Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
File: AlY31IiO4AWN6a06cMQtxGmWmpk.mft (raw, json)
Hash identifier: GyEiOg4dKlY8Nt86ypxDQIS7wqeS/8PBbL9wrhCq29o=
Subject key identifier: 22:9F:E4:95:EB:28:8B:AC:76:1B:6E:44:F7:2C:CC:7A:F0:8C:C5:8F
Authority key identifier: 02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
Certificate issuer: /CN=025637d4888ee0058de9ad3a70c42dc469969a99
Certificate serial: 0199240D723E9D5F61414E6EABB791906B6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
Manifest number: 0AE8
Signing time: Sun 07 Sep 2025 12:01:24 +0000
Manifest this update: Sun 07 Sep 2025 12:01:24 +0000
Manifest next update: Mon 08 Sep 2025 12:01:24 +0000
Files and hashes: 1: AlY31IiO4AWN6a06cMQtxGmWmpk.crl (hash: EJa49fUQHbBw4QXa/+DPtstYnDkvD6aBnbBueh954i8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:72:3e:9d:5f:61:41:4e:6e:ab:b7:91:90:6b:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025637d4888ee0058de9ad3a70c42dc469969a99
Validity
Not Before: Sep 7 12:01:24 2025 GMT
Not After : Sep 8 12:01:24 2025 GMT
Subject: CN=229fe495eb288bac761b6e44f72ccc7af08cc58f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dd:22:82:cc:60:f5:f2:0a:e9:20:b1:f1:8d:
51:67:f3:a4:6d:d6:45:ba:f6:ce:a6:4e:ef:60:44:
e4:21:ac:11:4f:d5:42:81:0f:a9:8f:8b:1b:a6:3b:
2f:e4:e8:2d:20:0f:db:c6:56:09:d7:90:73:27:9f:
1f:d8:cc:da:59:c9:2b:6c:f9:3a:89:0f:f9:0a:0c:
5e:20:c6:13:e6:b5:97:30:9c:83:30:10:0c:61:3b:
a0:24:5a:23:69:aa:d7:2b:d8:c1:46:aa:df:c1:97:
3e:a3:7b:24:24:0e:56:b8:19:af:3e:40:c1:f1:20:
c5:cd:eb:6c:03:cb:9b:70:aa:0e:a8:8e:f4:e0:46:
41:e0:59:81:3e:1a:fc:b8:37:ad:44:53:d0:dc:e4:
f0:b8:29:38:f6:26:8b:4d:14:de:1c:a2:8f:74:62:
60:9b:56:50:f0:aa:e1:ad:1e:f0:4b:c1:5a:6e:6a:
2b:9e:33:50:ca:ac:61:1d:18:25:eb:00:a0:ab:f7:
fd:60:1d:8b:6a:4e:bf:cd:53:78:fb:17:94:69:83:
d6:81:e8:09:2c:ff:aa:15:4b:10:32:ff:ed:0a:62:
55:77:39:be:a2:8e:7e:09:68:a5:4a:82:2a:52:68:
2d:e0:4b:c7:cb:2c:1b:3c:9c:56:c2:92:10:85:3d:
54:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:9F:E4:95:EB:28:8B:AC:76:1B:6E:44:F7:2C:CC:7A:F0:8C:C5:8F
X509v3 Authority Key Identifier:
keyid:02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:36:af:9e:bf:6b:0a:ff:15:56:98:23:4c:db:e6:ce:91:76:
1c:ab:9e:35:49:1b:b9:10:f2:38:0e:ab:d9:30:fd:f3:be:03:
03:6e:1d:a2:c7:4f:0d:38:87:79:7a:e0:26:e0:c7:2f:97:d6:
b0:cf:58:0e:73:73:5e:e5:b6:1a:1f:00:a3:a8:ae:d2:52:f8:
f2:b2:d9:71:d0:f1:10:15:54:a0:56:01:8c:47:6d:f0:f5:98:
2f:04:fe:4a:9b:27:6e:36:3f:a9:04:db:4b:9d:11:b8:43:c3:
5e:a2:11:68:54:66:44:53:3d:68:c7:49:14:48:02:19:0d:ae:
9e:b7:29:cf:a4:6d:52:03:db:ac:17:7f:1a:fc:44:75:c4:0b:
f9:a2:45:cc:ce:27:a8:09:18:1f:fc:16:88:da:f8:8f:fd:89:
f9:00:d4:9e:03:72:24:16:5e:ab:ea:38:49:9b:37:e7:aa:88:
dd:fd:cb:93:b9:16:ec:3b:e8:8e:2d:75:cc:59:d9:c3:d8:fb:
11:17:18:f9:2c:1c:d1:05:ca:a5:c4:33:da:36:eb:d7:e6:e0:
4a:1c:2e:c2:ba:ab:c3:61:b2:6a:c0:76:19:aa:1f:3f:e6:bc:
e6:70:60:ef:39:95:6f:e4:2e:23:68:bb:44:7c:5d:e2:b9:57:
26:fc:93:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:45:13 2025 by rpki-client