Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json)
Hash identifier: UBoV+U+qwTs1AjyqbKdhwT+VgRwgQI082VGz+W9e6Yg=
Subject key identifier: 1D:72:CB:82:20:DF:D3:57:2E:75:E7:E0:4D:47:F6:8C:51:6A:95:F3
Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Certificate serial: 019A71B871FE8A10DAE680275A07044EC5B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 07:01:44 +0000
Manifest this update: Tue 11 Nov 2025 07:01:44 +0000
Manifest next update: Wed 12 Nov 2025 07:01:44 +0000
Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: xlUEjiepA5ToZ5Fb34e5jv+6gSMI/lDvOBh7YzNYVsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:71:fe:8a:10:da:e6:80:27:5a:07:04:4e:c5:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Validity
Not Before: Nov 11 07:01:44 2025 GMT
Not After : Nov 12 07:01:44 2025 GMT
Subject: CN=1d72cb8220dfd3572e75e7e04d47f68c516a95f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e9:f7:f5:41:a0:0c:7b:dd:d0:2e:ca:7b:e9:
fe:68:4c:57:23:32:13:7f:ba:62:25:a5:d2:37:53:
9e:bb:ef:dd:93:5c:d8:74:bb:b8:05:97:b2:37:46:
dc:2e:fb:07:62:8a:c8:91:67:69:1c:aa:0b:63:63:
5f:e7:cd:d3:31:e4:a0:92:37:98:00:a8:c2:e8:53:
a5:d8:24:e7:88:f4:a8:25:1d:2c:18:9f:fe:8d:71:
00:24:57:ed:05:11:9e:05:77:74:2e:3a:7d:81:fd:
6a:b7:fb:5c:b8:7f:2a:b9:d5:74:bf:5d:72:01:85:
06:69:ef:7f:da:dd:08:0a:dd:22:0a:65:99:b2:35:
97:a7:41:ab:36:4f:56:32:b5:f0:c5:81:55:97:d9:
02:57:08:d0:61:49:35:dd:07:31:48:e5:14:ab:72:
06:ec:95:29:53:db:6f:e9:4d:87:bc:a5:d9:59:b9:
16:1d:71:60:6a:c9:b8:73:d8:42:70:11:d1:bd:6f:
3d:73:c5:b9:3c:87:42:9a:82:4f:86:7f:04:ee:22:
52:87:6c:d1:4a:01:10:e7:67:da:5e:7d:f6:9b:36:
e3:bb:94:8a:4f:a7:70:f1:0b:a8:24:e7:32:cc:7a:
07:c9:9a:9c:76:ff:33:0f:7e:6b:46:3e:b6:3d:9d:
da:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:72:CB:82:20:DF:D3:57:2E:75:E7:E0:4D:47:F6:8C:51:6A:95:F3
X509v3 Authority Key Identifier:
keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:85:ab:86:a8:dc:7c:15:cf:57:45:bc:33:00:f2:6f:29:1b:
43:c8:7f:d6:1f:28:c0:ee:f0:db:64:ba:e9:b7:5e:9a:21:27:
03:ab:02:ef:56:2e:fb:37:4c:8b:68:2a:b3:38:c7:6a:bd:e3:
a6:73:c6:43:07:61:0d:75:e8:01:64:18:dc:85:b9:f4:8a:e8:
57:58:5b:f9:4d:ad:58:15:3b:76:fb:9a:d7:d7:00:4b:8b:67:
7b:7d:74:8d:e6:b6:48:c5:c4:ff:40:73:26:3f:61:11:84:83:
a4:5f:a4:c6:ce:57:2c:05:7f:98:fe:ac:99:7b:6a:79:18:ec:
a1:16:fc:09:c0:fe:2f:ed:39:49:e8:c6:c7:51:91:8f:fd:3c:
bd:5a:dc:4e:09:fd:81:b2:8c:4b:47:ba:ac:82:90:41:19:7d:
ce:d4:ee:0e:18:fa:3d:5e:5f:ec:fb:48:52:d4:49:b5:35:ae:
4c:34:ba:21:0f:38:89:cf:26:80:c2:e2:39:b9:a2:3a:77:2f:
d2:c7:58:1a:c8:89:f4:26:e9:23:15:35:31:67:20:47:fd:c0:
38:2c:6b:44:81:8f:7c:89:1d:81:4c:e4:4a:29:04:b7:7a:8a:
5b:b3:2e:37:50:4f:f6:be:15:42:58:5f:ff:cc:e2:5b:fa:36:
87:8e:11:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:41:52 2025 by rpki-client