Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
File: al1BD0JdNedNRW9_h7ro7ZKzyCk.mft (raw, json)
Hash identifier: pAnkFhJUrOLQ1cscxFJIQhY3Ip2ezM8YiwL1ZwNzA3I=
Subject key identifier: 49:53:07:08:D0:E8:54:0C:25:98:B4:04:29:3A:FE:CE:A4:94:84:03
Authority key identifier: 6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
Certificate issuer: /CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Certificate serial: 0197D21841D4CC03CF92AC5CCD1D59D5C57B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
Manifest number: 1555
Signing time: Thu 03 Jul 2025 21:01:34 +0000
Manifest this update: Thu 03 Jul 2025 21:01:34 +0000
Manifest next update: Fri 04 Jul 2025 21:01:34 +0000
Files and hashes: 1: YRcPB026UNAbaic7bC0XnagQJ_8.roa (hash: F5LbuOIZKUKKLsIhj9ecbNiDMJqNxgANq1yR2w3iRxE=)
2: al1BD0JdNedNRW9_h7ro7ZKzyCk.crl (hash: GGWxKfoyT7M2wJs1Ydd3lKvJitmKZ96nlX058eHVUX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 17:39:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d2:18:41:d4:cc:03:cf:92:ac:5c:cd:1d:59:d5:c5:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Validity
Not Before: Jul 3 21:01:34 2025 GMT
Not After : Jul 4 21:01:34 2025 GMT
Subject: CN=49530708d0e8540c2598b404293afecea4948403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9f:f8:db:84:ee:b9:5e:21:9d:76:2d:56:26:
96:d3:ea:71:3e:17:42:9f:87:1a:64:23:38:0b:4b:
4c:3b:a4:49:dd:73:25:20:7f:5c:3f:3d:5c:1b:de:
15:69:b1:a6:b5:12:2a:eb:c7:7a:35:d7:f0:55:1d:
85:ae:61:a7:a7:dc:ad:90:99:bc:13:5d:d2:bd:e0:
fd:74:9a:a0:d5:fb:69:47:8e:6b:61:ba:1a:40:0a:
19:34:a2:07:04:3f:23:87:e8:6f:d3:71:7f:1b:83:
80:76:71:6b:4d:79:82:df:74:dc:1c:28:e9:7f:86:
73:4b:b7:7d:22:2f:7f:ca:33:61:c2:1a:77:a2:89:
eb:60:01:6a:30:99:3c:ea:05:86:d7:5a:a1:8c:44:
0f:42:7d:68:7c:d2:b7:b1:f6:fd:c5:76:e4:a1:7a:
39:0b:82:07:83:49:38:4a:51:56:ac:31:4c:df:30:
d9:cc:c9:b1:f0:ed:81:98:22:f4:d8:11:2b:17:07:
b1:ae:7c:93:08:9f:67:22:52:c2:d2:45:7d:93:76:
ae:f4:1b:37:63:f7:af:ba:8c:cd:63:b3:d4:e8:11:
70:8a:de:4e:dc:b2:e2:44:1f:09:06:d9:df:10:60:
d3:2a:39:42:4d:53:55:6b:27:10:70:f5:4b:b5:1e:
72:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:53:07:08:D0:E8:54:0C:25:98:B4:04:29:3A:FE:CE:A4:94:84:03
X509v3 Authority Key Identifier:
keyid:6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:62:18:f7:c3:41:c0:6f:6e:15:e4:87:55:ed:2b:7e:d7:89:
d3:6a:1a:06:a7:4e:b2:79:f3:df:87:51:93:15:05:79:7d:db:
43:13:40:60:e5:76:6a:c6:f7:fd:d8:64:59:41:8a:5c:d8:40:
bf:6a:b1:92:7e:f6:d0:55:d7:70:ac:95:06:c0:64:57:91:45:
87:6d:4b:2f:35:a0:3a:97:ee:0d:93:9c:45:7b:94:a2:27:39:
72:6a:1c:89:79:b7:dd:c1:04:b8:36:56:ad:6e:35:09:b6:60:
8c:20:cb:2d:93:66:92:6c:51:02:f1:92:0c:1a:31:8a:af:09:
9a:e5:6d:57:fd:d0:2a:ac:ac:0f:f3:d9:f2:2b:6d:a0:c9:1f:
4b:3e:77:ce:64:37:0b:1b:2c:e8:de:2c:68:32:e2:e8:68:65:
08:46:b4:ed:10:74:ec:45:5d:90:37:77:a1:c4:0a:87:7e:d9:
b2:16:4e:fe:93:1f:b6:b1:16:3a:1a:28:c9:b2:78:c4:97:a5:
a3:5d:34:0a:df:43:fa:b0:29:b6:34:55:a9:fd:98:a4:21:5c:
45:ac:15:ec:bb:d5:ed:f3:f1:ba:63:3e:bc:ab:c1:b6:29:78:
17:17:2c:78:16:e1:29:b7:fb:42:87:24:cd:57:d3:e5:61:db:
d7:c6:89:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 02:17:20 2025 by rpki-client