Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: y3NQzdrbDRZxL2YJebhKGiv3XXZ0WTEtpz0zp255Ulc=
Subject key identifier: 8B:0C:CB:67:6A:45:24:BF:29:D6:B4:FB:29:76:C0:10:72:90:BC:C5
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 01976E86DE85376882EBDAF4AF7F05B2F3AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 0952
Signing time: Sat 14 Jun 2025 13:00:21 +0000
Manifest this update: Sat 14 Jun 2025 13:00:21 +0000
Manifest next update: Sun 15 Jun 2025 13:00:21 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: u2gmHhrZ2yNHS/7ByG/ZB00gkG/GZCEd2Laq+d+zLB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 13:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:86:de:85:37:68:82:eb:da:f4:af:7f:05:b2:f3:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: Jun 14 13:00:21 2025 GMT
Not After : Jun 15 13:00:21 2025 GMT
Subject: CN=8b0ccb676a4524bf29d6b4fb2976c0107290bcc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6d:6d:35:fa:c1:9b:0a:93:d8:1d:86:22:eb:
a8:68:17:e2:43:14:fa:c8:c7:77:0f:98:21:30:eb:
44:e4:f2:4c:2c:21:a4:25:89:07:5b:1b:c2:fb:ad:
0a:56:ee:7f:00:fd:46:8e:ee:8e:1d:54:f2:e7:10:
66:a0:e8:d5:63:7a:6a:31:be:73:0d:87:d0:c5:cd:
f7:5b:34:c2:8f:f2:74:78:6f:9a:c3:a8:e8:31:0c:
4d:5b:bc:fe:90:f0:8c:64:ca:9d:89:24:01:44:53:
e8:00:2a:32:1e:52:9c:90:65:87:18:d7:ae:26:3f:
58:0e:2d:57:c1:23:81:3d:18:fd:31:4c:49:16:3f:
6a:3e:f6:c3:f5:9a:4f:02:0d:68:88:e6:80:f3:2e:
5e:58:88:19:68:14:de:9a:bb:a1:7a:67:af:77:23:
8b:34:b8:f3:c7:9e:e4:f0:a4:87:d7:ee:6f:8e:13:
97:cb:7e:79:21:f2:65:ad:7d:4a:e4:24:fd:b5:86:
b9:c9:d8:80:2e:67:9f:03:6b:79:e9:78:8b:01:30:
3e:08:56:80:aa:d0:c3:1c:e6:54:00:c9:87:43:96:
ed:fd:ce:84:4a:bf:63:6a:76:56:e2:35:ba:33:80:
f0:1f:e7:57:20:de:bf:35:fb:ee:00:68:31:c4:77:
3e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0C:CB:67:6A:45:24:BF:29:D6:B4:FB:29:76:C0:10:72:90:BC:C5
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:2b:0d:b5:d7:27:98:18:9d:36:eb:a2:ff:a4:28:45:3e:18:
4e:be:87:91:18:f4:75:51:79:6a:7e:b4:69:ad:c7:62:02:b6:
59:83:a6:23:33:f8:0c:9a:2b:77:e3:18:9d:a3:98:e4:0a:36:
ce:e8:9e:68:35:72:b8:d1:87:f1:9d:04:b3:df:6d:dc:ed:29:
cd:01:21:d0:22:86:88:f4:ae:ec:fa:79:06:32:ad:4d:1b:87:
62:bb:c7:70:e9:71:dc:ec:1f:49:fc:56:f4:9a:4f:f9:89:5d:
e9:a5:e3:da:d5:35:d7:c4:e1:a7:0a:87:12:e3:14:97:37:49:
6b:b4:6a:a5:f6:23:b8:b3:60:8c:83:e9:0a:68:91:fd:12:79:
37:98:bd:68:db:e4:55:52:00:9c:74:45:8c:94:0e:1c:21:6a:
de:7d:76:57:36:12:40:77:4c:dd:4f:1a:5e:6b:33:71:a4:a3:
dd:86:b9:27:a2:b6:18:e4:c5:7e:41:bb:ff:f8:10:ea:6d:9b:
fc:2a:eb:90:d6:bb:92:bb:e2:c7:39:34:3b:09:ea:fd:e8:4e:
ca:60:3c:57:c1:15:0c:54:84:ed:c7:c9:25:07:97:3f:aa:95:
91:bf:88:73:70:a2:a4:1e:f1:fa:04:5a:17:0c:e0:9a:28:e5:
af:44:e0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:53:36 2025 by rpki-client