Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: w2TSpCA8yIO7T5ZgfVH3CsHYhk4Ky796ZAincQ6Bicc=
Subject key identifier: 72:42:3D:DF:A2:F4:CD:92:A7:93:E4:21:BE:34:C2:76:75:A5:35:08
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 0198D5BB789B5167AF4380B2378187C0C0C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 07:01:29 +0000
Manifest this update: Sat 23 Aug 2025 07:01:29 +0000
Manifest next update: Sun 24 Aug 2025 07:01:29 +0000
Files and hashes: 1: 1-wEZKS5ROln113VYj-rYIVv3HMw.roa (hash: zd3NK5lHmlo7IZCKvHCkj4ue/ewdTG041qEpUCwPhSg=)
2: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: DzfKrZOGelgli7Z3x//y/LPK3cxKzbj/d4mGc2C6Vyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:78:9b:51:67:af:43:80:b2:37:81:87:c0:c0:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Aug 23 07:01:29 2025 GMT
Not After : Aug 24 07:01:29 2025 GMT
Subject: CN=72423ddfa2f4cd92a793e421be34c27675a53508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4c:44:91:7f:2e:aa:61:3a:17:7d:ab:e3:4d:
c2:cb:a5:11:51:6e:83:99:2b:19:df:f7:e4:ae:65:
10:e0:7d:7f:f2:d3:52:10:14:01:0b:b9:ec:cc:5b:
85:b4:5c:3f:c4:f5:b9:81:26:54:07:03:79:7e:a3:
3d:20:2f:ce:7c:18:d2:38:f3:77:64:9d:31:1b:c2:
60:6f:fa:3b:6a:f9:a3:a4:0b:96:65:5e:b9:d6:35:
05:8e:8d:83:86:87:49:f6:3a:9a:e1:a4:6b:df:b7:
03:dd:d4:9d:72:ef:f4:3b:a0:35:81:16:e3:e6:53:
98:4d:6e:b9:15:4e:37:2e:00:70:ec:13:56:af:7b:
36:c3:b0:f2:d7:15:70:90:96:90:c2:88:3e:36:c4:
0a:d9:f9:50:9c:ac:86:8d:f4:e8:b5:63:af:07:3c:
5f:8f:27:4f:12:b3:04:e0:47:57:59:3e:16:43:61:
73:0a:81:f5:dc:3a:c4:62:78:2c:5f:ee:92:b5:cb:
60:2c:d9:b4:94:ee:d0:8a:3f:0a:15:d7:53:f9:09:
47:a9:c3:97:55:5b:61:bb:7f:1c:c0:5a:29:b9:83:
b8:1c:f2:98:e9:a0:c5:56:a9:78:27:fc:40:f7:bc:
65:f9:d1:75:9a:15:5d:f2:ae:d3:a0:ef:91:72:59:
16:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:42:3D:DF:A2:F4:CD:92:A7:93:E4:21:BE:34:C2:76:75:A5:35:08
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:5e:d3:4a:55:8f:64:0c:bd:f0:fb:c8:74:ad:7b:84:21:5d:
f7:da:bf:a6:3e:f0:e2:6f:19:1b:bc:39:aa:bf:33:04:8e:8b:
4c:e3:ce:cd:17:ef:47:d9:95:d2:b8:c7:17:67:19:bc:d6:b0:
f6:a4:f1:7e:bd:15:98:67:90:22:94:6d:05:7b:a9:ed:e0:ef:
33:75:73:db:dd:01:47:8e:4c:0b:ef:da:50:0b:78:18:ee:50:
1e:52:25:61:5c:87:c5:8e:4a:d3:d4:4f:01:0d:14:2d:72:76:
3b:9f:cb:4b:54:e3:4b:5d:1b:92:f1:e5:fa:37:97:9a:9c:09:
30:d1:d8:e8:7e:af:ff:72:9b:10:90:ee:ab:2a:a3:82:ff:09:
d1:27:c2:4f:86:cd:d7:a5:a5:d8:61:63:b5:1a:b2:89:2f:59:
a1:a8:7d:7b:7b:df:70:3a:f8:44:54:47:cf:8a:b4:4d:3d:62:
af:53:cc:e6:29:5e:cb:f4:2c:05:a7:ea:1e:71:9f:d8:26:a5:
f3:4c:6b:ac:12:92:d7:57:33:5b:27:12:cb:b3:94:7b:31:9f:
ec:8b:58:a0:69:e7:e1:7f:bb:18:c9:4c:3b:e6:1d:c8:31:54:
db:af:f3:5b:e7:1c:c5:5d:12:22:a8:77:99:a4:b7:ca:03:48:
65:72:cf:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:23 2025 by rpki-client