Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
File: tAqlFjSW4FOna21pzcRfdQBs2N8.mft (raw, json)
Hash identifier: aBPV1n5P3+3mN0VGvKiQ4EzMMT8zUINcGrTDVRTKDZM=
Subject key identifier: A9:8B:20:41:11:C5:3A:C4:98:85:3F:FD:3C:68:A9:AD:56:00:6B:B2
Authority key identifier: B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
Certificate issuer: /CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Certificate serial: 0199FCC60BA0320B0F2FC43AB27A513C6FD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 14:01:01 +0000
Manifest this update: Sun 19 Oct 2025 14:01:01 +0000
Manifest next update: Mon 20 Oct 2025 14:01:01 +0000
Files and hashes: 1: 1-d6DUI7mmJKHILGE-ACGJbIFV40.roa (hash: WM+ispXO9qKwdYzXWtwDmpPip6PK1PIBVYZaFFY6Sl4=)
2: tAqlFjSW4FOna21pzcRfdQBs2N8.crl (hash: qHP9X69QmtDAZOu3vhIyd5XQVws8I+DsMOAxvM7goj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:0b:a0:32:0b:0f:2f:c4:3a:b2:7a:51:3c:6f:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Validity
Not Before: Oct 19 14:01:01 2025 GMT
Not After : Oct 20 14:01:01 2025 GMT
Subject: CN=a98b204111c53ac498853ffd3c68a9ad56006bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:98:f5:d7:5e:62:e0:b2:a7:34:ff:99:88:76:
9e:6c:fd:7f:1c:c2:94:c6:3c:bb:e2:68:b5:84:5c:
9b:ea:97:14:46:5c:ad:b9:df:28:2a:61:23:0b:a2:
2f:fb:3b:8b:3d:3f:dc:42:5a:96:ab:0d:1f:26:4f:
bd:81:35:72:55:cd:8b:dd:48:65:c3:03:e1:a7:ce:
ef:ca:b6:8f:27:3d:39:5d:d7:7c:9d:dd:f6:a8:83:
b0:7e:08:cd:19:09:8b:5f:74:90:ee:6e:bf:03:b2:
21:63:c4:cd:3a:b3:27:a0:c5:ac:3e:f2:54:21:12:
33:2c:c4:3a:1a:e0:c3:64:bc:2c:45:88:03:29:7f:
ee:e7:22:c2:b9:38:17:a4:f0:8e:a7:8f:9c:34:bf:
f0:41:ff:57:f1:27:06:e0:a3:18:4f:dd:39:2c:88:
6f:3b:cd:a6:a5:fc:87:84:e0:05:64:c8:cd:08:e2:
00:95:fd:3b:2f:97:1b:bb:c7:2b:6b:5b:5e:19:fa:
1d:67:4e:90:ab:ba:39:ec:02:f5:f4:da:94:c9:1a:
25:36:95:33:a8:76:ab:ce:44:ff:1e:f6:5f:13:c4:
f8:6a:45:e4:e7:6d:d5:06:76:a5:bf:06:ff:3f:cc:
15:b4:74:a6:04:d4:e2:13:09:45:6c:43:a2:b8:bc:
36:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:8B:20:41:11:C5:3A:C4:98:85:3F:FD:3C:68:A9:AD:56:00:6B:B2
X509v3 Authority Key Identifier:
keyid:B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:59:b2:c4:e7:74:2c:68:95:6d:df:38:81:13:0f:6c:61:21:
b2:b4:a0:82:07:38:fd:03:e8:12:b9:3a:19:08:dc:ff:c4:81:
44:67:ee:65:2a:03:58:f2:94:ce:3b:ee:6d:59:de:6a:53:bc:
e4:24:3a:59:35:e5:8b:3a:9a:ab:8d:38:84:d7:2c:f4:d6:75:
79:13:88:fb:b5:6a:58:0b:89:c5:7d:c1:be:58:d2:be:0d:4f:
20:40:2f:bb:00:dd:18:23:28:0b:3e:53:a3:85:26:ba:ff:04:
1f:fa:c9:35:d2:fb:51:4c:40:a1:c7:88:9f:cf:72:7b:4b:61:
59:3a:9d:c3:b8:b8:93:c1:9e:be:62:ab:78:cb:7f:fa:56:cf:
5a:8d:0d:ff:53:f7:85:81:5a:e6:49:82:d0:3e:97:52:e8:92:
7b:0a:4a:d7:44:55:3a:6a:8d:9b:e3:be:26:4f:db:8c:32:4a:
6a:cb:9e:03:2d:26:5e:31:a3:dc:87:8a:c5:81:b4:5a:a0:58:
61:3a:bc:b4:7d:59:ff:9e:e6:4d:69:f5:a7:93:67:41:16:bc:
d3:6b:49:19:c5:41:dc:01:4a:a4:b2:2a:36:eb:ad:5a:45:5d:
ed:4b:ce:93:74:f9:de:3c:e5:d3:e1:bf:4b:f6:dd:a1:25:cd:
49:d0:d2:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:30:43 2025 by rpki-client