Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
File: 0AL76fCkE2A-3vtzOlMfLiwOnAY.mft (raw, json)
Hash identifier: OkBzBgIl/IzKFLBgWfkivZHEDv/ohnT+HMG3yqHdr1I=
Subject key identifier: 1F:A2:DC:DF:A2:03:4D:B4:FA:8F:F8:08:53:DF:8B:D6:B4:70:EC:E2
Authority key identifier: D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
Certificate issuer: /CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Certificate serial: 019771BF50F67606DC60AC3CEB7E8F6925A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
Manifest number: 1590
Signing time: Sun 15 Jun 2025 04:00:52 +0000
Manifest this update: Sun 15 Jun 2025 04:00:52 +0000
Manifest next update: Mon 16 Jun 2025 04:00:52 +0000
Files and hashes: 1: 0AL76fCkE2A-3vtzOlMfLiwOnAY.crl (hash: eA7sBOFdR2z6ZS7wnYODkrg8gzKU4jS8CjmOwOygAO8=)
2: _XUidn5LGX4qhZ_75ajbeYWe1Ao.roa (hash: b/pfq31DckGw+o1qBs5ugJl7vAflaGA+vdef1tZYmPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:bf:50:f6:76:06:dc:60:ac:3c:eb:7e:8f:69:25:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Validity
Not Before: Jun 15 04:00:52 2025 GMT
Not After : Jun 16 04:00:52 2025 GMT
Subject: CN=1fa2dcdfa2034db4fa8ff80853df8bd6b470ece2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:29:15:a5:88:5c:6f:8b:30:19:ee:58:a3:21:
fe:4f:b6:59:6c:3c:d5:dc:c7:5d:b1:71:b1:8e:61:
a3:f0:da:6b:ea:ba:b2:ca:b9:d8:57:ab:e7:a5:22:
1a:ac:74:9f:8f:68:32:80:af:c9:93:0d:c7:97:d7:
7c:95:3d:e2:1a:22:29:7c:d8:2c:fd:c4:72:d5:8b:
d8:e7:96:25:61:2b:5e:32:c7:2f:d2:c8:8a:6c:57:
3b:06:a3:88:b2:37:b1:db:02:10:cf:4e:64:5a:dc:
68:22:dd:ad:5b:6d:a4:a7:48:af:ac:e8:02:89:ea:
dc:84:1d:3f:c9:16:15:79:cc:54:eb:d7:a0:13:0d:
9a:d7:51:cb:b3:03:2f:0a:81:68:98:89:2f:7d:c4:
d3:0a:f8:d7:a6:67:a1:f4:c8:a1:a6:49:dc:d1:cf:
71:92:e1:40:ad:7e:ec:73:58:eb:f3:20:fe:fa:65:
b3:28:ae:4f:5e:6a:50:77:b9:41:30:13:97:5f:dd:
ab:b9:75:9a:8a:cc:45:56:5b:9e:fd:39:ec:57:2f:
84:14:fe:42:fe:e4:7b:e5:b2:62:6f:5f:56:64:56:
6e:a1:dc:6b:58:db:8f:c0:a1:5a:5e:5a:63:8c:a5:
d9:cd:90:90:30:d8:b8:80:39:bc:eb:65:2f:1e:49:
28:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A2:DC:DF:A2:03:4D:B4:FA:8F:F8:08:53:DF:8B:D6:B4:70:EC:E2
X509v3 Authority Key Identifier:
keyid:D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:92:a4:a5:b2:a1:a1:70:34:79:76:86:10:ea:53:ca:67:5e:
b6:3a:f6:e9:e1:12:c5:f0:f0:b7:15:b7:62:ee:f9:9c:b2:46:
f1:f0:75:a1:49:db:44:33:13:97:ee:fb:24:60:6c:2a:c7:b1:
4c:7d:ed:ec:7a:24:10:db:21:a1:82:1d:c2:04:93:6a:e2:40:
52:a3:41:21:07:73:72:e9:76:64:aa:87:90:0c:94:8e:8b:b5:
cc:23:54:55:01:5e:33:dc:93:cf:0c:08:c4:c6:f8:2b:43:70:
1b:f8:af:c0:d0:c8:4d:3a:88:57:fc:48:1c:25:04:a9:23:ac:
31:32:92:91:9c:91:8d:a0:94:30:7d:9b:1b:03:15:2c:52:8d:
4c:83:c7:28:5e:4c:2e:95:15:b1:4b:84:b9:07:2d:98:33:5f:
cb:58:eb:7f:2d:87:44:9f:ab:ac:53:1b:74:11:44:cc:f0:ea:
10:45:4c:c4:bd:a7:13:f7:90:5f:08:54:e3:32:6d:b4:7b:24:
e0:69:4c:32:40:ed:80:49:f8:56:25:ea:6a:c9:09:35:ed:6b:
b8:7b:8f:fe:c6:d7:7b:b5:89:8b:fa:36:6c:1f:9a:d3:41:47:
5d:a4:f6:80:68:33:f4:a7:c3:f7:97:45:4b:23:27:6f:e3:3d:
f9:5f:ac:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:37:04 2025 by rpki-client