Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: GWHD9qbLOHElyfyYutjKROii7OM4DciHVPRUHAdyCpQ=
Subject key identifier: 65:1B:63:AA:5C:22:E9:37:AD:47:A2:79:87:F0:17:22:42:F4:12:DE
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 0197B7EA913B1C6CA127B276D9ABFECB084E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 19:01:32 +0000
Manifest this update: Sat 28 Jun 2025 19:01:32 +0000
Manifest next update: Sun 29 Jun 2025 19:01:32 +0000
Files and hashes: 1: 1-wEZKS5ROln113VYj-rYIVv3HMw.roa (hash: zd3NK5lHmlo7IZCKvHCkj4ue/ewdTG041qEpUCwPhSg=)
2: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: FUmYaOtnUGZYKZdrOuCRw3d3fHf6g900Rawj2F9Pj6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:91:3b:1c:6c:a1:27:b2:76:d9:ab:fe:cb:08:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Jun 28 19:01:32 2025 GMT
Not After : Jun 29 19:01:32 2025 GMT
Subject: CN=651b63aa5c22e937ad47a27987f0172242f412de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:51:f8:cc:36:13:2b:a3:52:e6:af:eb:22:20:
2a:69:6e:fd:77:2e:ba:14:df:87:b1:d3:3f:08:19:
a4:4c:63:1c:be:43:f2:5f:63:6e:59:16:d2:c1:47:
52:23:76:f8:bd:e6:61:20:06:01:a5:c9:b9:e0:e8:
5d:07:27:95:49:a3:9a:41:67:14:ad:19:3b:f6:3f:
44:79:f3:3d:86:c5:25:97:58:cb:07:4a:6d:56:38:
86:43:65:db:b5:a4:bc:14:1c:f0:6a:33:e0:a0:6d:
84:f2:0e:01:56:21:57:52:77:6a:11:b5:5f:74:83:
12:61:20:1d:21:31:77:ce:9c:bf:70:82:72:03:8d:
8d:5a:83:51:54:65:e9:31:94:5f:f0:f5:0f:b5:5d:
5b:ee:88:da:14:d9:80:2e:4f:0c:03:c0:bf:be:1e:
bf:72:ac:50:3e:32:0f:55:6e:8d:97:6c:be:69:79:
be:ed:d0:0c:86:13:41:ac:b3:22:52:c7:9f:f8:66:
f4:41:9c:fe:5e:d8:ab:46:44:60:20:36:cb:b4:df:
f8:bc:9c:c9:0a:19:8f:90:34:b1:ba:ec:f1:76:b5:
1d:06:de:14:04:0e:01:2a:13:34:10:9f:3a:16:d2:
5a:2d:0d:3c:ed:70:1e:f9:94:79:9e:51:f0:59:ce:
09:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1B:63:AA:5C:22:E9:37:AD:47:A2:79:87:F0:17:22:42:F4:12:DE
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:34:f6:99:a9:71:c6:4b:de:fa:5d:0d:40:09:9f:64:8b:35:
6c:3a:17:fa:17:7b:4b:55:0b:61:b8:12:b0:1f:9d:ca:23:20:
d8:d4:10:64:d6:a9:c1:45:01:c8:78:d6:1d:ce:d6:d8:5e:aa:
91:55:83:c7:fc:a0:8e:ec:e1:2a:b7:aa:84:77:22:43:11:47:
2b:6f:ca:8e:ac:aa:7b:29:cb:a5:53:cb:43:9c:f6:82:89:a0:
8d:6d:df:e8:23:ea:a7:35:ae:87:1c:14:e8:c9:d3:7b:f4:56:
82:e5:90:d9:63:3a:d1:cd:3b:d6:72:75:92:8d:90:a4:bf:fb:
ef:07:6a:45:32:5f:f7:eb:a9:a2:84:44:4c:a5:51:a9:bb:83:
e4:07:cf:e7:ff:87:90:59:5f:0c:80:07:18:6e:18:3a:56:9b:
f3:3d:47:de:9d:95:b4:b3:35:cc:60:1b:99:18:cc:6d:40:f4:
a2:81:51:d8:f4:ab:b3:6c:be:2a:c8:24:ff:6b:ba:ae:84:d7:
7b:69:f9:fc:e8:4c:ad:50:7e:f0:c6:da:3f:21:fe:6c:b1:ab:
de:14:2a:c6:0f:69:c2:d0:4b:aa:50:93:e7:94:25:d5:6f:d9:
72:07:f5:06:99:1d:b8:c3:04:47:85:e1:9f:14:9c:1a:9f:15:
60:a5:5c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:02:18 2025 by rpki-client