Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: w+sFlVORlBLgyCIbS8c29AjXQok+eqJXiO28mSJWcj8=
Subject key identifier: D9:2A:06:14:6F:AA:08:A2:60:D3:0D:1D:F0:DA:79:1A:7E:3B:EC:2E
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 01977075972CD6961790D1C5708CFD676850
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 22:00:43 +0000
Manifest this update: Sat 14 Jun 2025 22:00:43 +0000
Manifest next update: Sun 15 Jun 2025 22:00:43 +0000
Files and hashes: 1: 1-wEZKS5ROln113VYj-rYIVv3HMw.roa (hash: zd3NK5lHmlo7IZCKvHCkj4ue/ewdTG041qEpUCwPhSg=)
2: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: USu8AdOeWrbvSRBPDt1qX7yNKcvy2J8oFI9weNpvmJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:97:2c:d6:96:17:90:d1:c5:70:8c:fd:67:68:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Jun 14 22:00:43 2025 GMT
Not After : Jun 15 22:00:43 2025 GMT
Subject: CN=d92a06146faa08a260d30d1df0da791a7e3bec2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bc:19:4f:96:1f:3a:b4:d5:25:6c:58:af:8f:
fa:b1:1f:4f:17:6c:a8:99:ec:47:56:57:49:ec:51:
c2:2a:ad:49:24:d3:de:dc:27:78:6d:ff:d5:fe:a4:
11:e8:c6:d6:e8:f2:1b:2c:b9:be:57:a3:82:56:40:
e3:6f:c1:37:13:62:31:73:f4:bd:df:96:6b:6d:ca:
cd:53:2a:7c:e7:19:a1:1e:00:79:3f:40:34:98:35:
b3:ad:8b:06:2b:6a:7a:3b:fb:f5:c1:29:11:76:5c:
50:aa:df:09:f5:88:09:4c:db:c7:f7:47:b1:32:61:
63:c7:0c:a9:ac:fb:95:c0:85:70:4a:02:6c:d6:c7:
d2:bb:a4:ef:5c:fa:a9:da:79:21:24:57:d7:00:52:
6b:30:b8:26:5e:6d:21:5d:f2:e7:b5:a2:50:33:a1:
7c:9c:c7:f9:99:66:68:91:73:75:de:73:9b:e4:e9:
b2:ae:cd:6b:55:b7:a2:15:7a:ad:f6:43:60:ba:6f:
ea:b7:11:9d:56:5a:b2:f6:db:5b:d9:e5:b7:3d:18:
6f:06:4b:ce:bb:27:08:62:68:5d:de:1f:d6:18:33:
4a:8a:85:55:3a:b7:24:53:05:31:71:12:a7:55:ee:
98:5a:26:70:d9:ef:a5:1b:0d:e8:0f:59:ae:cc:89:
76:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:2A:06:14:6F:AA:08:A2:60:D3:0D:1D:F0:DA:79:1A:7E:3B:EC:2E
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:44:32:b7:66:bf:2c:b4:df:83:15:b7:85:e8:b6:68:38:73:
94:ca:96:5c:29:97:6c:86:96:39:77:9d:2d:75:19:a3:ad:5b:
58:dd:cf:24:65:58:d8:42:83:e7:b2:ae:60:90:86:3a:6a:1e:
57:09:b1:b1:a5:b1:36:81:a0:cd:86:e6:3b:30:3c:5c:8c:e6:
85:3f:78:53:50:69:b5:1a:2e:cc:62:64:5f:fb:9d:ef:eb:a6:
d9:57:c8:c2:9d:76:d2:4b:b6:d3:8b:33:0f:70:d9:48:17:c5:
7b:05:99:83:95:bf:27:45:6c:04:da:f8:9d:4a:2d:33:0a:f3:
6b:ee:b2:66:69:5d:57:01:f8:27:82:aa:78:65:4b:4f:fd:1f:
ea:f0:57:cf:89:bf:a2:d1:eb:f3:93:20:11:ce:f5:8d:2d:86:
0c:fe:ac:e5:11:5c:44:7c:f4:95:da:fb:b6:49:80:1b:c7:d6:
41:14:5b:9a:ce:1c:fb:f2:a2:1f:ad:45:da:65:70:55:7f:fe:
d7:84:a7:d9:09:74:54:2f:83:34:77:ce:3c:a1:d7:a5:29:a6:
07:38:4d:ee:06:c3:9d:74:de:cc:06:50:fd:f0:1d:a2:3a:d2:
9e:79:dc:3a:e4:57:4e:fe:fb:e8:60:df:8c:c6:7c:de:a2:67:
ca:50:6b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:12:00 2025 by rpki-client