Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: rkYaay2/3uJYtb5VKkzM6iFwsOYn0HqrNl0Awq4153U=
Subject key identifier: DE:79:83:9A:A4:EB:45:21:55:2C:E2:63:4B:02:C0:52:54:3D:11:BB
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 0198752BFF99FF4848FC4D1D8DFB30F4231B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 13:01:14 +0000
Manifest this update: Mon 04 Aug 2025 13:01:14 +0000
Manifest next update: Tue 05 Aug 2025 13:01:14 +0000
Files and hashes: 1: 8b2Sz4cL93cXk3-Io7s2vbwBznU.roa (hash: OdYsHSgXYM8f8BmJb0rgKjd3SquS1uJD7loVl2Lg/xI=)
2: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: HjJCS/I0SWopaLGF+t3x0x2meac6Nu34BmVomilkZkA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:2b:ff:99:ff:48:48:fc:4d:1d:8d:fb:30:f4:23:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Aug 4 13:01:14 2025 GMT
Not After : Aug 5 13:01:14 2025 GMT
Subject: CN=de79839aa4eb4521552ce2634b02c052543d11bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c9:56:f2:61:d5:fc:59:a6:c2:29:dc:ca:8d:
fc:68:c9:2f:0e:ea:35:95:93:b9:62:bd:93:8e:23:
40:a1:ca:2a:eb:67:8a:cd:71:ce:7e:ba:10:63:e6:
ed:bc:3c:e6:57:4c:2b:b6:76:4c:04:50:4c:00:11:
d4:7f:ec:e7:0d:0b:04:2e:02:88:d2:73:f8:c1:c7:
79:6c:7e:13:8f:06:f9:3a:df:d7:fd:7a:31:8b:fa:
b9:26:06:4f:f8:9b:c0:b8:89:40:76:75:5b:41:9c:
cd:e6:c5:72:93:91:0c:8a:b5:7d:55:60:7b:6c:5d:
99:f2:1b:04:8e:1f:3a:53:8a:d8:8d:5f:26:fe:20:
80:47:bc:fe:38:48:ca:e1:65:3e:12:0a:7b:04:0c:
55:a0:21:d2:13:e7:81:fa:3e:30:02:84:df:e5:0b:
4e:87:ac:45:4f:68:4a:85:44:1a:f9:5e:c9:61:30:
06:36:9c:3d:14:b3:5f:1a:97:5e:8e:60:01:d1:e7:
06:04:35:f6:b6:a6:6a:3f:7d:ee:31:b8:78:5c:07:
08:f4:5c:18:89:87:2f:dc:e6:54:3a:1e:a8:1b:86:
e8:b2:ce:5a:85:45:10:b0:87:1d:32:50:19:93:4b:
d4:52:89:c5:26:83:3d:bc:af:29:2d:69:68:bf:5f:
5a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:79:83:9A:A4:EB:45:21:55:2C:E2:63:4B:02:C0:52:54:3D:11:BB
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:cc:f1:8c:9d:aa:45:9c:92:f9:dc:64:ba:04:4c:cb:89:2f:
78:90:a2:78:03:43:cf:55:e7:6d:f4:b3:6e:24:4a:84:dd:ab:
07:d1:40:73:40:e1:dc:52:27:f5:4d:2c:a3:91:93:b4:6a:94:
4a:fc:c7:68:b9:1d:2f:bc:40:ee:d0:c1:fa:a4:67:f9:24:22:
f3:91:79:fe:54:c5:d8:09:e9:70:43:40:24:46:5f:35:af:07:
b1:b2:9e:d5:cd:5b:a3:7c:b9:ab:1f:00:e3:35:12:44:30:fd:
40:a2:4d:f5:ad:10:f7:71:89:4d:bb:a9:c8:b7:1a:0f:86:1d:
4c:5e:66:df:d9:15:22:a4:9e:74:a7:71:84:94:ab:98:6f:50:
07:1a:9d:e8:4a:24:ba:8e:58:c0:0f:f9:03:98:57:84:91:7c:
92:d4:a2:69:bc:db:04:9b:4f:04:08:71:dc:38:5d:28:7f:4b:
53:7c:75:1d:fd:6f:1b:67:59:5b:2b:98:2f:a3:fe:59:99:2b:
db:0a:7f:dd:f5:bb:9b:8e:bb:e2:36:2f:45:68:a2:cd:23:09:
b0:28:bb:90:5f:34:71:38:5d:65:9b:17:d6:5b:8c:d3:46:8d:
1e:af:c9:a7:c8:b6:9d:6f:44:ea:e4:4f:33:29:c8:c4:e6:98:
4e:dc:25:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:58:01 2025 by rpki-client