Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: IDu/eCKbzDVeqTdQdaxgCR+CWrQmRnWv34urOzd/A8s=
Subject key identifier: 61:41:04:17:AD:9A:83:0E:AC:26:2A:6E:C5:84:FF:5F:A4:40:8F:00
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 0197B5FC889BECE5F35A450C2D970207F3EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 0977
Signing time: Sat 28 Jun 2025 10:01:55 +0000
Manifest this update: Sat 28 Jun 2025 10:01:55 +0000
Manifest next update: Sun 29 Jun 2025 10:01:55 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: Fbxk72R6MH0DuSpyK8jsViF4Tz83krdgOZns0ZY3kqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:88:9b:ec:e5:f3:5a:45:0c:2d:97:02:07:f3:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: Jun 28 10:01:55 2025 GMT
Not After : Jun 29 10:01:55 2025 GMT
Subject: CN=61410417ad9a830eac262a6ec584ff5fa4408f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:67:c1:53:0a:74:27:ad:ab:ed:09:f7:9d:be:
a2:a7:97:4b:74:46:88:ff:3d:28:92:85:1a:38:6f:
60:fc:3e:30:f4:12:ae:42:ae:80:b1:82:93:cb:75:
65:b2:59:62:ac:e6:ef:7b:1d:2d:1c:cc:2b:b9:e8:
60:02:c2:12:d8:c8:14:bb:4c:8c:b9:5f:cc:86:22:
9c:fe:bf:31:2b:b9:0e:e9:d0:6c:20:cf:17:a6:38:
da:a0:8c:37:06:9b:6e:ac:db:cf:b3:12:73:60:88:
cd:61:88:9e:c1:50:fa:fb:80:4f:49:ad:bc:33:5c:
9a:b6:56:89:60:78:b3:85:01:39:b6:35:07:7f:fe:
85:51:3a:76:2a:8d:c8:48:87:73:d2:7e:e9:e3:0d:
fc:65:a7:3d:ee:5a:5c:be:aa:46:b6:23:1e:0f:bf:
31:b4:17:15:71:32:1e:98:91:6a:61:0a:0f:01:92:
d1:7c:fa:7d:1a:4a:b5:20:91:89:68:46:2b:f2:4c:
77:2c:6e:77:19:91:ed:5d:e1:0f:e6:a4:94:99:a2:
7d:52:98:5e:7a:af:50:b0:a2:a5:55:94:d6:4a:24:
e8:ef:bd:b8:8a:b6:83:5b:ae:05:09:86:7f:f2:ad:
e6:89:97:c0:4f:90:77:b4:94:db:5a:4e:dc:5f:96:
8c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:41:04:17:AD:9A:83:0E:AC:26:2A:6E:C5:84:FF:5F:A4:40:8F:00
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ef:41:78:9c:12:56:98:cf:f0:a3:88:53:57:7c:03:d7:34:
97:4b:71:f8:a9:82:3c:5e:20:fb:6d:41:87:4d:18:3b:b7:89:
33:ec:49:ed:c9:b7:5c:f6:ff:66:c6:89:24:c1:ad:89:80:3b:
f2:90:5c:bb:4d:33:39:8d:ba:07:3a:40:d3:2c:78:5c:8b:0b:
ea:59:c8:9d:4f:ba:0d:86:fd:b6:bc:64:fe:14:3c:34:b1:18:
3c:fe:7a:f0:60:c7:5e:b7:fa:ff:ac:31:1e:f0:35:73:31:c6:
52:0f:92:7c:ec:15:e1:bc:59:50:67:75:99:90:00:9d:98:2d:
a9:27:4e:96:79:ad:6f:29:3e:39:53:b6:41:ab:80:49:17:4a:
8c:dd:d9:4a:24:10:1e:05:aa:98:29:ff:67:a2:57:25:3a:56:
0d:48:c9:61:1a:fa:3f:1e:1c:2f:6d:3d:a7:6f:56:2a:20:9d:
f0:44:3d:31:db:32:7b:ef:fa:18:87:11:0a:ac:d3:85:cc:31:
f0:cf:aa:b7:d4:ba:fe:17:60:1d:33:6d:4e:e7:b5:de:de:10:
7a:b7:12:73:16:87:18:bc:d3:dd:c3:07:b0:c8:9c:55:48:93:
fd:3c:06:9a:7e:e3:ce:bb:17:c4:ac:1e:c1:5a:58:6b:fb:04:
55:c2:2f:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:21:59 2025 by rpki-client