Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
File: AlY31IiO4AWN6a06cMQtxGmWmpk.mft (raw, json)
Hash identifier: VZroa4ZB89+ICAXK3qFf5t50b6vQZLn4J92M6efIZao=
Subject key identifier: 1D:1D:50:B8:89:33:A6:1B:36:4A:A4:C1:BC:52:B9:1C:E6:9A:E7:39
Authority key identifier: 02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
Certificate issuer: /CN=025637d4888ee0058de9ad3a70c42dc469969a99
Certificate serial: 01964FDA232B3AB46C2C0897A813D7CDA96F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
Manifest number: 0971
Signing time: Sat 19 Apr 2025 21:00:17 +0000
Manifest this update: Sat 19 Apr 2025 21:00:17 +0000
Manifest next update: Sun 20 Apr 2025 21:00:17 +0000
Files and hashes: 1: AlY31IiO4AWN6a06cMQtxGmWmpk.crl (hash: ikUCdw5hZOdABmRf4B1WnDweVNV64N9h8OYYh0g1fxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:23:2b:3a:b4:6c:2c:08:97:a8:13:d7:cd:a9:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025637d4888ee0058de9ad3a70c42dc469969a99
Validity
Not Before: Apr 19 21:00:17 2025 GMT
Not After : Apr 20 21:00:17 2025 GMT
Subject: CN=1d1d50b88933a61b364aa4c1bc52b91ce69ae739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5c:93:cd:b9:22:d7:80:cc:f9:53:40:0b:14:
8f:80:4d:ac:ba:ca:74:21:7b:54:7f:7d:c2:f8:07:
41:ef:ae:95:cd:42:72:87:31:78:71:cc:e4:a7:01:
fc:44:da:90:96:6d:eb:76:e8:4b:56:4a:94:bd:bb:
b4:d4:a6:82:db:cd:d7:6a:8a:1f:da:7e:a9:f1:89:
fc:7d:04:d5:da:e6:6c:f3:8a:07:06:0e:5a:5c:c7:
a7:36:4d:45:11:d8:cc:5f:e0:7a:cf:46:ba:0b:b7:
56:42:a3:d4:84:c2:52:9d:eb:93:51:a7:cb:5a:3f:
42:d4:84:ca:7b:68:1c:67:67:4d:ba:39:9b:ca:69:
ee:25:a9:fb:66:40:70:5b:a6:c3:94:0a:90:a4:f5:
89:5c:2d:ce:cf:ec:f1:34:66:b4:97:2c:f7:15:ce:
fd:69:ef:d6:8a:b6:ef:95:39:40:1a:be:63:12:d0:
ad:a3:e5:d2:33:f7:0a:46:42:53:17:5f:2a:74:28:
ad:6c:bd:45:55:5f:d8:90:c7:a3:b1:9e:76:9c:35:
ed:ec:58:42:e8:ca:cf:d6:f3:04:0b:87:4a:dc:0a:
1f:b4:a6:e6:82:f6:7c:2b:5a:95:8e:18:c5:bb:c3:
2f:c3:75:7d:10:79:0e:38:df:1f:8c:57:36:c3:9c:
da:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1D:50:B8:89:33:A6:1B:36:4A:A4:C1:BC:52:B9:1C:E6:9A:E7:39
X509v3 Authority Key Identifier:
keyid:02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:5d:b3:11:71:3e:bd:69:b2:74:52:7a:e1:29:f4:06:dd:23:
7f:f5:66:bd:2c:fd:e8:bb:c3:d7:76:46:a3:41:91:91:78:de:
4d:11:2a:9f:59:f8:d1:79:6d:cf:48:56:dc:31:f7:f8:bd:09:
17:3b:da:24:0e:d6:d2:1b:83:62:f0:be:f5:9f:3b:3b:6e:01:
99:a0:c3:cc:02:bd:27:4e:ee:9d:bd:e4:b4:65:9c:5b:cb:da:
a6:8d:74:87:10:8d:bc:3e:01:b4:04:99:8f:f9:3c:0c:46:39:
23:c9:73:17:99:2d:25:a8:97:1a:ad:73:9d:53:fc:3e:0b:80:
84:d2:69:48:97:ce:63:71:7e:dd:d6:61:22:46:af:f5:04:83:
77:2c:6a:ee:de:53:0d:f8:b9:c5:31:69:8c:16:93:da:94:00:
86:23:67:9f:11:b7:93:5a:b9:99:6f:a6:25:97:b7:29:dc:27:
90:46:d0:c7:eb:fb:0e:61:b5:43:66:1b:05:3a:c8:8d:4a:9e:
0d:42:92:ca:65:0a:24:a0:2e:17:8a:1b:8f:dc:98:b0:46:e1:
e2:e0:48:c4:95:ac:06:3a:4b:da:b5:27:61:fe:4a:7e:b1:b3:
12:a5:f6:5f:40:67:5f:44:7b:cb:8b:b9:40:ab:cf:bd:ac:ac:
f7:f0:a3:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:12:23 2025 by rpki-client