Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft
File: aluKc4anCgzU9gC-dYHe-JRHOkE.mft (raw, json)
Hash identifier: PJxEvgiSTvL/ZH5f9q2I7LhMLuYSoPPTdQSydK58e1M=
Subject key identifier: 93:89:6F:82:2C:62:CE:FE:64:F7:84:E9:C4:44:88:E7:1B:EC:BF:BC
Authority key identifier: 6A:5B:8A:73:86:A7:0A:0C:D4:F6:00:BE:75:81:DE:F8:94:47:3A:41
Certificate issuer: /CN=6a5b8a7386a70a0cd4f600be7581def894473a41
Certificate serial: 0198D7059F861A53228BA28F12ED31B98D15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aluKc4anCgzU9gC-dYHe-JRHOkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft
Manifest number: 0769
Signing time: Sat 23 Aug 2025 13:02:06 +0000
Manifest this update: Sat 23 Aug 2025 13:02:06 +0000
Manifest next update: Sun 24 Aug 2025 13:02:06 +0000
Files and hashes: 1: aluKc4anCgzU9gC-dYHe-JRHOkE.crl (hash: qol7gUUhXwB65+p8H6AwGWKzNDqu5pkvvD0CMoCR2os=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aluKc4anCgzU9gC-dYHe-JRHOkE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:9f:86:1a:53:22:8b:a2:8f:12:ed:31:b9:8d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5b8a7386a70a0cd4f600be7581def894473a41
Validity
Not Before: Aug 23 13:02:06 2025 GMT
Not After : Aug 24 13:02:06 2025 GMT
Subject: CN=93896f822c62cefe64f784e9c44488e71becbfbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f3:b4:58:fd:4f:b6:e7:31:d5:8f:27:24:e9:
22:31:cb:f0:70:df:b0:b9:70:79:e0:0c:0b:14:84:
7f:e2:cf:89:a5:0d:c4:ed:b0:2f:c3:3d:76:54:fa:
56:83:69:34:9e:32:27:02:eb:c3:6c:97:48:d1:b8:
52:81:28:39:be:c3:dc:c6:c2:e7:25:5f:34:da:e1:
10:88:fe:2f:f2:0d:f2:e5:3c:14:21:3b:87:24:78:
ce:fd:f9:9d:27:21:ba:26:a4:57:27:fe:9b:a0:9e:
ca:89:81:70:0e:9e:5b:3f:87:ec:27:4b:09:71:4c:
c3:22:e3:07:92:fe:94:49:76:77:e3:be:d5:22:06:
b4:fb:e3:c0:4a:d9:49:3f:76:8b:d2:3f:a2:89:5d:
7a:79:05:15:2d:28:0a:22:84:9b:9f:31:f3:74:2e:
e0:12:67:f3:2e:bb:5f:c1:f1:82:4b:34:52:eb:10:
b9:ce:69:90:38:92:20:5d:cc:f4:7a:bc:9c:fe:78:
ad:42:5d:8c:93:b6:d5:c0:eb:01:18:9c:f9:1b:79:
c6:24:8e:ce:df:a6:ca:95:12:87:91:2a:5e:7e:20:
e8:33:0a:3d:32:82:9f:9f:14:3b:7c:83:eb:d5:3f:
f3:7b:69:0e:79:07:18:37:89:86:56:4e:ee:0a:e0:
3d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:89:6F:82:2C:62:CE:FE:64:F7:84:E9:C4:44:88:E7:1B:EC:BF:BC
X509v3 Authority Key Identifier:
keyid:6A:5B:8A:73:86:A7:0A:0C:D4:F6:00:BE:75:81:DE:F8:94:47:3A:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aluKc4anCgzU9gC-dYHe-JRHOkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:61:5f:ab:d7:0c:9e:8e:c8:ad:3a:79:8b:08:82:f4:0d:96:
3a:80:22:26:33:fc:ea:f8:08:93:4b:d5:a1:47:ba:2f:1a:f6:
51:f6:f7:ab:61:63:25:ad:4e:db:3b:8c:05:78:d3:75:ed:33:
3f:0b:83:d5:1b:4f:80:dc:7b:03:97:fc:93:4f:ab:67:81:66:
96:f6:f3:af:6f:ec:18:c1:7f:9a:24:ac:5e:02:51:dd:be:9a:
f1:7d:17:70:ad:4b:88:13:c2:88:36:99:09:cc:a8:a4:72:c3:
30:8f:ab:87:3b:4c:5c:b4:c9:6a:90:73:aa:b5:75:14:b3:4b:
0d:35:f0:3f:21:e5:ca:a4:23:7d:30:5b:11:aa:8d:ce:f1:9d:
02:a5:3e:78:7b:0d:d6:9b:0e:5f:ab:83:71:93:b8:38:cd:23:
ac:b7:9e:e7:8f:9a:b1:9c:e5:12:56:15:4e:e1:07:03:d7:f9:
9f:39:0e:7e:5c:64:ab:c3:c1:71:d7:5d:f8:09:40:78:73:85:
b8:22:4b:ff:eb:f7:55:6e:dc:86:0c:39:9c:3b:98:f4:23:e9:
e1:8f:43:e2:05:74:01:0c:2b:b8:93:ce:92:1e:dc:e7:85:1c:
aa:ec:ab:77:78:58:2a:b7:d3:4c:b8:29:af:2d:d5:d3:58:02:
01:71:81:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:17:15 2025 by rpki-client