Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
File: 0AL76fCkE2A-3vtzOlMfLiwOnAY.mft (raw, json)
Hash identifier: S7O6dKIpKPiiHGw80KX6padAiz9hkFy1Lgg3vbX447g=
Subject key identifier: 4D:1C:B0:FE:22:B4:47:34:41:6F:E2:1A:AE:6A:97:66:BB:DF:1C:86
Authority key identifier: D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
Certificate issuer: /CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Certificate serial: 01987298F6325BDF08D09E8D20685776F07C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
Manifest number: 1615
Signing time: Mon 04 Aug 2025 01:01:23 +0000
Manifest this update: Mon 04 Aug 2025 01:01:23 +0000
Manifest next update: Tue 05 Aug 2025 01:01:23 +0000
Files and hashes: 1: 0AL76fCkE2A-3vtzOlMfLiwOnAY.crl (hash: ZaUGSLc9aAJYxwezyLIbOrxeHJCZhfoGqOTP1++Dqn4=)
2: _XUidn5LGX4qhZ_75ajbeYWe1Ao.roa (hash: b/pfq31DckGw+o1qBs5ugJl7vAflaGA+vdef1tZYmPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:f6:32:5b:df:08:d0:9e:8d:20:68:57:76:f0:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Validity
Not Before: Aug 4 01:01:23 2025 GMT
Not After : Aug 5 01:01:23 2025 GMT
Subject: CN=4d1cb0fe22b44734416fe21aae6a9766bbdf1c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:97:44:8a:f5:18:b9:f6:ca:36:e7:b8:f1:5a:
08:59:ee:3c:7c:66:34:bc:78:d4:a6:fd:65:65:44:
f9:58:ef:fe:bd:d9:33:cb:f2:d3:c9:de:ea:32:12:
97:64:3b:e6:aa:f6:ad:66:65:bf:63:d6:3a:99:e7:
83:77:5d:ac:2b:ae:73:a2:2e:73:dd:f5:17:52:b4:
a5:4b:9f:9a:82:4b:1e:af:12:14:6b:ca:d0:77:ab:
ff:a7:43:f9:49:3e:4d:a5:20:7f:55:5e:e2:af:68:
89:88:a0:f4:49:03:b7:50:35:99:cf:c7:b6:c6:df:
00:9d:6e:e9:81:1f:ce:17:56:7f:01:99:87:ad:de:
85:19:64:4a:2d:3a:64:ab:8e:4c:de:43:4c:c2:1a:
b2:62:ef:e0:df:de:e9:13:e4:8e:75:4e:52:cc:18:
c5:2c:5a:c9:13:d7:c8:37:f0:cd:a2:9c:35:fc:fa:
a6:b3:12:b2:c6:b8:cf:4a:98:fd:d7:47:ce:18:12:
2c:a0:b3:a3:47:4c:61:8e:85:cd:7e:c0:a5:f2:52:
0e:37:c5:d2:df:59:03:0d:d1:a1:c9:ff:b5:f9:d0:
6a:93:c1:b1:39:5e:63:c1:50:1a:3c:3e:03:f6:5c:
09:21:42:5b:97:96:45:e8:bb:f2:fa:16:bb:6d:09:
9b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:1C:B0:FE:22:B4:47:34:41:6F:E2:1A:AE:6A:97:66:BB:DF:1C:86
X509v3 Authority Key Identifier:
keyid:D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:8a:e9:ea:c6:36:05:3b:f0:ef:dc:89:26:d0:fc:82:b2:92:
08:49:31:06:5d:0e:16:c4:68:f8:c8:74:37:08:97:b2:ce:db:
93:3b:e9:c0:54:7a:1e:23:32:e2:6f:95:16:ae:bd:35:c5:e0:
02:66:79:97:05:1d:23:a9:30:f6:7c:c3:5a:d1:41:ce:21:3f:
52:a3:df:28:80:62:63:a1:6c:9b:e9:31:26:8f:8a:5a:25:3e:
ea:36:68:b0:1a:41:82:b6:eb:0e:7e:85:fe:30:aa:47:41:7e:
7d:66:ef:83:63:e5:6a:55:7d:10:4c:53:0b:99:39:97:a7:62:
3e:8c:87:51:e2:d3:f7:8a:04:c9:cd:7d:24:0f:2e:04:7b:fb:
75:0f:59:a7:5e:f0:7e:b1:d6:bf:7b:ff:0f:46:0a:11:a3:87:
e8:f6:20:37:4f:b7:1c:74:fb:eb:a7:e4:cb:cc:d7:56:ba:7d:
c1:13:2e:04:42:23:90:07:11:88:60:f6:da:ea:10:92:41:ba:
ba:23:2e:92:54:7a:63:0d:ed:a2:e5:d0:fb:b1:ea:f6:75:6b:
b9:19:a4:a5:ac:2d:75:97:ac:e3:b3:42:ce:2c:4d:1d:12:b0:
c9:42:b0:ac:de:fc:01:e4:de:30:51:39:a5:fb:38:bf:e8:66:
5e:99:1f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:58 2025 by rpki-client