Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: ZRxbH6NnCz2rAQ5vEBJu58avOTejhLWuAVv6lJ6XZPs=
Subject key identifier: 1F:40:B7:10:85:62:7E:51:3C:A2:B4:67:2D:B2:75:70:F3:E8:01:64
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 019A5608C5AB5C659952392702F5A3A1CC08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 1711
Signing time: Wed 05 Nov 2025 22:00:06 +0000
Manifest this update: Wed 05 Nov 2025 22:00:06 +0000
Manifest next update: Thu 06 Nov 2025 22:00:06 +0000
Files and hashes: 1: 1-wEZKS5ROln113VYj-rYIVv3HMw.roa (hash: zd3NK5lHmlo7IZCKvHCkj4ue/ewdTG041qEpUCwPhSg=)
2: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: 8XD9mIg5p62d6k3vbl5HXRzj133SaEw+J39gO6mhJFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:08:c5:ab:5c:65:99:52:39:27:02:f5:a3:a1:cc:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Nov 5 22:00:06 2025 GMT
Not After : Nov 6 22:00:06 2025 GMT
Subject: CN=1f40b71085627e513ca2b4672db27570f3e80164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:a8:e5:2e:dd:cf:08:41:34:ba:be:12:1f:
4e:64:0f:bd:0f:32:17:d1:6c:fc:f8:8e:c3:87:2b:
a8:ae:17:95:d4:cc:22:c3:9a:bb:27:d7:70:7d:53:
37:84:70:03:d4:0e:d4:3d:74:bd:4f:ed:0e:da:a2:
f9:e9:9d:0b:e5:be:38:57:be:e2:31:14:8d:30:d7:
05:bb:74:be:40:9f:6b:35:8d:40:b2:30:86:63:93:
17:24:4c:13:b1:d3:f8:60:dd:2e:73:7a:76:3e:c4:
69:1d:b5:2c:20:f4:3c:c7:dc:bf:ea:bf:f4:de:19:
4e:1a:14:65:a8:83:17:fc:38:7e:c6:35:16:39:1c:
a1:6b:63:a8:4b:3d:70:9a:ca:e4:53:c4:8e:56:54:
9c:ca:4a:20:d8:85:37:6d:34:53:d9:60:01:16:ae:
d8:be:99:39:f7:0c:68:14:7c:f1:d9:34:50:6b:ad:
6a:e5:cf:08:18:12:16:a2:3d:b5:fe:94:57:10:8f:
a9:b1:f0:45:16:92:fe:63:a5:ea:a5:01:be:e1:d5:
df:61:bc:37:f0:2d:69:3c:6b:a7:cf:4d:3f:76:a8:
d3:ac:3f:f8:d1:e5:85:b6:a5:04:d9:b4:e8:25:93:
a9:dd:a9:8e:1c:b0:d1:b9:d0:8c:f7:c3:90:84:e2:
82:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:40:B7:10:85:62:7E:51:3C:A2:B4:67:2D:B2:75:70:F3:E8:01:64
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:b1:37:e0:2c:4c:e6:43:5b:11:44:c8:81:bc:04:6a:ae:2d:
fa:46:1a:2c:5a:4a:fa:b2:c9:c6:25:c4:f2:e2:65:3b:d6:08:
f9:b2:5d:c5:68:73:ad:b9:90:d5:18:fe:93:0c:54:08:3c:ea:
aa:93:86:94:3e:43:f2:2c:c5:a8:97:69:7e:12:75:10:16:aa:
8e:9f:2c:37:6f:d5:ef:c5:0b:d8:16:5b:a8:d9:26:38:e9:2e:
de:77:e4:9e:0e:f7:09:c8:e5:90:d1:e1:e1:5b:e0:4d:cc:bb:
e0:55:2f:e5:9a:5d:b5:8b:7b:1d:0f:e9:e9:51:18:71:04:3b:
07:a2:31:64:fe:96:fc:c2:79:52:b7:65:bd:05:42:8e:4b:6e:
23:5e:bc:7f:4e:71:0b:34:81:60:d7:71:db:1d:76:36:e0:b6:
9e:b1:a9:05:68:31:56:2c:9c:44:b3:30:62:c6:cc:12:9c:49:
1e:66:3e:3f:fa:a9:bf:08:c5:33:8d:ca:4f:e5:d7:d2:14:69:
25:14:91:ed:2c:c1:96:08:1d:75:85:5c:ba:64:b2:8e:5d:eb:
94:93:ab:0f:3c:f1:63:35:8f:91:12:61:08:3f:6c:f8:49:4a:
75:7b:80:91:41:47:ce:c1:2a:ac:37:87:9d:ea:46:c9:bb:40:
b6:6c:9b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 04:54:08 2025 by rpki-client