Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json)
Hash identifier: vxHIXlqg1Yk3BWH0TkG3ntJgJnFKcqPpBb7LlaPbkPE=
Subject key identifier: 58:00:7E:DF:22:A0:F1:90:9E:A7:C5:B1:1C:16:91:BD:E7:E4:21:C0
Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Certificate serial: 0198D84FD0DD9E7A063BDE1348887C534F16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 19:02:46 +0000
Manifest this update: Sat 23 Aug 2025 19:02:46 +0000
Manifest next update: Sun 24 Aug 2025 19:02:46 +0000
Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: qaYd7ZCQijyxPoJLK/J5ZP44eOSnll8ur5tz8K3YuYs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:d0:dd:9e:7a:06:3b:de:13:48:88:7c:53:4f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Validity
Not Before: Aug 23 19:02:46 2025 GMT
Not After : Aug 24 19:02:46 2025 GMT
Subject: CN=58007edf22a0f1909ea7c5b11c1691bde7e421c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5b:db:de:48:59:36:23:d5:b6:d9:08:16:9e:
68:ce:24:33:c9:6c:8c:6c:8d:58:5c:3c:36:2f:d9:
62:fc:b8:dc:51:7c:46:41:fb:1f:6e:04:56:b0:31:
aa:3b:21:42:15:6e:c8:67:81:a7:d1:41:96:fb:a7:
68:d8:47:aa:04:69:b5:d0:6d:9c:08:97:10:3b:9e:
6a:cc:bf:3c:7e:12:6e:58:ba:c2:cf:4c:1a:b9:61:
20:7b:bf:08:3a:76:a2:76:f4:f1:b9:cc:59:e7:a8:
0d:c9:97:5b:43:96:00:a8:0c:64:25:e8:cd:3c:13:
d5:42:21:e5:00:60:82:41:d8:e8:37:ec:60:64:91:
96:2d:dc:56:c5:28:ec:1b:1e:28:6e:7f:c6:7e:ec:
41:4a:f8:77:2e:f1:95:d3:b0:b0:ed:02:ca:25:24:
78:1d:db:88:db:8b:85:4d:0f:87:d2:e2:85:61:2d:
02:25:e9:76:b7:ce:e3:49:09:3c:f5:7e:3c:32:69:
54:42:39:53:44:6a:a6:91:fd:a2:c4:f4:00:98:5a:
3d:23:f8:7e:e0:3a:fe:70:4a:ca:a9:81:28:99:d6:
b4:5d:d0:89:79:23:94:73:33:5b:eb:37:e0:72:55:
59:00:56:7c:ea:3f:de:77:09:36:9a:73:dd:9e:48:
5b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:00:7E:DF:22:A0:F1:90:9E:A7:C5:B1:1C:16:91:BD:E7:E4:21:C0
X509v3 Authority Key Identifier:
keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:7c:18:ae:5d:01:55:2c:db:17:43:7e:61:e8:05:1c:39:85:
09:33:94:cc:db:d6:0c:ab:f8:55:1d:ec:c5:e1:1d:a3:31:7e:
60:0d:5c:12:a6:94:e1:48:49:55:9e:6c:ed:b2:17:de:a5:ee:
c4:c0:51:75:34:4d:3b:be:db:29:88:90:20:8b:5e:ba:9a:8e:
72:d5:4a:0e:73:14:98:87:bc:db:b3:20:e3:45:28:33:2b:08:
ef:89:17:d3:f6:75:72:4a:d4:52:78:44:aa:5c:fc:7d:91:29:
26:8e:df:c9:4d:f5:df:8f:c2:a3:00:98:07:86:af:d2:0a:32:
b2:3b:ad:f6:3f:b0:66:5d:db:f0:99:c7:41:29:ba:1e:60:1d:
b2:93:46:45:0b:6d:1d:de:96:02:c6:3f:e0:bf:8f:0e:05:70:
08:99:88:d2:3d:24:99:63:a1:88:1d:95:76:fc:a0:55:27:9c:
63:e9:50:cb:65:f6:46:00:e5:4b:82:7e:c2:76:d5:51:51:fb:
12:d8:99:bb:bc:02:43:3d:7e:1e:23:d0:c1:fa:57:b7:e3:5d:
18:9e:7e:ef:62:a7:7f:76:ea:ea:45:51:e3:24:e9:6e:93:1b:
07:0f:5d:d4:3f:eb:e1:3f:f1:7e:07:8d:37:bf:1e:e3:fb:b6:
d6:ca:32:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:50:08 2025 by rpki-client