Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json)
Hash identifier: cr2NqjmI1QJbJ8DBk8BBblkxGH0aMj2KcQ7GvwrE2uU=
Subject key identifier: 60:52:D6:51:E2:B4:AE:82:6E:11:A5:5D:46:6C:1D:52:68:E5:D2:B2
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 0198D65FA1E37DA3DBF27F20FB188FF43B8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
Manifest number: 066A
Signing time: Sat 23 Aug 2025 10:00:48 +0000
Manifest this update: Sat 23 Aug 2025 10:00:48 +0000
Manifest next update: Sun 24 Aug 2025 10:00:48 +0000
Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: Jps5nnbCbRYOkjPqXWRvOFFfV/yleEbtSKCtLNNQWAM=)
2: I1gkA5k4uMZob0hM5xQHdEl5cUo.roa (hash: EhH3dWMV5US/hFp8+LiY1Hpa7FxODhxAHT3s3CfUej8=)
3: V0uScWgIlxby8-atCI31gs7gIls.roa (hash: N1Pj+HryVhCS5We4uz7FXYt4pnqlzxV+cQWuG5ETX4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:a1:e3:7d:a3:db:f2:7f:20:fb:18:8f:f4:3b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: Aug 23 10:00:48 2025 GMT
Not After : Aug 24 10:00:48 2025 GMT
Subject: CN=6052d651e2b4ae826e11a55d466c1d5268e5d2b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:81:9f:f6:0c:55:7f:74:be:b9:04:08:f8:be:
a7:ab:32:db:b2:32:b4:e4:04:3b:8c:ec:52:9b:38:
c4:60:c1:e4:60:29:44:5f:0b:d9:a4:02:4b:ae:44:
f3:cc:fe:be:2a:7d:ac:4a:7d:6a:c6:42:2c:d3:ac:
08:b2:e3:c5:1a:60:b0:4d:31:13:1d:3a:94:f1:da:
20:60:71:51:67:a5:7d:e0:9e:43:29:3e:aa:22:99:
fb:6f:fc:61:20:e0:82:45:b9:ab:47:1f:20:9e:56:
3a:32:e8:e2:52:b3:a0:22:86:e9:a5:17:91:37:ef:
50:6d:e3:25:91:1e:d4:c1:2f:f9:4b:e9:79:90:7c:
6c:10:7c:64:a7:f6:44:7f:c2:c0:0f:4d:52:81:4b:
e1:14:16:6f:51:b5:cc:0d:c6:d0:0e:0c:e2:a6:b0:
6c:25:43:2d:6f:6a:d6:f0:90:55:01:ad:55:40:f2:
27:22:99:f6:2f:f1:0b:07:4a:11:1f:0c:79:13:a0:
ba:e2:76:a8:39:ea:d2:d3:f8:6d:3d:9f:e4:bb:51:
6d:5a:c1:e6:9c:e1:5b:dc:8b:d5:8d:9c:4e:e9:7f:
96:b9:72:45:c2:c6:8c:9f:c8:dc:41:40:46:60:30:
7b:48:a6:b9:5b:f8:1c:c1:41:43:f4:f9:81:e5:b6:
81:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:52:D6:51:E2:B4:AE:82:6E:11:A5:5D:46:6C:1D:52:68:E5:D2:B2
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:8e:07:27:be:9b:60:50:7d:e3:11:50:6f:3d:0d:9c:d1:83:
8b:a7:f7:ee:53:57:ba:53:4d:6d:da:d8:60:1b:0f:24:f2:63:
79:0f:2a:cf:56:ff:cf:8a:60:eb:c6:af:fe:59:4d:5e:e2:3c:
25:99:93:bf:80:c2:a8:37:a3:14:4f:12:57:ff:4e:0b:af:e2:
af:cf:c5:33:d5:1c:db:22:05:5b:0d:fd:45:ea:8c:a5:66:07:
d6:43:70:d1:73:12:68:9d:e8:77:28:3a:3a:f8:9d:24:c5:3c:
b4:d9:9f:e3:44:98:da:e4:25:6e:a3:14:ba:09:15:ca:7c:31:
28:4c:05:1a:3c:d5:79:65:f9:cd:62:56:fc:00:10:6e:45:2c:
99:0b:98:f3:22:47:35:33:96:16:cc:ec:95:49:32:0b:d6:98:
7b:cc:8c:10:d3:ce:6b:76:bc:51:e6:50:23:dd:d2:0b:98:b7:
d0:cc:e3:b0:1b:35:f9:3e:bf:b0:e0:e6:d4:36:13:1b:cf:eb:
80:06:5b:fa:ff:cf:e7:d2:a1:6b:da:08:9d:4c:a0:58:0d:5c:
8a:ca:5a:74:ee:72:63:8b:cf:6a:46:46:18:a4:9e:04:cb:78:
d0:9d:c4:1f:6a:c7:78:47:7b:fa:6e:8e:98:2a:9e:9e:e1:d7:
a0:41:84:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:42:47 2025 by rpki-client