Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: o2u8By56c1DNKOy3b+5/LiA1OW29xecGEQ9e3HT82xI=
Subject key identifier: 34:31:F1:0B:20:3D:51:7F:C5:BD:EE:47:15:8D:40:D0:8D:21:93:FD
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 019922FA70FD7DF09F9808E444922301EA6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 0A34
Signing time: Sun 07 Sep 2025 07:01:02 +0000
Manifest this update: Sun 07 Sep 2025 07:01:02 +0000
Manifest next update: Mon 08 Sep 2025 07:01:02 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: hMAtITyqtS3FM29UzUDYE4YEj5ecQVlgMUdv+HjkOLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:70:fd:7d:f0:9f:98:08:e4:44:92:23:01:ea:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: Sep 7 07:01:02 2025 GMT
Not After : Sep 8 07:01:02 2025 GMT
Subject: CN=3431f10b203d517fc5bdee47158d40d08d2193fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9b:7b:b5:ee:df:25:0c:0e:ee:14:35:5d:71:
71:bf:94:2d:a5:24:32:c8:7c:fe:f1:69:9b:5d:ba:
b5:6c:fa:b9:a2:b7:9c:ac:2e:8d:b2:38:59:f9:62:
f1:c0:c8:78:80:f3:78:75:b7:93:14:37:f1:6b:dd:
61:ee:ab:eb:17:d7:e1:23:32:28:02:8b:80:16:ae:
23:87:14:36:28:31:81:c4:dc:6c:e4:79:12:8b:85:
04:92:39:53:d3:e3:27:17:8f:b8:12:5a:fd:b0:0a:
34:03:7c:72:ce:65:c9:0c:c9:2e:9e:bb:4c:d8:c9:
93:f6:b2:ea:f9:41:ed:67:95:d3:06:bd:30:ef:c8:
20:fd:7b:fb:bc:0b:59:0c:0c:7a:be:15:4c:de:4c:
b7:ef:5b:b7:47:ec:be:e9:49:4f:16:4f:fb:79:86:
44:31:0e:41:ec:c7:3b:7c:42:3e:f6:3d:51:66:b3:
f3:9e:7b:d9:68:f3:41:8f:f7:04:6a:f3:f5:de:eb:
26:f1:8b:aa:c8:df:c1:bd:bb:ca:5c:8c:d4:ca:e4:
c3:98:f9:53:a7:2e:11:ef:df:bb:cd:4d:0a:21:9a:
34:d4:95:cf:20:ad:75:b1:19:fd:22:f6:df:a0:ec:
8c:85:29:ce:89:18:7e:6d:0e:08:13:39:a0:f4:8a:
7e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:31:F1:0B:20:3D:51:7F:C5:BD:EE:47:15:8D:40:D0:8D:21:93:FD
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:30:d6:29:77:ce:dd:48:e4:5b:6f:e0:ce:b3:d1:e2:84:fb:
d7:15:a9:8f:96:0a:63:a6:64:00:be:97:01:33:93:8f:44:8c:
d2:1f:15:db:a1:90:5e:6e:69:29:82:1e:73:65:dd:71:5a:21:
a8:57:85:7d:cb:0a:c6:cb:0e:52:9d:0a:e4:aa:1e:84:74:f6:
8f:93:a0:09:76:b3:47:f2:6b:1e:12:37:e8:f0:c9:b6:5b:67:
0e:67:f0:3d:20:27:a3:aa:8d:5f:28:b7:cc:96:9d:85:13:fd:
62:ee:58:50:1f:fc:03:98:a4:75:01:ea:2f:ab:f3:67:81:e4:
48:3c:ff:f8:cd:a0:f2:61:c8:8e:2a:42:2e:cf:a7:1e:62:9f:
02:95:c8:f2:f2:34:ee:1d:c4:6b:b2:e4:07:e3:b1:cf:f1:00:
70:65:75:24:7d:26:e9:20:b6:45:54:f1:13:3c:db:93:62:04:
87:d8:1a:92:fa:a1:0e:e3:bd:26:af:43:40:62:d9:d4:da:0e:
77:76:1a:da:77:e0:2a:7d:5b:98:a6:14:69:00:39:34:dd:9a:
3d:b8:ba:52:76:d3:df:0f:dc:95:40:12:0d:bf:66:56:62:ad:
38:cb:17:fb:88:bd:d5:07:82:c5:aa:24:52:61:f5:ad:b0:4c:
a9:34:75:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:43 2025 by rpki-client