Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
File: al1BD0JdNedNRW9_h7ro7ZKzyCk.mft (raw, json)
Hash identifier: 0lXTIgMsNCkMeU6labm6AT5ulv9Z9OoaBnuqynM16mA=
Subject key identifier: 80:53:0C:82:47:8B:F3:F5:FF:5C:B9:D8:24:A9:C9:58:3D:7A:1D:18
Authority key identifier: 6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
Certificate issuer: /CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Certificate serial: 0198D4E0362B65F2344D84BAD4F6881BFCB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
Manifest number: 15DB
Signing time: Sat 23 Aug 2025 03:02:00 +0000
Manifest this update: Sat 23 Aug 2025 03:02:00 +0000
Manifest next update: Sun 24 Aug 2025 03:02:00 +0000
Files and hashes: 1: YRcPB026UNAbaic7bC0XnagQJ_8.roa (hash: F5LbuOIZKUKKLsIhj9ecbNiDMJqNxgANq1yR2w3iRxE=)
2: al1BD0JdNedNRW9_h7ro7ZKzyCk.crl (hash: evkbPrJc3upv7HioE8cwq+t5CfNFMeOEyr1rfCdLhiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:36:2b:65:f2:34:4d:84:ba:d4:f6:88:1b:fc:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Validity
Not Before: Aug 23 03:02:00 2025 GMT
Not After : Aug 24 03:02:00 2025 GMT
Subject: CN=80530c82478bf3f5ff5cb9d824a9c9583d7a1d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:91:ce:9f:04:64:76:66:fc:91:00:d3:12:a6:
8e:6c:69:61:e9:37:07:ed:5f:81:9c:1b:23:68:2d:
3e:f2:d5:e2:f4:26:0e:7f:18:6f:c7:d6:21:ff:2d:
05:db:9a:fc:7d:1f:fa:75:2d:6a:cf:b2:d2:3a:16:
84:69:64:42:8b:f2:35:4c:d7:cc:24:ab:d6:95:61:
ca:d1:3b:2f:60:bb:80:38:83:6c:cb:70:49:bb:30:
cb:ad:5c:9b:59:da:25:fd:f3:5d:17:c6:7c:3a:26:
57:f8:d0:b9:07:e5:17:35:73:95:cd:f5:69:f0:30:
77:30:41:4b:cf:66:41:b5:c4:c9:7c:28:85:e6:aa:
97:fd:b4:3b:4b:26:54:28:76:07:86:f3:3f:b5:c6:
33:e9:4b:22:13:3d:c5:64:38:f2:c4:35:98:05:c2:
29:97:d4:a5:70:a3:17:0c:11:bb:49:cd:38:b2:05:
fe:34:ed:ba:1e:76:6e:b8:30:6e:d2:67:81:09:0c:
74:f2:c8:de:d7:cb:ba:f1:fe:f3:25:7b:13:24:bb:
57:93:44:aa:28:dd:45:97:14:a2:bd:5f:d6:9b:76:
79:78:e2:95:14:50:40:4f:79:71:5c:3b:1d:27:43:
cf:00:d7:4c:29:5c:42:08:ef:69:b3:16:bb:0e:b7:
27:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:53:0C:82:47:8B:F3:F5:FF:5C:B9:D8:24:A9:C9:58:3D:7A:1D:18
X509v3 Authority Key Identifier:
keyid:6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:3a:6d:b7:d0:02:f4:37:4d:7e:0a:73:01:b3:8f:42:a9:b0:
bf:d5:d5:52:15:af:5f:f3:ce:67:ef:d2:ce:5b:2b:67:33:79:
ce:3d:fb:16:a6:92:a8:26:c7:3b:7b:70:07:56:d6:62:d0:1a:
54:b1:29:af:de:13:41:ea:1e:97:3f:87:39:1b:86:3a:a5:50:
93:11:3d:d7:b1:7f:a9:0e:58:7d:f1:03:55:25:14:0d:32:e0:
2d:7a:58:8f:7a:46:2c:9e:dc:50:87:b2:ff:7b:17:fe:ea:ad:
90:1e:1f:8c:9a:c4:78:d8:b3:6a:ea:8d:f7:9c:77:9a:2f:57:
1a:fd:b2:f0:cd:41:f2:1a:80:d3:bd:b5:a2:b1:71:2c:a9:45:
10:98:91:fe:e2:94:76:8e:61:97:91:b6:8b:09:28:37:d1:c3:
6c:03:f3:c7:5d:17:1f:12:f0:b5:78:52:dd:fc:04:7c:05:8f:
b3:71:81:b8:94:5e:da:28:5d:d7:be:9d:7e:2b:b0:a4:12:37:
4b:98:ba:75:84:3b:7e:4e:1d:73:00:b4:28:f7:11:a9:60:a5:
e7:55:5b:6b:16:56:62:89:a1:c7:09:f0:41:57:4a:6d:92:c7:
14:dc:8d:c0:1e:ce:66:1c:5b:2e:19:cc:ce:d3:86:c1:68:a7:
cc:cd:95:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:32:37 2025 by rpki-client