Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: ocB3Q5AdjnWkdwfCdc475yHzvj+41pQLEjRmP51VA+k=
Subject key identifier: 29:04:52:99:BC:FE:E9:16:01:B9:9A:3A:62:09:84:27:60:D5:7E:D6
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 019768BBAE9DAA11CAA9F96F46E4FC3A5898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 158D
Signing time: Fri 13 Jun 2025 10:00:19 +0000
Manifest this update: Fri 13 Jun 2025 10:00:19 +0000
Manifest next update: Sat 14 Jun 2025 10:00:19 +0000
Files and hashes: 1: 8b2Sz4cL93cXk3-Io7s2vbwBznU.roa (hash: OdYsHSgXYM8f8BmJb0rgKjd3SquS1uJD7loVl2Lg/xI=)
2: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: PeK+j737qavFNj2pwy/79aiystK4nV6SmMVbEGDAAAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bb:ae:9d:aa:11:ca:a9:f9:6f:46:e4:fc:3a:58:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Jun 13 10:00:19 2025 GMT
Not After : Jun 14 10:00:19 2025 GMT
Subject: CN=29045299bcfee91601b99a3a6209842760d57ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d5:25:83:97:a1:09:66:6f:c3:20:97:df:69:
c6:8a:1a:93:b0:cf:1b:d4:9c:dd:06:f2:df:9c:33:
3f:84:77:41:33:7b:b9:04:09:fa:1c:27:e7:46:03:
4d:fc:cb:30:74:7e:ee:d6:db:9e:f8:c6:0c:8d:cc:
d3:ba:6d:65:0b:b0:19:f9:b6:d8:66:96:e8:59:fa:
fc:ee:80:c6:13:ae:d4:04:19:d2:3c:18:89:fd:b7:
98:6d:10:92:21:67:59:46:3d:7d:0a:65:fa:a4:98:
fb:f0:34:84:1e:1a:25:ba:fd:f2:13:03:13:78:37:
8f:92:d9:9d:aa:31:a4:d0:15:ef:d5:5c:f3:87:ab:
e9:60:35:4b:c0:45:4e:fb:60:d8:53:cf:14:ab:22:
46:3b:d2:bf:78:04:d0:ba:f3:35:b5:db:0c:e2:14:
70:6b:13:07:27:c5:ac:be:f0:91:ac:dc:6a:21:fe:
6d:61:ee:23:37:a5:d9:f1:5e:ae:21:4d:45:3e:a5:
a7:4b:aa:95:43:22:d7:b5:34:02:2b:6b:d1:87:a8:
0e:b7:86:88:a9:0a:b6:0a:31:d7:13:9a:23:8a:d4:
74:8a:8c:72:41:3f:46:68:bf:7d:7e:b5:0f:60:38:
aa:c6:a7:b3:14:18:61:53:90:f7:88:58:4d:93:db:
ea:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:04:52:99:BC:FE:E9:16:01:B9:9A:3A:62:09:84:27:60:D5:7E:D6
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:25:ed:6a:67:a6:32:56:f0:39:ec:8c:24:40:d5:5c:bb:a8:
f6:a3:81:9f:50:3c:aa:02:14:53:02:d2:40:23:7b:37:1b:a9:
a6:bc:2d:6e:ec:5f:cd:00:61:fe:f3:fb:86:24:e8:b6:73:3b:
a0:f2:d8:03:01:95:56:32:57:29:13:f0:ff:f1:ae:67:9a:3a:
be:f1:da:63:52:25:6e:e9:4f:db:94:82:31:c4:04:43:cb:0e:
a9:4b:45:f7:70:ce:35:b6:93:ce:9b:51:ac:41:6e:a3:44:bd:
9f:7d:41:2d:17:4f:59:8f:e1:f4:87:0e:55:2e:eb:5e:4a:92:
35:fc:d0:d7:f3:56:d7:84:f4:bb:91:cc:98:90:1a:37:2a:b8:
fb:d1:5f:c8:72:6f:17:f4:e5:70:8c:bf:c4:7d:28:de:7e:87:
c7:d2:12:7e:7c:c7:58:af:94:ac:d4:df:a8:cd:f7:a0:74:0d:
a2:83:c4:0f:e4:c6:7c:b9:33:14:8b:4c:f7:a3:3c:d8:b0:d9:
28:9d:82:c6:d0:0f:0f:9a:60:9d:01:d6:f0:b2:eb:3c:4b:eb:
37:45:0a:d9:6c:b8:c6:e8:da:70:a8:a6:40:2b:44:37:a7:39:
c5:a0:c1:cc:71:ac:b7:ec:2d:8b:74:8b:92:f4:f1:50:61:f7:
6d:e4:55:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 18:56:58 2025 by rpki-client