Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json)
Hash identifier: 3hr5kf0JNAMzaAPk2HpZcAuz+wlGL4GyxhfHR557Ilg=
Subject key identifier: 80:1E:D7:E6:D3:97:FF:C0:28:FF:41:3E:14:04:8E:AD:2F:95:6C:62
Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Certificate serial: 0196A27777213E4522CC78B98B399C77D790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
Manifest number: 1522
Signing time: Mon 05 May 2025 22:01:00 +0000
Manifest this update: Mon 05 May 2025 22:01:00 +0000
Manifest next update: Tue 06 May 2025 22:01:00 +0000
Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: zYr1/Ctw/NFL0rQCxdTjDswkv/G43P7350JSs1s7m+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 22:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:77:77:21:3e:45:22:cc:78:b9:8b:39:9c:77:d7:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Validity
Not Before: May 5 22:01:00 2025 GMT
Not After : May 6 22:01:00 2025 GMT
Subject: CN=801ed7e6d397ffc028ff413e14048ead2f956c62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:04:ba:5b:24:f1:3f:6e:fc:ca:fe:7e:e3:4b:
d3:4f:e2:83:dd:b6:98:ad:3e:3c:41:87:92:19:5b:
1e:cb:18:d5:3a:bd:01:09:a7:ff:a9:ef:2f:7b:a4:
76:f1:07:cc:ba:11:88:d8:d2:e2:7b:21:b1:d0:3c:
38:55:64:aa:b7:27:d0:e9:c1:04:63:77:40:85:48:
5b:b6:89:ae:53:52:15:0d:c3:08:59:c2:4b:f3:eb:
3b:51:06:ad:a4:e2:27:0d:0c:40:50:ea:89:ec:00:
06:12:85:04:10:4e:85:a9:ed:7a:48:2e:e7:7d:11:
7e:e6:fd:8a:d1:1f:83:4c:d1:62:ba:15:c9:e6:4d:
2e:fa:35:05:a3:0c:f2:0c:5d:40:1e:32:6b:41:07:
0b:5d:a7:9c:1d:87:1c:19:e9:41:e5:8a:cb:c6:36:
eb:29:7c:bc:49:e1:fe:12:c3:e4:64:79:9f:64:1a:
8d:6a:dc:fb:6b:aa:18:f2:ca:96:6a:de:0f:31:13:
22:7f:08:4f:35:e6:07:8d:3b:7c:ed:0b:18:32:f1:
c8:d2:b6:16:64:68:57:f5:ec:9b:ae:37:30:93:e6:
8c:ff:33:85:e3:b3:12:05:55:24:fb:6f:37:e9:e1:
e2:13:c6:b8:ba:b8:75:2c:1e:6c:3e:c3:8c:f2:7b:
cc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:1E:D7:E6:D3:97:FF:C0:28:FF:41:3E:14:04:8E:AD:2F:95:6C:62
X509v3 Authority Key Identifier:
keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:f5:bf:19:02:1a:a0:81:c5:22:2f:db:7c:38:80:8a:4a:68:
2d:d7:89:f4:8c:63:15:12:e9:6b:1d:1c:30:74:3c:cd:a8:a2:
e2:35:b8:bc:51:bf:c8:21:16:89:c1:d5:32:44:ca:ef:f6:3d:
26:68:62:1e:d4:b1:6a:95:a8:48:1f:a4:7c:ed:c7:43:c5:fe:
c4:4d:8a:44:41:ac:ab:99:75:55:06:38:bb:f6:1b:84:1d:ce:
c2:9d:e6:a3:9a:f5:86:74:83:0b:23:10:41:d8:e1:6e:ae:2f:
0a:13:af:6d:05:29:6e:4a:0f:91:d5:ff:75:2b:fb:53:81:8e:
e5:a5:d6:f6:ba:18:6b:3d:5a:80:5c:17:51:0c:e1:db:2b:81:
e3:c1:f2:8c:90:6b:ed:e8:db:eb:87:3d:fc:fa:f9:09:83:e0:
d2:9d:ed:11:35:d9:da:dc:6c:a5:00:49:4b:48:b6:f9:16:e9:
40:56:76:01:6f:8a:75:96:e1:09:3f:0b:48:4e:17:ea:43:17:
f5:53:37:ec:64:f7:1b:c4:fc:69:88:09:59:ee:3b:35:de:91:
66:8e:47:18:d8:d3:eb:72:51:0c:5e:21:31:b3:ca:d0:75:60:
b1:67:b2:bc:d6:a7:c1:60:30:fd:4e:74:7f:a3:d0:f6:37:e4:
64:8e:a3:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 07:11:36 2025 by rpki-client