Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
File: AlY31IiO4AWN6a06cMQtxGmWmpk.mft (raw, json)
Hash identifier: ZhrKDE1TGGe2JmMIJS2r9uXPjPn6RtiSSwoYt6uQDk4=
Subject key identifier: 4D:DB:90:A8:F7:81:E5:54:EE:16:72:9E:15:3F:84:9C:D7:CF:CE:EF
Authority key identifier: 02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
Certificate issuer: /CN=025637d4888ee0058de9ad3a70c42dc469969a99
Certificate serial: 01976BBD6B885677C0045DEFA14330F25BD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
Manifest number: 0A04
Signing time: Sat 14 Jun 2025 00:01:05 +0000
Manifest this update: Sat 14 Jun 2025 00:01:05 +0000
Manifest next update: Sun 15 Jun 2025 00:01:05 +0000
Files and hashes: 1: AlY31IiO4AWN6a06cMQtxGmWmpk.crl (hash: T5MdNvAgn7AyYFDQe5Ie9orl1jGWLzg+MKo51cxR6ts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:6b:88:56:77:c0:04:5d:ef:a1:43:30:f2:5b:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025637d4888ee0058de9ad3a70c42dc469969a99
Validity
Not Before: Jun 14 00:01:05 2025 GMT
Not After : Jun 15 00:01:05 2025 GMT
Subject: CN=4ddb90a8f781e554ee16729e153f849cd7cfceef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9f:9b:83:6f:69:4f:d8:88:f3:e8:25:a5:f7:
83:78:2e:af:c4:fb:4d:7c:72:18:2d:1d:52:d6:57:
ae:02:98:0c:23:03:1c:e5:b4:7b:c7:49:90:8d:7b:
d8:e0:e4:8f:a9:36:a5:4e:f3:ea:b1:c1:6d:13:b0:
e8:5d:8b:f0:51:7d:5e:f6:a9:f6:71:6a:6d:9a:f3:
26:09:d1:63:17:84:ed:07:21:5f:95:50:fa:79:4f:
ca:ea:eb:c6:58:ff:e9:e9:02:df:71:cb:4f:49:ee:
4e:37:c8:3c:60:a7:99:34:74:c8:e0:8a:80:5c:17:
79:79:b5:93:5f:22:2f:e8:aa:df:54:c1:88:ab:37:
15:71:e4:9e:90:84:52:e7:c6:1e:84:ee:21:44:41:
d6:ed:62:d6:6a:8c:af:1f:8d:f8:f1:6a:c4:f4:f1:
84:0b:38:af:0c:15:b3:41:3b:f0:ee:be:fd:54:1e:
27:8e:63:f6:b6:69:0e:e4:6e:8c:a7:58:f2:77:e7:
75:9d:8b:be:47:9e:de:a3:68:cc:3b:5c:a1:2d:ef:
5a:7c:90:03:78:76:95:eb:bc:46:16:fc:21:cb:27:
ff:f0:7e:2f:5d:2c:be:84:02:a2:ab:57:a1:44:dd:
7e:05:54:e7:2d:09:b7:5a:6c:4d:38:74:bd:c0:53:
cc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:DB:90:A8:F7:81:E5:54:EE:16:72:9E:15:3F:84:9C:D7:CF:CE:EF
X509v3 Authority Key Identifier:
keyid:02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:39:8d:e4:99:64:41:7c:20:c1:a1:5c:09:10:14:03:e1:eb:
d4:b7:d8:d5:42:cd:ac:b5:46:94:a3:3f:99:7f:49:7b:7f:52:
45:9e:bc:cf:a9:fa:d7:fd:a4:62:cb:8b:22:68:0d:44:75:7e:
71:5e:eb:6e:1d:29:7e:57:f1:c0:20:3f:bb:25:83:37:e2:67:
9e:4a:09:32:a0:36:0a:89:99:7d:86:47:7a:f7:43:c8:d9:74:
f2:bf:31:bc:20:ff:81:73:ac:c9:81:00:ba:51:73:1c:84:9f:
7d:9b:f9:b3:e9:70:65:7f:7c:2b:7c:ff:2e:b4:c7:84:12:3b:
3b:01:12:15:07:c4:a7:fd:f3:20:0c:f7:87:05:fc:ee:a5:a7:
ce:fd:60:58:e5:3f:e7:b1:5f:0a:8a:17:1c:2e:69:69:74:d5:
ef:7e:ee:a8:44:6b:91:2d:c3:02:56:63:86:c6:16:9b:9b:ed:
8f:ca:41:98:d9:1a:8d:d9:dd:fa:07:25:ce:01:56:f5:c1:41:
95:13:80:f2:c3:fc:9d:7f:2c:ec:32:2b:9f:55:a5:5e:2d:3c:
93:d8:2e:89:d5:20:82:bd:fa:96:d2:b2:5a:9b:ae:08:26:34:
c1:5c:e8:a1:02:85:61:c9:42:8e:0a:22:4a:fc:51:9e:a8:1c:
83:98:90:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:13:34 2025 by rpki-client