Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: xvLse4DKN91S30RnVTeGpsxL0vg2SpV9geV3Z5LHwYI=
Subject key identifier: 4C:C2:10:23:44:E2:7E:B1:19:21:A1:58:F5:74:7B:D5:98:FB:36:B2
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 01988C58C9D03DB1D4E5348D9F384D7E2FED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 1624
Signing time: Sat 09 Aug 2025 01:01:25 +0000
Manifest this update: Sat 09 Aug 2025 01:01:25 +0000
Manifest next update: Sun 10 Aug 2025 01:01:25 +0000
Files and hashes: 1: 1-wEZKS5ROln113VYj-rYIVv3HMw.roa (hash: zd3NK5lHmlo7IZCKvHCkj4ue/ewdTG041qEpUCwPhSg=)
2: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: PmfWEZB9VDMfn0Kg8V4Eh2amNnlC/PjeIfkDSrtTLDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:58:c9:d0:3d:b1:d4:e5:34:8d:9f:38:4d:7e:2f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Aug 9 01:01:25 2025 GMT
Not After : Aug 10 01:01:25 2025 GMT
Subject: CN=4cc2102344e27eb11921a158f5747bd598fb36b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:64:68:a8:d3:52:1f:56:a9:21:8d:ca:d7:43:
a6:f1:f9:41:a2:dc:ab:33:84:f4:43:ab:dc:c6:f6:
c3:9b:19:3b:1c:d8:18:4f:32:ed:bb:a7:be:ab:d4:
c8:a1:c7:1a:18:c3:81:1c:36:5e:04:37:f7:0c:a0:
aa:83:2e:02:f4:ee:45:7c:50:40:fe:57:f9:1e:38:
46:e9:80:7f:4d:6b:ae:95:21:c5:e7:e5:c1:1a:99:
c6:a1:90:71:7d:46:46:13:38:bb:93:75:f8:61:19:
86:0f:22:75:1b:e4:6f:14:30:ac:71:29:40:96:f1:
1b:78:0f:46:77:06:22:a5:9a:bc:00:30:4d:03:21:
b2:82:97:e4:e4:5b:06:d1:60:32:cf:9a:48:8f:46:
f4:08:6e:4b:01:50:7b:05:3d:65:45:a8:2e:4b:1c:
53:ae:55:93:84:89:38:0c:ca:b2:72:c7:b9:c8:85:
b4:39:53:d9:c5:87:2d:5e:14:08:e6:3e:35:af:a7:
82:ea:c2:28:17:d0:a2:13:aa:86:1a:31:32:fe:af:
78:11:ec:6f:01:bf:8d:5a:12:7a:68:9a:36:b7:0b:
b7:71:c1:3b:c3:99:b0:d1:8f:66:a5:a3:7e:44:38:
6b:67:46:c4:2b:e6:c6:da:33:bc:45:0d:35:34:2f:
33:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C2:10:23:44:E2:7E:B1:19:21:A1:58:F5:74:7B:D5:98:FB:36:B2
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:ec:fa:01:1a:0a:77:06:49:c2:b2:8d:be:fb:73:25:ac:21:
8c:70:bf:0c:28:85:f2:b1:6f:ef:32:49:59:3e:9d:49:75:1e:
36:68:7a:40:2a:66:f9:b4:a1:7c:af:28:38:ef:b3:77:52:e0:
f9:29:da:6b:73:10:69:a3:ba:f0:70:80:dd:58:6b:7b:05:0d:
86:8e:80:4c:24:c6:f5:e3:a2:87:5e:15:a3:4c:7b:73:e2:20:
6e:a8:ed:7d:1c:b6:67:bc:b0:6c:42:69:fc:66:11:a5:4c:e6:
7d:6f:68:a6:a4:bf:e0:d6:36:99:c5:a7:c5:10:e3:97:54:93:
8a:7e:c3:54:0d:9e:c6:67:50:e8:cb:e3:b4:07:a9:4a:48:ea:
c7:09:0b:2c:5a:a8:36:f7:dd:96:a1:e5:28:91:fb:29:38:c9:
e4:74:96:d6:ff:64:f4:e5:f8:cd:9d:df:4e:02:8d:fe:71:fb:
9d:16:2e:9b:56:df:f8:b8:b1:d9:07:b4:30:9f:21:52:50:c8:
89:f4:b8:d9:46:46:89:35:a7:61:56:cc:58:40:0b:c0:73:59:
d7:9d:13:d6:6a:ef:d6:4a:e5:07:cf:ac:31:c8:14:6d:20:bc:
40:4e:2c:f9:36:42:0a:0e:a3:1e:bd:a2:bd:c2:6c:06:44:a8:
fd:29:ce:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 03:02:14 2025 by rpki-client