Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: 1Bh4ll7i5mEgh6fc4qCu5pJvi6YZsNszxbX3eYmFblU=
Subject key identifier: 58:26:03:B7:8E:FF:F7:95:C0:4A:E6:9A:89:C5:DE:18:A2:0D:44:4B
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 019747E74F438EA3256A1E7FF04F805BCBE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 093E
Signing time: Sat 07 Jun 2025 01:00:30 +0000
Manifest this update: Sat 07 Jun 2025 01:00:30 +0000
Manifest next update: Sun 08 Jun 2025 01:00:30 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: YioqPmrjhUOJJeOrPUZNljVkxi0gH2/I9jQFFFtHpTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:4f:43:8e:a3:25:6a:1e:7f:f0:4f:80:5b:cb:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: Jun 7 01:00:30 2025 GMT
Not After : Jun 8 01:00:30 2025 GMT
Subject: CN=582603b78efff795c04ae69a89c5de18a20d444b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b0:65:e3:ae:c4:9f:73:8b:54:8d:64:35:c7:
38:13:56:d3:dd:08:08:43:dc:b2:1f:10:07:72:28:
34:01:f3:f9:c9:2d:57:d7:ce:0f:8c:d8:1c:74:94:
88:8e:43:d8:ac:2d:c0:30:ae:01:e0:7a:b8:22:74:
72:da:52:21:17:73:31:32:21:08:fc:32:be:46:9b:
a3:14:f5:58:59:94:61:87:94:9d:4f:90:2b:ff:0b:
cd:1f:69:3b:8b:2f:d6:06:f6:b9:c6:e2:58:7d:6e:
82:04:28:6a:00:79:78:d4:97:ee:61:55:e8:f2:45:
3a:31:24:d5:8b:11:33:36:ab:9b:95:89:cf:cf:20:
16:31:45:0d:d8:0d:f2:45:01:cf:63:08:9e:38:14:
53:ec:7b:46:e2:b0:6a:bd:ae:83:2e:d0:36:94:53:
b1:2c:b2:a6:f3:eb:5f:ae:17:9e:03:eb:5e:fa:2d:
d3:f4:2c:47:54:cb:53:1d:28:07:bd:7a:ba:7d:02:
18:0f:11:b3:f3:3d:15:fa:7a:47:46:89:7a:8c:3e:
c7:5f:7d:aa:7c:00:d6:19:b1:53:4d:83:87:f9:64:
77:87:f4:ab:4e:e6:45:3f:76:09:e8:0a:b5:0c:ea:
e8:6b:ad:7d:75:65:1e:92:a5:b2:4e:35:33:6d:5d:
ce:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:26:03:B7:8E:FF:F7:95:C0:4A:E6:9A:89:C5:DE:18:A2:0D:44:4B
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:f8:ce:2d:1f:8f:0c:9b:30:73:e7:fb:d0:f0:f0:e4:d5:e6:
d7:9a:68:67:a5:52:2f:62:59:20:1b:8a:8b:32:4a:a7:3f:f7:
94:65:33:47:2e:6b:9e:c2:9d:cf:4a:19:e1:8b:03:7f:08:d1:
b4:a8:d2:1f:8f:2f:3f:5b:7f:30:a4:a2:5d:e7:d2:12:cf:16:
bc:59:14:12:4d:49:7f:82:b9:9d:94:1b:c7:bc:9b:2e:62:97:
fd:38:c5:5e:dc:83:78:5e:0d:f5:65:1b:69:df:2c:24:56:4a:
4f:5c:cc:48:2a:51:14:37:3f:28:7d:55:1a:5f:80:32:a4:82:
f0:15:41:d3:a9:7d:44:e9:64:cd:70:3e:d2:e9:9b:6a:96:4b:
00:19:8d:08:cd:cb:66:32:b6:e0:50:db:10:e8:ab:d1:95:cf:
e6:44:7f:7f:83:81:62:f6:4f:84:d7:ca:47:53:61:5b:4f:0d:
58:01:7d:68:89:3e:f4:6d:f5:7e:61:5b:9b:b3:ab:1b:14:10:
99:ba:cc:5f:11:15:7f:35:66:30:f0:30:ac:2e:72:3e:4a:c8:
a6:f3:6f:04:d5:4c:ca:e8:9f:40:85:63:b4:10:d6:93:45:a1:
3b:93:c8:57:fa:80:1c:a5:52:50:a7:69:4a:ff:e8:e2:e1:43:
c9:9d:a9:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:20:56 2025 by rpki-client