Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json)
Hash identifier: DRVQjO8uoMR4ishFIyOSERTs/3KIIMP6OK4jVVNNbFo=
Subject key identifier: 60:12:C5:D2:BB:D1:95:6E:3E:E9:38:CD:CF:93:15:17:25:66:CE:83
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 0196C34B6B4E685033BCCF3CB5F93E9B15E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
Manifest number: 0557
Signing time: Mon 12 May 2025 07:00:21 +0000
Manifest this update: Mon 12 May 2025 07:00:21 +0000
Manifest next update: Tue 13 May 2025 07:00:21 +0000
Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: LA6ABa8tGhhsBc4aTLL1kpX+19qwWI8KvFqCE+8nNdk=)
2: I1gkA5k4uMZob0hM5xQHdEl5cUo.roa (hash: EhH3dWMV5US/hFp8+LiY1Hpa7FxODhxAHT3s3CfUej8=)
3: V0uScWgIlxby8-atCI31gs7gIls.roa (hash: N1Pj+HryVhCS5We4uz7FXYt4pnqlzxV+cQWuG5ETX4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:6b:4e:68:50:33:bc:cf:3c:b5:f9:3e:9b:15:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: May 12 07:00:21 2025 GMT
Not After : May 13 07:00:21 2025 GMT
Subject: CN=6012c5d2bbd1956e3ee938cdcf9315172566ce83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3b:14:93:3b:2b:09:f9:3b:47:bd:99:fc:21:
57:4b:d0:5b:7d:a4:c2:fd:33:c9:ee:84:96:f3:fb:
eb:06:3c:e9:23:c7:9b:60:9b:68:be:19:ff:00:2b:
84:d0:87:94:15:22:de:c6:f6:91:ef:f8:98:f9:e8:
cb:5e:80:f7:df:ce:ee:5b:f7:14:31:08:02:2a:9a:
e9:52:6c:b1:0c:40:d8:b0:99:9c:14:3f:c3:be:71:
e1:d5:cb:a2:84:e2:26:56:c5:77:f8:17:c9:30:ac:
10:29:8b:1d:8d:42:3f:1a:0a:bd:35:c7:d2:cd:37:
cb:ca:ac:ed:08:72:08:be:e6:20:20:96:d5:a1:cb:
d3:90:ea:28:fd:bd:49:2b:36:ea:6d:70:4c:65:22:
6a:b3:fb:23:36:57:14:83:f3:ec:e0:70:14:77:cb:
8e:2b:90:78:49:74:ff:87:d4:2c:6c:d4:b6:58:82:
cc:54:54:44:6a:81:ee:53:69:3e:e2:37:fb:dd:e5:
e8:23:99:6c:57:fd:57:4f:7b:1c:b2:08:4f:f3:95:
e1:71:2f:53:6d:68:b7:e9:e3:68:58:43:7f:1c:12:
13:05:9c:fb:15:b3:8c:e4:8a:83:68:81:fb:2a:30:
23:6e:31:f3:db:e9:a8:06:45:22:ea:44:cb:9b:e4:
77:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:12:C5:D2:BB:D1:95:6E:3E:E9:38:CD:CF:93:15:17:25:66:CE:83
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:08:a8:3e:75:dd:df:a5:d1:66:b8:09:21:77:36:8b:2a:bb:
e3:2e:e0:ce:e7:72:ea:bf:d7:21:23:b1:81:79:f4:4a:4b:6a:
91:3c:a3:83:fd:33:af:d1:23:c0:4f:d2:7d:21:16:d6:52:81:
51:2f:28:eb:a8:95:18:4e:2b:8d:f9:e1:ab:3b:52:60:a4:06:
98:a8:10:68:85:c3:7c:44:77:1a:58:5d:68:46:4a:df:f4:5d:
2f:8e:a9:82:a4:4f:c7:6d:28:f1:f3:7e:6f:78:2d:f3:db:2e:
3c:8b:6f:8a:e0:cb:2e:13:95:29:2f:2d:c8:21:74:3f:75:17:
22:a2:f6:d4:c7:9a:67:b3:f3:d6:0c:d4:e0:77:e3:ba:4b:08:
ed:9d:11:0a:7c:7d:2b:a6:4c:f6:51:ad:bc:29:a3:88:eb:c7:
07:40:75:37:ab:16:53:a0:15:6f:6d:e7:39:27:8c:4a:df:e2:
85:74:55:40:53:f9:3e:b6:94:9a:a6:e7:c4:78:0c:88:1f:dc:
de:00:98:67:40:b6:fc:c3:e1:fa:d3:85:d5:9d:34:9c:cd:34:
46:8d:53:35:0e:4c:16:00:ee:5c:c4:da:14:2a:14:c8:0e:e7:
91:07:0e:e4:5f:50:a4:61:ae:48:c4:f8:73:2c:5e:63:89:f7:
10:83:4c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:54:13 2025 by rpki-client