Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: 1J+AEIHwwdxkVYLKhyddKjbydOZcGF5vyiNHgwFcuj0=
Subject key identifier: 5C:D9:51:D9:77:C7:CE:B8:64:20:03:33:86:8A:73:20:0A:6C:60:0F
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 0198D5BBDD452B6920B1568FFE9D7168630D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 0A0C
Signing time: Sat 23 Aug 2025 07:01:55 +0000
Manifest this update: Sat 23 Aug 2025 07:01:55 +0000
Manifest next update: Sun 24 Aug 2025 07:01:55 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: ZDewEO/nYhhKtwtBdgMy86EYPkEGHMdzvtGv7lpmVDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:dd:45:2b:69:20:b1:56:8f:fe:9d:71:68:63:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: Aug 23 07:01:55 2025 GMT
Not After : Aug 24 07:01:55 2025 GMT
Subject: CN=5cd951d977c7ceb864200333868a73200a6c600f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:13:90:e6:7f:96:93:f6:fa:11:48:3f:0d:34:
a4:8b:7b:75:13:d8:28:57:a0:73:31:ab:25:14:ee:
84:53:f7:a6:eb:ee:1c:97:56:21:64:04:32:80:1f:
ac:4d:b9:5a:79:45:c5:a0:b1:c9:03:d0:a6:b4:9e:
bd:62:5b:a5:0f:70:d1:4e:89:cc:83:7a:26:6b:69:
eb:d4:9f:8a:92:d7:cf:ab:85:07:7b:d2:fc:e9:ab:
3a:24:5d:b3:2b:94:09:6a:b0:c3:6a:20:ae:f2:57:
89:15:1e:30:99:cf:0f:f3:ea:13:0d:57:68:f0:6b:
1c:df:c6:5a:88:72:3e:a3:8b:84:a8:1d:c9:9e:ee:
bd:2a:35:67:55:e2:c9:92:21:4a:f9:90:a2:c4:e4:
04:f5:92:0a:2d:ff:f6:a4:17:15:d9:ca:f4:84:ee:
fd:17:fa:45:fc:6c:81:51:e2:f7:02:8e:ce:a6:35:
e8:94:e9:48:31:1a:f3:9c:9c:2f:2d:54:aa:81:8c:
7c:8a:53:9c:e6:30:03:c5:ed:02:ae:25:f4:31:e1:
3b:0f:98:b6:22:c8:82:aa:9c:e7:b8:fd:9f:c5:2b:
8f:dc:41:0f:fb:3f:7b:1c:49:3e:b3:bf:5a:47:f6:
11:fa:12:c7:97:36:88:6b:67:54:fd:33:93:10:25:
ea:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D9:51:D9:77:C7:CE:B8:64:20:03:33:86:8A:73:20:0A:6C:60:0F
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:85:69:eb:92:d1:77:1c:09:ef:9e:0a:72:17:8e:4e:76:52:
0d:f9:50:e2:9a:c0:ef:fb:23:75:ec:73:69:59:45:85:87:a8:
eb:17:3d:fe:84:1e:a4:9e:0c:db:06:c6:8c:03:ce:3a:04:a4:
97:58:5a:76:20:9b:06:08:3e:6f:36:8d:6a:7b:c5:72:f4:bd:
08:29:0a:86:b6:d7:79:e6:58:bb:28:8c:20:e2:d6:8f:29:a3:
91:5e:3b:f9:db:00:cb:04:cc:83:6a:ea:01:76:b8:7d:93:06:
4d:9b:5b:82:63:4f:9b:5a:4b:33:11:db:c7:ac:e1:04:bc:5d:
5a:e8:77:77:1b:fc:df:cd:b9:e7:67:50:22:02:97:78:a4:c7:
f1:24:24:f3:64:04:a9:5c:0a:43:dd:ed:86:b4:ef:73:ef:43:
a9:af:4d:c7:99:f3:ad:aa:48:b0:7b:89:c9:6b:4c:35:7f:f7:
ca:ab:b5:b1:91:4c:34:e2:95:cc:fa:ea:f2:e0:cf:6b:2b:4d:
34:b5:be:15:a0:4d:b9:07:14:4a:12:30:d3:d2:1d:0c:8d:8f:
4c:2d:0e:10:98:bd:27:d8:98:55:ac:76:cd:8a:60:b9:fa:80:
f3:b0:03:df:72:b2:17:d2:2b:b7:ad:a0:37:51:26:79:b8:92:
71:4f:21:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:29:53 2025 by rpki-client