Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
File: bAlGwIGzK-hIywDY2TLowfcXlmg.mft (raw, json)
Hash identifier: x3HR82JRk7rldR/5qHHn8LuWQGIwhlslFohM2qR01XI=
Subject key identifier: F9:A2:EF:48:4A:69:F8:52:98:A2:42:6C:13:0D:27:8E:8A:F3:BA:B4
Authority key identifier: 6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
Certificate issuer: /CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Certificate serial: 0196B5903CB9E06FA7EFBC5849468AF9E9C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
Manifest number: 152F
Signing time: Fri 09 May 2025 15:00:50 +0000
Manifest this update: Fri 09 May 2025 15:00:50 +0000
Manifest next update: Sat 10 May 2025 15:00:50 +0000
Files and hashes: 1: bAlGwIGzK-hIywDY2TLowfcXlmg.crl (hash: hUpbP8C1ajmFOAJere5oWH9eaELPRUfIwDPu6lqZCmM=)
2: zcbK2VYAm9mMFJWXJQ7evncTyKY.roa (hash: IlkFU9F+u30MyRO9adAYRJd3agbOfEkk4M3dko//XTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 15:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:90:3c:b9:e0:6f:a7:ef:bc:58:49:46:8a:f9:e9:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Validity
Not Before: May 9 15:00:50 2025 GMT
Not After : May 10 15:00:50 2025 GMT
Subject: CN=f9a2ef484a69f85298a2426c130d278e8af3bab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d1:6e:e4:05:6d:85:60:63:c1:09:6e:1d:47:
56:80:66:53:c1:13:d8:90:a0:5e:3f:b0:d6:bd:fd:
f4:90:17:de:81:03:3c:49:ce:ca:bf:60:30:60:81:
2c:37:ee:99:26:d6:de:7c:12:22:42:1f:9a:00:13:
fd:4b:ef:74:98:75:ad:69:cd:1c:e6:e9:75:4f:53:
4d:8a:95:19:f2:4e:75:c5:30:7b:8a:f3:a2:8c:d7:
ec:c5:40:20:09:0a:e5:99:0a:14:4b:3d:11:1b:dc:
72:ae:de:86:15:4b:fd:dc:97:b5:74:51:a7:af:50:
0e:58:88:70:f6:81:3c:1e:ab:ee:49:03:cd:40:01:
6c:c4:91:ab:15:48:22:d2:1f:a6:a2:d4:23:24:c2:
c8:ff:f8:4a:57:9c:55:32:2b:13:e0:5c:3a:2f:c6:
aa:30:dc:b7:9f:f7:cb:e4:f3:95:2c:13:63:98:98:
f5:b4:3c:4d:e1:a1:78:f1:4a:a4:39:70:f9:c2:b9:
65:24:b8:98:62:88:e9:13:73:27:27:c4:03:b7:52:
77:4d:e6:66:7c:be:4e:75:1d:29:a0:74:71:a9:c1:
40:ed:e9:84:e6:9b:67:2b:fc:eb:a4:f5:7c:29:73:
09:a5:6a:d3:69:86:65:42:94:5c:4c:dd:52:8b:4d:
05:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A2:EF:48:4A:69:F8:52:98:A2:42:6C:13:0D:27:8E:8A:F3:BA:B4
X509v3 Authority Key Identifier:
keyid:6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:72:31:07:4e:00:27:4f:d8:d2:1f:13:98:3c:40:df:8b:8c:
4c:ed:9c:4f:69:32:18:43:7d:73:c6:96:d8:39:e3:95:d1:5b:
33:0c:df:71:08:ce:46:98:95:69:4a:5a:6b:57:86:3c:cf:23:
a1:9d:04:7b:a4:eb:fc:af:79:1a:47:ce:4e:34:83:1d:65:35:
23:26:63:1a:bc:78:23:bb:a9:df:80:61:5c:28:7f:54:03:76:
27:72:00:98:e8:2f:80:e7:ff:5d:57:3c:77:b8:81:38:fa:32:
64:ca:44:14:de:05:2a:58:36:25:20:05:d8:ee:9f:20:63:65:
07:22:b7:f6:4a:01:b5:41:4c:ac:d9:bc:47:f3:2f:c5:e2:83:
a7:58:ea:34:b7:41:01:fe:b5:eb:cd:2c:96:45:65:30:10:3a:
f0:0d:34:61:77:88:77:c2:ab:53:ae:09:3b:8c:4c:5b:aa:d8:
2a:1e:82:09:2c:e3:79:69:4e:2a:82:81:29:c1:35:9f:b8:1e:
15:3c:5e:ad:1f:7a:8c:25:b4:c4:30:9d:d1:69:d6:86:ae:97:
29:70:41:bf:70:b6:84:45:a0:9e:c1:79:7e:ee:9d:de:70:3f:
aa:de:51:a9:a2:21:a0:49:82:e2:4c:c5:5f:c7:79:78:25:38:
01:e3:c9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 22:38:44 2025 by rpki-client