Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: gWC4/aTw3RhSojzYaMEbBTC9NlLNk55uCmYctI4Fto4=
Subject key identifier: AE:42:93:62:89:ED:4D:0D:F7:DD:50:3F:0A:21:38:6E:EA:E0:92:9C
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 0196B8FF39E8E4786D04C9ABD4FEC93B9674
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 1532
Signing time: Sat 10 May 2025 07:00:56 +0000
Manifest this update: Sat 10 May 2025 07:00:56 +0000
Manifest next update: Sun 11 May 2025 07:00:56 +0000
Files and hashes: 1: 8b2Sz4cL93cXk3-Io7s2vbwBznU.roa (hash: OdYsHSgXYM8f8BmJb0rgKjd3SquS1uJD7loVl2Lg/xI=)
2: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: PmHbrGugjcFXalPN+UiVAfRx76gXU9Kyag+dkhG6xpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 07:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:ff:39:e8:e4:78:6d:04:c9:ab:d4:fe:c9:3b:96:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: May 10 07:00:56 2025 GMT
Not After : May 11 07:00:56 2025 GMT
Subject: CN=ae42936289ed4d0df7dd503f0a21386eeae0929c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:47:77:3c:e2:60:ea:73:42:49:0e:41:0e:ff:
5b:b7:1e:17:0b:59:4b:5b:89:d2:d5:cc:c6:72:f6:
6c:0f:e4:3f:2e:9a:a0:23:e2:20:59:b9:50:15:cc:
06:1d:34:a7:35:af:11:d6:2f:c2:b0:72:1b:92:21:
c6:ea:17:87:47:50:35:5f:4f:bd:26:8c:7e:6d:5e:
dc:a1:e3:81:37:16:ae:22:30:ee:03:f4:25:2a:60:
2e:f5:8a:42:bf:cf:2c:de:e4:bb:8f:b2:cc:d3:07:
1e:9b:3b:76:62:5b:3c:3e:97:f9:ec:46:50:14:f8:
52:12:b2:78:45:5c:57:12:b5:ca:ea:4c:c2:36:aa:
35:1d:75:be:ba:69:4a:75:c7:8c:26:db:c0:63:88:
a2:37:87:b2:e5:28:a7:b7:1a:10:6d:6e:8b:f5:a5:
e7:12:15:bb:0f:29:1f:14:22:05:42:44:f5:9c:02:
6a:07:1e:ad:6b:9a:f1:57:e4:f9:78:7a:4b:aa:9a:
10:14:f1:4c:7c:dd:3f:c6:3a:60:19:b4:a3:71:ab:
bc:85:f4:87:e3:c0:22:74:f2:d4:0b:4f:ef:84:aa:
ce:bc:6e:96:5d:84:d0:fa:42:03:42:7d:7d:8c:a4:
e8:dd:5f:12:aa:b8:24:47:fc:12:7e:8a:ff:36:5f:
18:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:42:93:62:89:ED:4D:0D:F7:DD:50:3F:0A:21:38:6E:EA:E0:92:9C
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:91:31:fb:e7:e0:f8:08:75:aa:20:fb:a8:e5:63:1d:67:f1:
37:61:d6:d3:24:34:24:e0:b5:57:46:26:13:ff:e6:c8:1c:a2:
7c:31:65:3e:b5:70:c5:60:8a:79:01:3f:dc:52:49:05:72:69:
0b:af:22:0a:5f:42:09:60:93:8a:13:04:5d:c9:12:86:c3:ae:
29:02:5f:b6:ae:60:a1:40:fe:01:58:d6:15:83:ae:1c:af:7c:
c6:44:e8:e3:8c:57:a9:fd:3d:3a:53:1b:8d:43:62:6e:6c:de:
32:4e:43:9a:0c:41:de:cb:16:b9:85:b9:a5:0f:95:0d:c7:c5:
9b:a0:af:b1:af:a9:cb:6e:37:b5:20:78:4f:f0:b8:28:bf:2b:
18:99:f9:19:58:52:13:72:95:ae:d3:5b:39:46:6c:31:b0:17:
30:78:60:c0:ae:a3:1e:73:49:08:1a:11:53:1b:df:e5:fb:38:
e1:31:c3:7d:59:cf:45:e1:6b:7d:b4:04:34:b6:67:5b:1d:6d:
cf:99:7e:94:f9:16:2a:b8:31:0a:76:23:c7:64:a8:4e:c6:53:
c7:7f:3a:a6:0a:be:1e:80:da:10:9c:3b:99:b8:b0:0a:e1:11:
fb:84:c9:ab:f7:3c:57:92:4e:5b:b3:4f:01:24:76:2e:ec:77:
c3:4b:a3:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 16:55:59 2025 by rpki-client