c:46:83:f9:77:b6:18:06:d8:1a:b9:bc:3b:87:
e5:30:a0:d0:60:6a:75:c6:05:b5:23:4b:a3:a4:63:
c1:ca:62:f2:81:1e:fb:15:26:1a:65:e6:41:45:7e:
d1:f2:77:af:55:a4:38:ba:ad:0e:30:ef:50:d4:08:
7c:f8:ef:3b:fb:2c:9f:90:2f:96:5b:b9:90:bd:45:
6f:9c:61:18:31:35:5d:fc:bd:76:eb:d1:01:63:b4:
69:80:63:ae:00:08:03:cb:b8:a1:92:d9:c3:0e:e0:
fc:06:b3:18:ba:98:df:84:f4:87:e0:78:e4:ca:98:
7b:d3:ce:8b:0d:d2:15:14:1a:61:08:35:4c:79:2d:
6d:63:4b:8e:5f:52:d9:cd:08:df:78:ac:59:47:bb:
50:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:06:C8:1C:1B:E3:AD:E1:45:52:11:2B:75:9C:A5:AB:78:C3:D2:CA
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:87:26:56:4f:11:c1:86:c0:89:19:ce:35:41:fa:98:0a:a5:
c2:e6:9f:68:dc:57:31:af:2d:32:ba:77:94:08:b4:e1:48:05:
79:48:e5:9c:3c:13:b9:a1:a0:94:ad:c1:c6:49:39:c6:26:1f:
35:c3:8b:37:4e:3b:ab:d9:8f:ef:01:e7:77:2c:37:b8:12:54:
60:1d:ea:a5:73:46:1c:a1:f9:ba:3f:44:a5:1e:1d:c2:78:32:
df:dc:e6:10:7d:41:45:23:2b:2b:09:f0:aa:cb:4a:c7:8d:87:
8a:df:90:10:67:d8:e4:62:c1:60:6b:0b:39:6a:c8:ba:bd:32:
cb:76:40:40:91:99:bb:0e:ad:50:5e:89:1e:b4:24:b3:e1:2c:
b0:81:91:83:59:e2:5e:61:fa:26:73:6a:68:74:3b:5c:bb:77:
14:4a:dc:14:e9:57:c4:a1:78:96:cc:d8:33:35:17:6d:57:43:
85:cf:05:d4:25:f1:c1:21:8b:31:25:8e:f7:a1:ef:3f:c8:e2:
ca:74:5d:8e:e5:f4:af:75:a8:83:93:c5:2a:d5:67:3f:47:af:
e7:d7:2b:51:74:20:06:fc:50:6f:28:a3:3a:4b:9b:f5:78:b1:
65:f3:4b:e9:4a:1c:19:12:a1:54:2f:ab:bb:0d:6e:d3:be:b6:
49:e5:92:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:41:56 2025 by rpki-client