Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
File: tAqlFjSW4FOna21pzcRfdQBs2N8.mft (raw, json)
Hash identifier: YwDSAMctmc1Fh+HrQWE3h03xPcw8mzOLtEhO4xUXwCc=
Subject key identifier: E9:5D:49:31:20:1E:A1:A4:3E:A3:6B:2A:68:0F:22:A7:8A:BB:80:7C
Authority key identifier: B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
Certificate issuer: /CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Certificate serial: 0197B77C09A6D47554D860892E39A106006D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 17:00:48 +0000
Manifest this update: Sat 28 Jun 2025 17:00:48 +0000
Manifest next update: Sun 29 Jun 2025 17:00:48 +0000
Files and hashes: 1: 1-d6DUI7mmJKHILGE-ACGJbIFV40.roa (hash: WM+ispXO9qKwdYzXWtwDmpPip6PK1PIBVYZaFFY6Sl4=)
2: tAqlFjSW4FOna21pzcRfdQBs2N8.crl (hash: Sr7ffpWiNsu96wgaI+WxLthzaQBuMeD76swheryThFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:09:a6:d4:75:54:d8:60:89:2e:39:a1:06:00:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Validity
Not Before: Jun 28 17:00:48 2025 GMT
Not After : Jun 29 17:00:48 2025 GMT
Subject: CN=e95d4931201ea1a43ea36b2a680f22a78abb807c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7b:5c:69:a9:4b:8d:8d:e1:90:bd:ca:e1:36:
7f:4f:64:f4:e5:0e:db:f0:42:b8:6a:c7:6a:91:63:
7c:c6:cf:72:ed:0d:d5:98:f7:b6:dc:20:ca:3e:b5:
c6:28:fa:0d:22:7b:53:5b:4d:bb:1e:14:64:aa:4b:
b5:ef:43:83:bd:92:e1:f9:9c:73:da:0c:af:47:84:
59:4a:9d:80:62:66:d5:39:2c:e0:9f:f0:7b:f4:ee:
ef:53:cd:78:2e:3d:d3:0b:bc:ed:53:26:68:96:07:
59:b3:17:ee:e4:85:c1:bb:0a:c7:79:5e:77:4e:93:
23:87:67:94:5f:d1:b8:d6:80:37:06:bf:35:25:6a:
1f:de:45:58:b4:2b:51:39:fe:e4:0c:6a:74:29:dc:
52:3d:9e:2b:b3:e3:fa:43:ca:76:87:2d:29:d9:15:
f1:54:d9:86:4a:88:c9:03:11:7a:e1:f2:6b:d9:89:
61:76:bb:0b:33:19:cb:29:5c:89:a7:f7:88:f4:1d:
f4:6b:12:9e:55:78:94:a7:cc:1a:2e:41:3a:a9:e1:
3c:2f:3e:fb:ce:f6:d9:42:9b:fb:7c:82:e9:36:89:
a9:13:e5:82:03:37:4b:44:6a:ee:3d:1f:f3:8e:12:
13:23:b8:5e:c2:25:50:e7:db:45:83:43:85:b4:e5:
50:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:5D:49:31:20:1E:A1:A4:3E:A3:6B:2A:68:0F:22:A7:8A:BB:80:7C
X509v3 Authority Key Identifier:
keyid:B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:2d:ab:85:8d:1e:7d:bf:ae:9c:f9:be:1e:b2:45:99:de:be:
0f:f5:13:1c:e5:6b:fc:d5:27:05:44:bc:f6:c7:de:5b:05:1b:
f8:60:1c:21:cc:91:ce:2f:2a:74:d7:5f:a1:5c:f3:f8:b0:ea:
a2:fd:7f:14:8c:eb:ac:14:2b:ed:4d:22:23:79:61:43:f5:7a:
7e:9b:5f:a5:42:e1:e0:99:18:66:d7:fe:60:ee:a9:85:ae:44:
7c:fa:08:05:86:75:d0:e2:30:69:af:04:8f:dc:5a:23:eb:63:
3d:5e:a4:f8:04:ee:0c:be:29:0d:68:24:84:ba:50:9b:a6:e3:
50:6e:c6:d0:a3:71:4b:a5:83:20:60:17:1b:21:1f:16:e7:69:
cf:a2:90:71:7b:74:bb:b2:79:1e:ba:bb:5d:68:a3:8b:f2:74:
c7:8d:b8:a8:a6:14:d9:7d:db:f1:bd:bb:d7:2e:6a:99:6e:b0:
26:9d:e0:60:28:ca:93:cd:8e:16:f5:42:c0:6b:64:b2:73:79:
89:09:a4:47:e4:1f:a2:d9:02:97:7a:5d:97:01:c1:3b:b7:6f:
f7:c7:71:ae:ca:d2:f6:67:7a:91:60:30:64:c5:81:ba:0b:91:
2b:7c:0c:8e:7c:f0:66:1c:1f:da:92:b8:db:b2:a5:1e:82:be:
ba:cf:23:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:56:56 2025 by rpki-client