Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: X5qIq+xqu/glub4kw+a9entfSwyiUYuLu2fNq3PkLws=
Subject key identifier: BB:B5:06:60:98:46:0C:9E:9F:A1:DF:50:FF:B3:95:12:26:8F:22:A5
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 0197B5FC6C4E0F134DEF20DD5981D28E894F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 10:01:48 +0000
Manifest this update: Sat 28 Jun 2025 10:01:48 +0000
Manifest next update: Sun 29 Jun 2025 10:01:48 +0000
Files and hashes: 1: 8b2Sz4cL93cXk3-Io7s2vbwBznU.roa (hash: OdYsHSgXYM8f8BmJb0rgKjd3SquS1uJD7loVl2Lg/xI=)
2: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: Da82LZlt2Nt3Ut5I4olhzfUSTotTWS4yxGryPQJlEHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:6c:4e:0f:13:4d:ef:20:dd:59:81:d2:8e:89:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Jun 28 10:01:48 2025 GMT
Not After : Jun 29 10:01:48 2025 GMT
Subject: CN=bbb5066098460c9e9fa1df50ffb39512268f22a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6f:db:61:f2:22:f3:f6:f6:0a:d7:05:73:c1:
59:03:4d:f4:fd:5b:dd:25:ca:26:3b:2d:0b:a6:40:
8b:42:43:16:1a:5f:50:df:5d:b4:95:00:2e:02:ba:
dd:28:47:d7:ce:49:53:be:bc:71:53:e1:81:fd:7b:
75:8b:a4:30:1b:6e:d8:ad:71:cf:6e:11:26:f5:23:
c2:63:4c:8f:e8:84:6c:2d:b1:22:a7:01:2c:7d:79:
c8:d4:33:f7:68:dc:6b:b7:a9:64:c6:fe:7d:f3:c9:
df:39:ba:8c:04:ee:a9:09:2a:6b:a8:c1:64:9d:5d:
66:0a:66:ab:da:ea:07:f7:fc:53:73:9a:f5:fa:00:
4b:10:81:e3:63:2f:de:9c:54:e7:ff:df:76:c0:21:
cd:7a:db:21:11:3c:4c:e7:73:d1:c4:17:53:16:36:
ae:cc:2e:e9:f0:7c:cf:2b:83:1e:15:57:13:07:8c:
4c:73:0c:cb:b0:a7:fe:e9:38:51:a9:85:ca:88:90:
e1:ca:84:40:7a:e1:6d:23:44:3b:e9:ea:41:07:52:
47:5f:df:20:84:17:01:80:21:a1:5b:10:10:a2:37:
3b:90:c5:48:8d:c1:dc:2f:74:89:3b:0d:69:ad:d4:
fb:57:ba:79:1b:6d:3f:a2:0a:f9:78:59:f1:65:d4:
48:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B5:06:60:98:46:0C:9E:9F:A1:DF:50:FF:B3:95:12:26:8F:22:A5
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:24:04:73:47:aa:f8:e4:54:30:fd:8d:91:e7:7e:7d:01:e1:
97:c7:d6:46:3a:c5:05:91:6e:8a:b4:5f:81:e8:70:ff:5b:40:
6e:9a:99:d7:de:cd:a5:c5:a2:c9:2c:08:a8:35:0c:b3:e3:c8:
70:ca:c0:b8:74:b4:88:35:c8:71:62:0c:cb:a0:53:66:94:0d:
ed:7c:a0:6a:4d:01:e4:55:ee:41:3a:68:26:27:2a:18:7f:e7:
b0:b7:52:67:c3:2f:b9:c9:1d:39:58:b7:a3:23:e7:32:84:07:
31:4c:b9:cc:73:a7:78:e2:5c:ae:76:24:55:c2:9b:3d:aa:d8:
30:b1:56:68:ed:d7:2e:5b:2e:b6:7d:50:ca:26:d4:d6:39:48:
7d:e9:af:28:46:8d:0c:dd:24:04:87:b6:ad:52:69:80:11:65:
db:67:84:be:b1:25:95:a4:52:39:81:a6:dd:31:4f:a1:c1:2e:
91:a5:7f:44:83:81:48:15:f2:f7:2a:97:c2:a7:ad:36:9d:a6:
af:36:65:8e:ea:3b:34:ec:93:65:0a:51:f7:4f:a8:51:82:b1:
77:c3:3d:9c:48:87:8a:18:07:05:58:9a:47:2c:9b:38:92:90:
30:b8:ac:fa:5f:9f:4c:49:4e:92:8f:55:be:76:cf:b4:d4:47:
3c:f7:1b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:59:45 2025 by rpki-client