Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
File: 0AL76fCkE2A-3vtzOlMfLiwOnAY.mft (raw, json)
Hash identifier: Tr6BrcsdY5i6mkjzEUORHfxlOjELp82XZAu/1QPB83s=
Subject key identifier: BB:24:47:B9:13:51:E3:B8:C2:30:E4:5A:53:E7:18:04:34:00:9B:A6
Authority key identifier: D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
Certificate issuer: /CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Certificate serial: 01974931940D3470DB69E0AD32940D236F55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 07:01:15 +0000
Manifest this update: Sat 07 Jun 2025 07:01:15 +0000
Manifest next update: Sun 08 Jun 2025 07:01:15 +0000
Files and hashes: 1: 0AL76fCkE2A-3vtzOlMfLiwOnAY.crl (hash: KaDHeILqT1Hl5R5VAYsMi+YIvhNlT6vRtTZQGt7xjwM=)
2: _XUidn5LGX4qhZ_75ajbeYWe1Ao.roa (hash: b/pfq31DckGw+o1qBs5ugJl7vAflaGA+vdef1tZYmPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:94:0d:34:70:db:69:e0:ad:32:94:0d:23:6f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Validity
Not Before: Jun 7 07:01:15 2025 GMT
Not After : Jun 8 07:01:15 2025 GMT
Subject: CN=bb2447b91351e3b8c230e45a53e7180434009ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:95:85:4a:fb:3e:57:31:87:22:1f:df:f1:7e:
f7:11:ee:8d:b5:cb:f5:e5:1d:9a:2a:06:b3:53:0c:
49:db:6e:c0:8e:d7:5b:20:94:12:68:0c:37:c3:c1:
c3:e8:fe:56:c4:d3:f0:38:e0:38:7e:eb:ac:38:38:
36:62:1e:aa:21:68:06:3f:f5:fb:a1:13:01:f7:98:
3c:91:8e:f6:83:8c:6b:c9:3b:82:a2:66:f9:79:c8:
c5:e1:04:66:a5:d3:98:d9:2f:54:03:40:e0:e4:77:
77:c7:c1:c4:18:a2:8f:d2:16:22:35:1c:f3:bc:88:
e4:82:cc:2a:dc:25:a5:b1:af:54:c0:1d:54:d7:66:
26:f0:27:66:91:db:48:60:c6:3c:2d:10:b5:b0:91:
2d:86:1e:19:c1:bc:f6:a9:9e:5e:e5:ee:bb:6e:0c:
fb:86:15:04:1a:43:61:f7:2d:46:61:31:55:4f:c9:
db:16:0b:c8:16:17:56:6e:5a:75:52:86:93:12:5d:
91:c3:c8:e9:35:85:ac:29:66:5e:db:a7:c6:6c:91:
33:53:79:39:f9:8a:88:f5:73:93:1f:5f:4e:88:92:
f4:ca:b2:61:68:2d:4b:3c:5a:91:63:04:2b:84:8f:
c4:bf:e4:40:33:89:09:3b:f7:a1:70:b4:55:25:9e:
f6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:24:47:B9:13:51:E3:B8:C2:30:E4:5A:53:E7:18:04:34:00:9B:A6
X509v3 Authority Key Identifier:
keyid:D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:be:bd:8d:a2:8a:9d:c4:6d:b3:03:26:be:d0:ab:4b:81:4f:
84:3e:19:b2:4e:53:9a:42:b4:52:78:68:02:d2:a8:cb:53:6d:
48:b0:47:b0:a1:16:66:c2:fb:8a:0a:c4:55:3d:ec:2d:77:d7:
55:48:02:de:f2:7b:62:db:3d:5c:f9:ba:6a:c1:16:3a:02:54:
b5:ca:83:93:9a:de:ca:61:23:13:15:34:15:bb:03:c0:0f:1f:
63:cc:7c:eb:78:7d:16:0e:02:24:99:58:73:be:13:5f:d8:01:
6d:b6:08:7e:e5:1e:f1:bb:43:b4:f9:bd:9d:12:a3:3b:52:e3:
0e:76:62:21:77:9a:92:72:9a:d3:93:82:2a:14:c2:32:08:a7:
b6:79:20:1e:47:28:c4:e0:67:eb:1a:6c:4a:f6:cd:ca:7f:6d:
87:81:07:f4:d2:1c:50:cc:ca:0d:e1:be:bf:de:2a:67:d0:a1:
e9:fc:25:3b:2c:c6:39:ad:4b:21:64:12:30:72:86:91:ba:10:
16:45:3e:3d:a0:5d:bf:c6:9c:ab:a3:b0:0e:c3:ca:be:e8:c9:
64:bd:0d:ba:5d:b2:c2:1c:de:46:04:dc:61:35:7f:2a:b4:ad:
fa:be:37:9c:3b:88:cc:fa:19:f8:0f:92:6f:fb:97:e2:0b:eb:
4d:6d:1f:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:55:56 2025 by rpki-client