Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json)
Hash identifier: 087HGSvQQHNauBLsZKO7SRwOuIcFkXx5UI1NCI5tOVg=
Subject key identifier: 31:FA:78:82:65:2E:A7:CE:DD:7D:C0:29:D4:4E:35:76:43:FE:8B:86
Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Certificate serial: 0197B6A1ECC0A380AE8DF5EEABD46C2C9CC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 13:02:34 +0000
Manifest this update: Sat 28 Jun 2025 13:02:34 +0000
Manifest next update: Sun 29 Jun 2025 13:02:34 +0000
Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: D+SV+KY1PwSTnKtFmet3qc1kpDWz3UP6Yr8PArmECK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:ec:c0:a3:80:ae:8d:f5:ee:ab:d4:6c:2c:9c:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Validity
Not Before: Jun 28 13:02:34 2025 GMT
Not After : Jun 29 13:02:34 2025 GMT
Subject: CN=31fa7882652ea7cedd7dc029d44e357643fe8b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ff:13:04:45:95:61:8d:3b:1a:a1:4c:1f:ef:
fb:68:99:34:e4:7c:d0:23:50:35:ba:7c:d4:e8:16:
19:05:50:31:01:9d:f8:e8:a0:51:4c:e8:bf:f9:4f:
70:70:8d:9d:0e:d6:a3:c8:2b:b2:94:ce:18:ee:72:
29:3e:8e:0a:de:a4:47:03:3e:24:ad:9f:87:15:70:
90:39:f2:a6:80:b5:11:83:4b:01:52:32:2b:21:81:
68:ec:d7:f1:4d:ad:8f:a5:5c:62:2f:d5:b4:77:fe:
46:39:ef:68:3f:4c:f8:4d:c3:f9:d7:ba:67:c9:00:
c2:a8:d6:9a:54:0d:9e:5e:97:9a:c2:bd:19:06:de:
c5:99:db:78:55:8c:92:90:39:7c:76:7d:aa:8f:56:
e2:89:ab:67:76:c2:08:30:f0:84:c9:56:fd:8d:d2:
fe:0a:4c:d7:b6:ff:b8:cf:e6:a3:cb:90:57:6c:84:
c3:06:dd:d9:a2:2f:81:63:c7:4b:bb:4f:cc:15:99:
34:a7:0e:0e:16:a9:e3:d3:28:94:d3:fa:d5:7a:8a:
03:75:78:f1:a0:f9:25:e4:ac:76:fd:af:d7:e2:f9:
ea:9d:8e:d1:c0:b3:43:cf:b6:42:33:aa:14:e6:92:
5a:e8:b4:0d:07:58:33:24:e3:45:2b:a4:43:b9:73:
4f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FA:78:82:65:2E:A7:CE:DD:7D:C0:29:D4:4E:35:76:43:FE:8B:86
X509v3 Authority Key Identifier:
keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:87:a9:da:2a:ee:a2:b1:d2:9b:7f:d4:8f:c3:60:f1:1c:43:
1a:8d:a3:71:75:17:52:0f:ac:d7:47:b8:c6:83:94:9f:30:aa:
52:19:7d:ba:88:4b:4b:2f:f9:a5:04:20:94:be:42:d7:6a:43:
99:95:1a:c4:a9:77:eb:8b:3c:ea:70:e0:cd:58:2e:9c:3a:3d:
f1:fd:78:88:00:4b:cf:e2:b0:4d:c1:97:aa:77:2c:b6:62:5f:
ed:c7:ba:d9:cc:09:21:ea:f6:d0:1f:20:ba:d3:2c:80:ff:64:
3b:c5:10:3e:c9:a9:84:ae:8e:00:75:9e:77:1a:f0:9c:44:85:
49:83:8a:b2:76:ab:54:1b:9a:02:bf:20:c1:a6:42:43:da:9b:
e4:90:0a:02:05:bb:dd:bc:36:c0:31:d7:e9:fb:6f:a6:d3:0b:
30:ed:31:0e:65:32:32:f2:ae:b1:7f:2e:f0:1d:5a:ca:30:d9:
21:22:37:f3:35:77:55:34:e5:b1:6c:5d:37:72:90:9d:bc:23:
19:8d:e5:b5:de:e8:06:0d:d4:79:84:ef:cf:93:d8:5b:a1:de:
68:cd:46:dc:12:c7:c8:f2:e9:5c:34:9d:d6:56:2d:5a:2c:ad:
d5:aa:8c:d4:c4:fc:50:13:ab:8e:49:3d:91:85:0e:ad:8b:66:
6d:8b:cb:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oezAo4CujfXuq9RsLJzCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNTFmNmFiZTBiYjI2YmZlNDg1OWU1NGRlZTBmZGM5YTVi
NzhhMDUwHhcNMjUwNjI4MTMwMjM0WhcNMjUwNjI5MTMwMjM0WjAzMTEwLwYDVQQD
EygzMWZhNzg4MjY1MmVhN2NlZGQ3ZGMwMjlkNDRlMzU3NjQzZmU4Yjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/8TBEWVYY07GqFMH+/7aJk05HzQ
I1A1unzU6BYZBVAxAZ346KBRTOi/+U9wcI2dDtajyCuylM4Y7nIpPo4K3qRHAz4k
rZ+HFXCQOfKmgLURg0sBUjIrIYFo7NfxTa2PpVxiL9W0d/5GOe9oP0z4TcP517pn
yQDCqNaaVA2eXpeawr0ZBt7Fmdt4VYySkDl8dn2qj1biiatndsIIMPCEyVb9jdL+
CkzXtv+4z+ajy5BXbITDBt3Zoi+BY8dLu0/MFZk0pw4OFqnj0yiU0/rVeooDdXjx
oPkl5Kx2/a/X4vnqnY7RwLNDz7ZCM6oU5pJa6LQNB1gzJONFK6RDuXNPMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDH6eIJlLqfO3X3AKdRONXZD/ouGMB8GA1UdIwQY
MBaAFAJR9qvguya/5IWeVN7g/cmlt4oFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8yZmFiZjUtZTNlZC00ZDlhLTljZDgt
MmY0ZWI5YzA2MDM1LzEvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS8yZmFiZjUtZTNlZC00ZDlhLTljZDgtMmY0ZWI5YzA2MDM1
LzEvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABIep2iru
orHSm3/Uj8Ng8RxDGo2jcXUXUg+s10e4xoOUnzCqUhl9uohLSy/5pQQglL5C12pD
mZUaxKl364s86nDgzVgunDo98f14iABLz+KwTcGXqncstmJf7ce62cwJIer20B8g
utMsgP9kO8UQPsmphK6OAHWedxrwnESFSYOKsnarVBuaAr8gwaZCQ9qb5JAKAgW7
3bw2wDHX6ftvptMLMO0xDmUyMvKusX8u8B1ayjDZISI38zV3VTTlsWxdN3KQnbwj
GY3ltd7oBg3UeYTvz5PYW6HeaM1G3BLHyPLpXDSd1lYtWiyt1aqM1MT8UBOrjkk9
kYUOrYtmbYvLMA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:11:32 2025 by rpki-client