Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json)
Hash identifier: H3HyCrE4EX4I3MDmGMMfZvaeJPd5+i+sV+lSpM03Oxw=
Subject key identifier: 34:81:90:59:0B:2A:D9:4C:86:EB:B8:70:D0:3A:50:F6:1A:F2:D5:98
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 01964D7EE7900F102206E9FBACB5E1FFBB94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
Manifest number: 051A
Signing time: Sat 19 Apr 2025 10:01:24 +0000
Manifest this update: Sat 19 Apr 2025 10:01:24 +0000
Manifest next update: Sun 20 Apr 2025 10:01:24 +0000
Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: YF81fPN41+5q/Nwd7P2An8yYz44gOCXNETAP5u1eiUY=)
2: I1gkA5k4uMZob0hM5xQHdEl5cUo.roa (hash: EhH3dWMV5US/hFp8+LiY1Hpa7FxODhxAHT3s3CfUej8=)
3: V0uScWgIlxby8-atCI31gs7gIls.roa (hash: N1Pj+HryVhCS5We4uz7FXYt4pnqlzxV+cQWuG5ETX4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:e7:90:0f:10:22:06:e9:fb:ac:b5:e1:ff:bb:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: Apr 19 10:01:24 2025 GMT
Not After : Apr 20 10:01:24 2025 GMT
Subject: CN=348190590b2ad94c86ebb870d03a50f61af2d598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:76:db:ef:7d:b1:d5:34:71:6c:53:02:00:b9:
33:30:6d:e6:76:21:03:dc:27:9c:53:cd:77:cf:f9:
54:2c:d1:c3:27:11:e1:88:16:cf:58:ca:55:97:b9:
ec:77:6c:05:8d:55:d5:6e:dc:89:d1:4b:d7:6d:0f:
2b:7a:51:ba:b0:ac:3b:a3:26:79:94:74:fa:96:e4:
80:57:3b:10:d6:20:fc:4a:29:35:82:12:d7:d9:0a:
0d:94:13:11:61:d7:52:61:61:75:67:95:00:eb:45:
d1:72:49:e1:43:04:bb:bd:fe:9b:1f:c8:26:ef:21:
05:1f:a4:de:75:62:de:a2:e8:91:13:aa:a3:78:8c:
e6:0a:67:99:90:16:6d:57:2b:50:83:8a:93:00:99:
e7:9a:75:b1:21:db:89:1f:c4:36:7a:5d:b2:4a:6b:
26:3a:54:e7:b9:34:5c:bf:5e:2a:8c:ba:9c:bf:2c:
c7:53:71:f6:6f:2d:83:e1:9a:fe:a6:ec:91:76:2c:
5c:42:a3:7e:3a:97:ec:97:28:52:eb:68:b6:94:35:
23:04:d6:7c:72:f8:b9:2e:6a:7d:a7:af:80:bb:eb:
d1:93:46:48:63:86:3c:26:2a:e5:eb:b7:66:3e:59:
f6:30:b8:8c:b0:d9:1a:98:5f:14:0a:32:93:f0:9a:
ba:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:81:90:59:0B:2A:D9:4C:86:EB:B8:70:D0:3A:50:F6:1A:F2:D5:98
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:56:f0:7c:d7:9d:af:43:40:55:fb:17:be:ff:f8:c7:fe:9e:
6f:1d:2f:25:c4:13:a2:ac:1c:45:30:6d:1d:43:ff:92:ec:5f:
6d:91:e9:bb:80:c1:e1:e2:59:04:ea:f4:af:0b:d9:fa:b7:3c:
b2:14:2a:f3:ea:f1:79:ab:12:ea:31:43:c2:71:94:3a:0f:f0:
6d:35:fe:2b:c0:57:f3:b3:db:f6:09:11:b7:ec:27:b8:ea:96:
50:de:0c:d0:e1:bc:31:db:80:05:57:33:a8:b0:4d:22:a5:06:
c2:8b:e2:d1:49:d5:e2:5e:2e:8b:3c:8c:09:e9:dd:98:19:32:
1a:a1:cf:5a:2d:8f:17:6d:1b:10:fb:9b:46:dd:1e:cd:e6:4f:
c0:68:61:29:7b:46:bd:38:10:17:01:b2:ce:fd:62:c5:13:c7:
82:d6:66:53:b2:5d:d7:bd:f3:30:59:51:64:a2:cb:8d:b3:e7:
8b:ea:e1:ec:79:ad:04:f0:62:17:44:27:d5:cd:37:52:c8:fe:
3c:90:60:4f:4a:2f:13:8b:37:52:26:8e:cd:86:d7:ed:32:b2:
73:3a:e5:c5:58:bd:4d:3f:13:23:f5:d3:13:cb:92:e4:c4:f7:
e9:09:88:b6:0f:24:82:21:d5:7c:ac:a4:d9:49:99:84:1d:6e:
2f:8d:17:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:31:18 2025 by rpki-client