Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
File: tAqlFjSW4FOna21pzcRfdQBs2N8.mft (raw, json)
Hash identifier: D7xz85R6krnzorSpZUhcUFLKhg0pXWv21tZHk83YAt8=
Subject key identifier: 7B:E9:91:98:59:DC:2F:C6:7F:B9:51:1B:69:38:74:8C:93:3B:92:D6
Authority key identifier: B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
Certificate issuer: /CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Certificate serial: 0198D54DD32855567F4638D5866094C79CD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 05:01:43 +0000
Manifest this update: Sat 23 Aug 2025 05:01:43 +0000
Manifest next update: Sun 24 Aug 2025 05:01:43 +0000
Files and hashes: 1: 1-d6DUI7mmJKHILGE-ACGJbIFV40.roa (hash: WM+ispXO9qKwdYzXWtwDmpPip6PK1PIBVYZaFFY6Sl4=)
2: tAqlFjSW4FOna21pzcRfdQBs2N8.crl (hash: mi0ZtPzyEOlBjfBsqqnn72aaqa1beRD9RUqXtBd01/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:d3:28:55:56:7f:46:38:d5:86:60:94:c7:9c:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Validity
Not Before: Aug 23 05:01:43 2025 GMT
Not After : Aug 24 05:01:43 2025 GMT
Subject: CN=7be9919859dc2fc67fb9511b6938748c933b92d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:70:bb:c3:e1:c1:2f:85:48:b3:f1:99:7a:de:
24:20:2a:f2:93:0d:0a:7f:e0:43:8a:42:0a:73:e2:
c1:8e:0c:bf:b6:b1:62:19:58:1a:fa:d6:7a:9e:e1:
67:c7:ad:5c:2b:db:8e:11:a0:c3:d9:a7:4d:80:cc:
2a:d1:4f:5a:fa:60:2b:ae:9b:36:30:10:33:08:b5:
d4:d4:49:7a:bc:51:99:85:5f:2c:57:6d:d2:0e:df:
72:0a:6a:6e:f9:c3:f2:d7:98:95:23:a9:c1:4d:c3:
45:62:f4:b6:5d:46:fa:b6:27:33:d9:c7:5a:45:dd:
c8:0f:15:9e:91:8c:5c:6e:4b:5b:10:e3:72:5c:24:
05:7d:9f:a5:a9:59:91:67:f7:65:2d:ec:c4:5c:69:
69:e3:5b:57:90:e7:e4:66:5b:b6:f0:a5:76:bb:84:
ee:1f:75:7c:1f:ba:10:aa:cc:b9:40:84:cb:48:6e:
4d:95:51:34:2b:dd:02:b6:e8:10:21:83:37:37:dc:
0a:1a:88:8b:5b:9b:6c:05:45:19:1b:55:01:39:a4:
88:e2:2a:57:1e:09:26:ab:ef:72:d2:94:77:a0:b7:
13:9a:f2:32:59:20:68:34:af:7d:06:67:3a:5b:db:
f4:8a:46:33:8c:c3:e7:17:7a:f4:1a:8f:1b:65:1b:
da:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E9:91:98:59:DC:2F:C6:7F:B9:51:1B:69:38:74:8C:93:3B:92:D6
X509v3 Authority Key Identifier:
keyid:B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:e7:47:bd:68:22:d8:c1:ed:2f:3a:62:ee:dc:bc:4d:47:08:
7d:7e:9a:12:d5:6a:a4:e6:50:06:16:9f:54:d0:c6:98:0e:9e:
e7:56:7d:9b:b6:00:47:3a:c6:d6:ce:c2:45:77:f0:68:26:e0:
bf:eb:2f:42:a2:0b:a4:ef:e3:dc:1a:31:6e:d1:31:bc:8d:33:
24:7a:93:8f:6b:4a:f4:9c:2f:2d:e6:de:f2:89:f1:e1:53:1a:
fc:0d:08:f4:e0:09:bb:ad:c7:17:0e:17:fb:30:05:fc:00:da:
0a:42:27:75:16:52:84:31:e2:d8:80:be:90:c7:38:26:a1:4b:
1d:d3:91:6f:19:e5:ca:68:51:8f:f5:08:18:b7:04:0d:ca:5c:
b5:4a:ec:cb:1d:09:21:50:c6:e2:a4:5b:78:e1:64:0c:5a:64:
cd:cf:04:e7:de:f1:c8:15:72:03:94:b3:a9:2e:c1:09:50:c0:
17:f2:ae:89:da:36:24:9f:54:5f:b8:c0:7a:a5:cb:66:28:39:
bd:bb:ac:93:f9:f5:02:e5:7f:ef:b1:48:0b:31:61:c5:fd:dd:
46:fa:f0:ff:b2:20:0b:9c:7a:90:7d:40:0a:88:78:8b:89:28:
00:0b:61:28:04:43:5d:0e:14:aa:cb:13:70:69:af:2b:cd:da:
52:e0:0a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:32:00 2025 by rpki-client