Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
File: bAlGwIGzK-hIywDY2TLowfcXlmg.mft (raw, json)
Hash identifier: b/YtPvEio2Al32ozlTngXOgd/y1Z6oyMcfDGa5UM3XQ=
Subject key identifier: DC:BD:7D:E4:B6:9A:AA:89:F6:A3:28:4E:40:6A:4B:5E:09:F5:D1:45
Authority key identifier: 6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
Certificate issuer: /CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Certificate serial: 01974C31D7FF2F98C3125ED8E29675787FC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 21:00:24 +0000
Manifest this update: Sat 07 Jun 2025 21:00:24 +0000
Manifest next update: Sun 08 Jun 2025 21:00:24 +0000
Files and hashes: 1: bAlGwIGzK-hIywDY2TLowfcXlmg.crl (hash: n1K4gCEUimzjf9a3hp8QVSJU+8/inplOBHVCdQZnyF8=)
2: zcbK2VYAm9mMFJWXJQ7evncTyKY.roa (hash: IlkFU9F+u30MyRO9adAYRJd3agbOfEkk4M3dko//XTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:d7:ff:2f:98:c3:12:5e:d8:e2:96:75:78:7f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Validity
Not Before: Jun 7 21:00:24 2025 GMT
Not After : Jun 8 21:00:24 2025 GMT
Subject: CN=dcbd7de4b69aaa89f6a3284e406a4b5e09f5d145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f1:97:d5:f2:40:0a:de:a4:ca:4a:fd:41:60:
51:aa:7e:4c:a5:9f:fb:a1:d9:09:7b:93:4a:0f:81:
2a:37:f0:ce:45:37:da:46:ca:31:39:04:6b:5a:c8:
65:4e:65:29:d4:8d:33:04:67:e6:10:a8:3f:05:77:
f1:d3:98:e9:96:5b:7f:ff:47:df:2d:94:b4:ce:34:
46:35:49:ee:ff:95:3f:a0:11:4b:40:26:85:bc:43:
99:74:d9:53:18:e4:ab:bc:5a:f7:0d:e5:64:2d:3c:
fc:2b:53:d8:fc:cb:c8:0e:5b:84:b4:e6:5f:ea:5b:
3a:6f:64:f5:25:1d:cc:78:ec:01:1d:ac:7d:22:65:
ce:fc:49:f3:c3:e9:80:c3:3b:36:6c:68:2c:0b:03:
c4:20:dc:b0:3b:5f:0e:40:b3:33:77:38:8f:f2:03:
a1:f4:d7:42:f7:c0:19:5b:35:0c:70:de:22:0d:c5:
f8:89:52:4b:72:2c:de:bc:e9:71:72:eb:af:7c:13:
1e:e5:bf:da:08:96:f0:c0:ad:a3:a5:ec:b4:11:12:
51:e9:43:6a:e8:42:d0:bc:8e:85:42:08:8b:31:b2:
92:34:8b:d4:cf:ba:94:eb:87:30:2e:38:35:b1:bb:
42:fe:f5:44:39:fc:63:d9:2d:bb:00:10:3b:44:a9:
e4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:BD:7D:E4:B6:9A:AA:89:F6:A3:28:4E:40:6A:4B:5E:09:F5:D1:45
X509v3 Authority Key Identifier:
keyid:6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:a1:70:f8:c6:c4:27:a8:be:a4:82:42:86:95:6d:10:1a:85:
7e:8b:9c:71:a2:bc:90:f5:67:54:d9:e2:47:ca:12:e4:54:20:
fb:36:2f:39:ae:0d:a1:4d:3d:e9:6d:0d:90:d0:3f:90:38:b6:
62:8b:6f:f0:5c:56:b7:a4:7b:d9:cc:b0:a1:7a:d6:56:95:c8:
d6:fa:c7:aa:0e:29:76:7b:f3:d9:fb:5b:8c:cd:fc:fa:c8:b8:
4a:e4:1b:14:26:55:db:58:52:35:3d:68:7a:2f:2c:25:07:64:
be:3a:0a:eb:f6:af:7d:66:33:0b:b3:c3:67:12:a3:e7:17:5a:
33:fd:c8:3e:76:58:a1:11:4c:43:1e:a4:3a:ff:5a:aa:3a:9f:
3f:19:2d:16:5a:03:35:e1:17:48:e2:34:2e:b8:44:69:6b:d6:
80:cd:6d:f0:f3:a8:89:0a:09:5b:40:5d:9d:ec:da:ee:0b:39:
c9:db:d7:37:ef:f0:fc:63:b1:89:ba:e1:0b:26:57:6a:8e:b4:
c1:39:f8:74:2d:c6:42:1e:33:99:5b:c0:fe:6a:90:45:fb:5b:
00:3b:49:2d:58:ad:ff:fd:bf:25:87:e6:38:df:37:93:2c:b2:
35:54:c5:94:eb:61:f3:2c:44:56:d4:44:73:5c:33:7e:e1:1c:
28:04:69:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:44:34 2025 by rpki-client