Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json)
Hash identifier: 2sOtjnxcVbnkciADok6Jdny2Pd/OOiWQcEE35hJAyPc=
Subject key identifier: 3B:CE:EB:B9:80:93:27:75:1F:C9:5A:14:C7:8E:B0:E0:5D:96:39:DE
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 01974A7AF00F04743CFBCB40BB1EB93E6744
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
Manifest number: 059D
Signing time: Sat 07 Jun 2025 13:01:00 +0000
Manifest this update: Sat 07 Jun 2025 13:01:00 +0000
Manifest next update: Sun 08 Jun 2025 13:01:00 +0000
Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: OgAQeh/slQdXgBbMQ5iewCU/peUvPPdfO2qhp9WkIGo=)
2: I1gkA5k4uMZob0hM5xQHdEl5cUo.roa (hash: EhH3dWMV5US/hFp8+LiY1Hpa7FxODhxAHT3s3CfUej8=)
3: V0uScWgIlxby8-atCI31gs7gIls.roa (hash: N1Pj+HryVhCS5We4uz7FXYt4pnqlzxV+cQWuG5ETX4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:f0:0f:04:74:3c:fb:cb:40:bb:1e:b9:3e:67:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: Jun 7 13:01:00 2025 GMT
Not After : Jun 8 13:01:00 2025 GMT
Subject: CN=3bceebb9809327751fc95a14c78eb0e05d9639de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:14:0e:73:f3:24:ba:0d:b0:af:f6:aa:58:77:
88:61:dc:c6:c3:d3:0d:2d:b1:57:c4:33:8b:43:10:
49:a1:d0:61:73:6c:0e:9d:9f:f1:e9:31:8b:7d:c7:
27:41:6c:f8:cf:e9:1a:ac:1d:7a:0f:27:9b:85:f8:
dd:fd:8a:4a:fe:99:b6:16:b0:dd:d9:d5:4f:ea:f6:
22:fd:32:6e:0f:15:34:81:c3:1b:11:30:3a:74:42:
21:51:d9:9a:30:0a:e5:68:30:61:d6:82:65:18:a3:
06:69:a3:38:a1:3c:d7:b9:bb:21:ad:21:16:79:d9:
83:f8:54:40:c9:bd:29:d8:59:79:ac:eb:67:06:61:
0e:6d:b1:f6:cd:0d:c8:75:0a:15:f1:a1:94:60:fd:
4e:38:54:7a:d6:85:99:02:02:1f:5b:51:42:6f:5a:
0a:7a:d6:a9:f0:dd:7f:38:9a:92:44:9d:2e:4b:0d:
3c:0f:a7:0c:15:46:c0:0f:c0:71:77:2e:d5:6c:b7:
bc:a1:f3:f4:d5:f7:8c:d9:7e:86:b3:8f:5d:21:55:
3c:89:4a:02:a4:66:22:f2:49:b3:30:40:20:ac:6b:
af:37:1c:9e:d2:b3:eb:ac:8a:b8:a5:cf:b7:fc:2e:
4e:1d:1f:48:1d:58:77:77:61:b8:f5:d6:58:91:c6:
4f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CE:EB:B9:80:93:27:75:1F:C9:5A:14:C7:8E:B0:E0:5D:96:39:DE
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:bf:e0:7b:2f:8a:c6:4d:be:9a:76:b0:1c:c6:c3:db:26:43:
02:03:e6:dd:eb:aa:8f:3f:37:d0:70:11:a8:c2:be:e5:3a:a8:
15:66:a9:04:81:a9:d5:fa:6f:69:3e:3c:83:4b:d1:b2:24:95:
dd:34:34:b1:2a:93:3a:f9:9c:d4:99:8b:ea:21:96:0b:0e:6f:
db:ad:e6:8b:b7:c3:b6:e5:a5:10:0a:66:88:8a:19:ac:77:44:
27:9c:4d:29:8a:aa:5f:63:6a:a7:e1:1e:fd:6e:b5:44:e8:54:
4a:9f:d3:ed:62:9c:b8:e9:89:bf:c5:90:14:95:cf:97:e6:6d:
66:2d:c4:fc:f2:3b:9a:6e:27:16:ea:e8:22:c8:32:07:8a:cd:
8d:b3:d0:3a:63:21:ba:ab:e0:35:c7:91:31:ae:99:9a:c0:53:
8a:9d:57:1f:ee:7f:83:dd:dd:22:ba:8d:0a:4a:c2:b4:7c:fa:
b6:0b:39:f1:cb:88:ce:f8:ad:63:57:6e:d6:df:dc:a5:14:90:
77:0d:38:ba:94:e1:29:c8:88:93:47:bc:52:8f:d9:d6:3b:41:
62:8d:be:29:bc:17:86:22:05:d6:74:96:72:17:cf:6c:a1:73:
b5:b1:ab:a8:7d:d3:c0:c1:ca:25:27:a9:2a:bf:79:9b:73:2a:
29:05:24:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:04:11 2025 by rpki-client