Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: /ThOQS2ybW9wzMsHWQb9SUp/77BT1HmYPEag4CVgBEI=
Subject key identifier: 71:4F:0B:0B:58:5F:12:45:A9:D3:8B:17:FB:15:D2:26:F9:F8:97:3E
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 019882B05CE42A9A1D2A979A97D20E4BA3F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 09E1
Signing time: Thu 07 Aug 2025 04:00:52 +0000
Manifest this update: Thu 07 Aug 2025 04:00:52 +0000
Manifest next update: Fri 08 Aug 2025 04:00:52 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: hOe9a/9wkjthG/HmPqk+iHHNxgCEw35Kpzlsdr2tNKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 04:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:b0:5c:e4:2a:9a:1d:2a:97:9a:97:d2:0e:4b:a3:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: Aug 7 04:00:52 2025 GMT
Not After : Aug 8 04:00:52 2025 GMT
Subject: CN=714f0b0b585f1245a9d38b17fb15d226f9f8973e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:88:47:c2:dd:09:14:5b:76:f7:c7:92:b6:d1:
3c:ba:6c:4f:67:fd:a5:29:bd:05:c2:04:ab:23:eb:
74:2b:5c:ee:8b:c4:0f:61:37:0d:57:e9:d2:73:0a:
83:ba:a0:1d:14:f6:2d:7b:57:0b:15:36:06:3a:cc:
d9:a3:70:f1:77:0d:57:ef:a8:d4:c9:5c:1a:95:b8:
40:b0:1e:38:ff:4c:f0:45:e4:01:d3:8a:50:e0:93:
d0:44:ff:70:03:16:94:4a:e2:25:3b:e1:d7:e2:de:
d5:c9:76:d3:42:fb:e6:53:28:37:c7:eb:0d:af:cb:
7b:2b:03:43:2e:ba:79:47:0c:f7:06:df:e3:0b:44:
33:dc:cc:ee:3e:bd:83:26:f0:d0:a6:18:6b:50:dd:
0c:94:0f:cf:91:90:f7:0a:98:07:9d:59:b8:54:be:
73:0b:d1:a0:e7:92:a8:36:4d:02:df:e3:7c:ca:a8:
96:5a:4d:32:91:df:44:38:67:87:5a:0a:06:b1:c8:
a9:89:e4:2d:ab:28:a6:aa:be:87:96:dd:7e:b3:0b:
83:32:eb:bf:0b:74:ff:ac:4e:d6:79:e4:91:3b:96:
59:aa:29:60:db:25:81:7f:86:c9:f5:f3:83:d6:7d:
9a:e2:09:fd:95:c0:ad:9d:c0:f0:6b:c2:6b:64:42:
8a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:4F:0B:0B:58:5F:12:45:A9:D3:8B:17:FB:15:D2:26:F9:F8:97:3E
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:fa:0c:22:dc:8c:f5:39:ad:f0:4c:3c:8f:cc:4e:e4:fe:85:
1f:9d:f6:89:2a:5d:bf:cd:fc:cf:59:88:aa:77:15:12:16:2e:
8f:d1:93:a1:09:f4:1b:48:63:3b:e8:40:fa:4f:a0:9b:1f:ca:
f0:c6:39:ef:20:d6:93:49:aa:cf:85:9d:11:2d:8a:22:f8:eb:
7d:2b:93:85:b4:36:a6:e8:c2:5b:d8:c3:3b:f8:c6:d1:96:84:
5e:ed:6f:6d:82:ee:e4:5e:50:33:d9:7c:f8:46:85:b7:93:33:
b6:e6:5f:5d:7b:17:bf:45:97:37:e7:b5:9a:6d:39:a1:eb:c2:
71:47:b4:c3:51:0a:4b:5e:f2:a0:1a:4c:00:6c:cd:fe:2e:a0:
8f:d2:aa:df:eb:18:59:ee:a7:9f:72:50:d0:2f:1f:15:38:95:
e0:53:f8:9c:53:3e:3a:bd:70:71:70:e5:f3:e2:b1:d2:e6:5a:
6b:bf:6d:d9:9e:f8:72:5d:e1:da:00:83:cb:ec:96:ae:c6:14:
3e:4a:53:f1:cc:04:b7:22:6c:5f:b0:91:45:85:e1:4b:c1:c1:
a7:76:e4:dc:70:7c:30:c4:8f:b9:6d:5d:38:67:c6:53:6e:d1:
98:18:5b:be:78:b2:bd:84:60:5c:be:53:1d:0f:fd:72:d2:fb:
b4:f5:8e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 11:07:17 2025 by rpki-client