Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
File: AlY31IiO4AWN6a06cMQtxGmWmpk.mft (raw, json)
Hash identifier: 9AVqOS4aVOIaOXKrVByQoZNO0QSNZt58m83WmLvnKlY=
Subject key identifier: 31:30:68:B4:4F:CA:2E:00:1E:D4:9F:42:60:2F:6D:6C:8A:45:1E:D1
Authority key identifier: 02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
Certificate issuer: /CN=025637d4888ee0058de9ad3a70c42dc469969a99
Certificate serial: 01974AE8B10B59A49BBB2231AD95FCC7862F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
Manifest number: 09F3
Signing time: Sat 07 Jun 2025 15:00:52 +0000
Manifest this update: Sat 07 Jun 2025 15:00:52 +0000
Manifest next update: Sun 08 Jun 2025 15:00:52 +0000
Files and hashes: 1: AlY31IiO4AWN6a06cMQtxGmWmpk.crl (hash: p/dxV6gSFrOVlNZLYoD2WLZvab9Tq9VepugkhBU8NQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:b1:0b:59:a4:9b:bb:22:31:ad:95:fc:c7:86:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025637d4888ee0058de9ad3a70c42dc469969a99
Validity
Not Before: Jun 7 15:00:52 2025 GMT
Not After : Jun 8 15:00:52 2025 GMT
Subject: CN=313068b44fca2e001ed49f42602f6d6c8a451ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ff:d6:ea:5c:42:e5:16:ea:9b:c0:ce:84:16:
3d:e7:1d:41:4d:b2:fc:10:01:db:14:f6:d3:eb:5c:
00:dd:80:da:20:b1:e9:b5:de:3b:66:db:8a:ed:ad:
b0:e4:23:d4:29:da:1b:f7:27:be:5a:14:95:a0:da:
bb:6f:fb:a8:52:82:d4:94:2a:c2:e9:96:c7:a9:6a:
a4:da:23:7f:70:0e:c7:b5:6a:92:c3:3d:1a:27:ea:
c0:83:3a:6f:97:52:fd:29:bf:43:2c:26:ad:81:97:
9e:01:f4:5c:c2:f4:fe:3b:83:21:3a:cb:e1:a0:bf:
40:31:26:2a:ba:65:7b:aa:3e:18:00:09:f2:38:e2:
d2:50:6d:5e:28:60:61:6d:e2:01:27:87:23:db:6f:
9c:be:5c:c4:58:fc:4d:f2:44:0e:3b:17:1b:fc:1f:
12:92:13:25:04:cb:44:56:4f:90:38:95:25:e2:6e:
20:74:83:3c:9b:f0:01:39:d3:81:67:98:f4:d3:96:
bd:1a:28:46:c7:96:27:c0:7b:84:18:26:f6:7d:6b:
d8:a0:c9:99:1e:bc:01:75:ad:a5:1b:29:1d:b6:d7:
0b:d6:94:7c:f7:ab:dc:0a:1a:d7:23:46:15:10:4f:
ca:11:fe:77:47:f9:e3:9a:3b:7a:e6:61:da:65:68:
89:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:30:68:B4:4F:CA:2E:00:1E:D4:9F:42:60:2F:6D:6C:8A:45:1E:D1
X509v3 Authority Key Identifier:
keyid:02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:85:a9:96:4b:34:dd:86:50:14:d6:1c:52:75:d3:96:bf:0f:
e3:85:a0:3d:49:4e:fd:ef:0f:19:80:1f:e1:d6:19:6c:a3:f3:
4e:a1:c9:7c:21:05:c0:f8:7e:86:5c:a2:57:d8:92:29:ad:c5:
65:a8:f3:e8:a1:3d:e0:4a:13:47:a1:16:f5:bd:c7:66:98:78:
67:3d:8d:72:86:21:39:ed:80:a1:35:93:ee:25:e1:a6:77:41:
41:0c:65:ad:51:e4:67:c6:0c:c1:f6:25:1b:a7:17:ca:5a:32:
07:48:3b:ef:1f:21:e9:60:e9:31:e1:c7:44:03:60:9c:9a:9a:
06:6f:2f:d9:2f:f9:86:1d:c9:b1:ac:15:b5:a9:11:31:39:5e:
94:bf:78:3f:13:54:56:12:e5:83:52:9f:f2:64:47:de:87:e5:
04:f4:b4:72:66:90:ce:e1:f1:30:fb:3c:3c:6e:f4:3b:e7:0d:
ed:b1:b2:ef:36:0a:d8:b2:d9:80:3a:04:2e:1c:40:a2:fe:16:
9a:f7:1a:5c:ae:bc:d4:31:bc:23:c3:c1:4f:99:2a:06:a2:13:
b6:28:be:de:e2:c6:3d:1b:64:2a:d7:7c:7f:08:56:ef:f1:af:
bd:a2:8d:8e:92:a7:27:c2:8f:27:2f:2b:f0:88:00:c2:b7:31:
1f:b5:55:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6LELWaSbuyIxrZX8x4YvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNTYzN2Q0ODg4ZWUwMDU4ZGU5YWQzYTcwYzQyZGM0Njk5
NjlhOTkwHhcNMjUwNjA3MTUwMDUyWhcNMjUwNjA4MTUwMDUyWjAzMTEwLwYDVQQD
EygzMTMwNjhiNDRmY2EyZTAwMWVkNDlmNDI2MDJmNmQ2YzhhNDUxZWQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuP/W6lxC5Rbqm8DOhBY95x1BTbL8
EAHbFPbT61wA3YDaILHptd47ZtuK7a2w5CPUKdob9ye+WhSVoNq7b/uoUoLUlCrC
6ZbHqWqk2iN/cA7HtWqSwz0aJ+rAgzpvl1L9Kb9DLCatgZeeAfRcwvT+O4MhOsvh
oL9AMSYqumV7qj4YAAnyOOLSUG1eKGBhbeIBJ4cj22+cvlzEWPxN8kQOOxcb/B8S
khMlBMtEVk+QOJUl4m4gdIM8m/ABOdOBZ5j005a9GihGx5YnwHuEGCb2fWvYoMmZ
HrwBda2lGykdttcL1pR896vcChrXI0YVEE/KEf53R/njmjt65mHaZWiJSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDEwaLRPyi4AHtSfQmAvbWyKRR7RMB8GA1UdIwQY
MBaAFAJWN9SIjuAFjemtOnDELcRplpqZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9iMjk5MGQtNGM1Mi00MmZhLWI2Yjct
ZTBhNGE0ZjljYWJjLzEvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9iMjk5MGQtNGM1Mi00MmZhLWI2YjctZTBhNGE0ZjljYWJj
LzEvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY4Wplks0
3YZQFNYcUnXTlr8P44WgPUlO/e8PGYAf4dYZbKPzTqHJfCEFwPh+hlyiV9iSKa3F
Zajz6KE94EoTR6EW9b3HZph4Zz2NcoYhOe2AoTWT7iXhpndBQQxlrVHkZ8YMwfYl
G6cXyloyB0g77x8h6WDpMeHHRANgnJqaBm8v2S/5hh3JsawVtakRMTlelL94PxNU
VhLlg1Kf8mRH3oflBPS0cmaQzuHxMPs8PG70O+cN7bGy7zYK2LLZgDoELhxAov4W
mvcaXK681DG8I8PBT5kqBqITtii+3uLGPRtkKtd8fwhW7/GvvaKNjpKnJ8KPJy8r
8IgAwrcxH7VVbw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:10:06 2025 by rpki-client