Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
File: bAlGwIGzK-hIywDY2TLowfcXlmg.mft (raw, json)
Hash identifier: ZBJmDv+b5uBCKCWkajgowMpzF8JBXcjrfBySr6i3R2E=
Subject key identifier: F2:AF:F7:15:D1:18:C6:E9:45:1C:F5:DB:17:5E:D7:D1:D2:5F:9B:EF
Authority key identifier: 6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
Certificate issuer: /CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Certificate serial: 0197B88F68D8CA9B2B1F4FB09DEE4C8F93AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 22:01:35 +0000
Manifest this update: Sat 28 Jun 2025 22:01:35 +0000
Manifest next update: Sun 29 Jun 2025 22:01:35 +0000
Files and hashes: 1: bAlGwIGzK-hIywDY2TLowfcXlmg.crl (hash: iOppHvqW7NKZ6H+6C7RsxyjGNrkW4/j8anTJusT0qrc=)
2: zcbK2VYAm9mMFJWXJQ7evncTyKY.roa (hash: IlkFU9F+u30MyRO9adAYRJd3agbOfEkk4M3dko//XTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:68:d8:ca:9b:2b:1f:4f:b0:9d:ee:4c:8f:93:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Validity
Not Before: Jun 28 22:01:35 2025 GMT
Not After : Jun 29 22:01:35 2025 GMT
Subject: CN=f2aff715d118c6e9451cf5db175ed7d1d25f9bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:fc:8b:94:79:d7:12:4e:f7:ad:e4:4e:cc:ab:
9e:6e:45:45:9c:79:2c:10:e0:1d:09:33:bc:de:06:
7d:5b:84:69:58:5d:bf:d6:75:91:98:24:a5:b5:4c:
ad:dc:d6:81:16:61:c2:b0:80:8b:53:fd:ca:38:6c:
38:35:52:58:ef:e3:58:1b:52:76:fe:e1:c6:b1:d5:
2c:a7:eb:6b:99:2f:45:07:f8:ac:53:2b:c0:a6:f0:
0c:00:88:3e:57:71:08:47:c8:cf:31:68:6b:27:ec:
10:42:3b:ad:ba:4b:85:b2:2c:d9:91:48:b4:6e:1c:
ec:99:47:f4:45:74:91:20:cc:d6:59:66:1b:da:5c:
e2:2c:d0:a9:d7:32:b6:f4:0e:5f:19:a2:76:63:33:
e4:55:e0:47:b2:2e:66:5d:25:6e:33:ea:26:b9:d5:
33:e0:c1:62:cc:c9:9c:90:ff:62:17:86:5f:58:4f:
32:ef:34:81:d9:48:96:77:8c:a6:13:63:db:de:65:
f7:0a:d1:aa:8c:ce:cb:08:00:a5:b6:09:c1:15:19:
6d:c3:76:a1:cf:8a:37:dd:76:f4:69:c1:4e:4e:1a:
0b:fa:3e:e8:c3:4d:22:89:86:85:fd:03:53:08:89:
71:8b:bc:f3:cc:d6:f9:75:96:52:81:73:1a:84:c3:
16:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:AF:F7:15:D1:18:C6:E9:45:1C:F5:DB:17:5E:D7:D1:D2:5F:9B:EF
X509v3 Authority Key Identifier:
keyid:6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:81:b0:2f:e0:11:d9:90:64:f5:e3:96:c7:bd:47:ca:40:30:
70:79:b5:3c:2c:8b:76:d1:96:43:de:ce:9d:b8:52:e3:a3:e0:
af:ea:8d:ad:fd:18:3e:cc:3f:1e:56:7b:1d:7c:ed:cd:a7:bc:
90:42:bd:9d:86:56:20:c7:16:04:51:44:72:ab:1e:f8:23:49:
4b:8f:9f:17:e0:dc:c1:ce:05:ec:ec:7b:25:67:ba:55:95:38:
22:6b:23:93:64:18:01:1d:9d:50:2e:19:fc:7b:70:66:fc:45:
31:4f:06:72:19:a4:a3:91:93:93:15:cb:06:09:86:5c:fe:fe:
bf:73:b2:2b:26:e6:47:f5:c1:eb:ad:d7:64:00:3e:42:1c:89:
d2:b1:99:27:00:12:34:91:fe:7c:73:9f:20:4e:e9:4f:d3:ad:
5d:46:25:e4:8e:9b:35:7d:3d:7c:1f:4a:ff:e4:b0:6e:33:96:
f0:af:37:a8:d0:db:ff:e0:e9:b5:6e:10:07:c8:aa:e1:ac:61:
48:62:4a:57:e6:93:26:65:d1:f4:ca:8b:df:6c:24:31:b3:32:
64:5b:67:6c:72:5d:b1:29:06:b3:a4:cc:20:4d:4d:84:b7:10:
90:16:3e:17:8d:60:c5:df:2d:f7:fb:b7:17:bd:14:ea:22:41:
16:64:f8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:38:48 2025 by rpki-client