Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
File: tAqlFjSW4FOna21pzcRfdQBs2N8.mft (raw, json)
Hash identifier: LzTFa9p1Oe/0qaEwAb1qS2Ztjr4z5gOSWCAEAOmwrfI=
Subject key identifier: DB:B0:57:01:85:3B:28:68:B8:83:F0:1C:E3:86:A3:2E:0F:4C:88:FC
Authority key identifier: B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
Certificate issuer: /CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Certificate serial: 0196827E9EE8F801459E3F675593EEB4DEC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
Manifest number: 1516
Signing time: Tue 29 Apr 2025 17:00:58 +0000
Manifest this update: Tue 29 Apr 2025 17:00:58 +0000
Manifest next update: Wed 30 Apr 2025 17:00:58 +0000
Files and hashes: 1: 1-d6DUI7mmJKHILGE-ACGJbIFV40.roa (hash: WM+ispXO9qKwdYzXWtwDmpPip6PK1PIBVYZaFFY6Sl4=)
2: tAqlFjSW4FOna21pzcRfdQBs2N8.crl (hash: ZPhxm+1MDua7M5N91+zZKUvYVBc2uhAZ4jY+bLHioDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 17:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:7e:9e:e8:f8:01:45:9e:3f:67:55:93:ee:b4:de:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Validity
Not Before: Apr 29 17:00:58 2025 GMT
Not After : Apr 30 17:00:58 2025 GMT
Subject: CN=dbb05701853b2868b883f01ce386a32e0f4c88fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:26:65:af:99:b3:4b:77:05:15:f1:a6:ad:2a:
97:25:6d:e3:76:71:79:96:e0:8f:8d:1e:66:62:f0:
3d:9f:bc:1b:65:81:c8:10:2a:66:f4:48:e5:d9:1c:
d5:b9:57:5a:c5:9c:a3:c2:75:1e:70:89:ff:d1:84:
d4:48:d1:4e:1c:f6:8d:b5:8e:df:7d:c7:8d:87:75:
02:1e:c9:09:d3:23:35:7b:ae:51:fc:ed:82:e2:31:
9c:d6:a8:c2:20:8e:91:68:67:cb:d2:b8:d7:27:c7:
7b:e0:8b:f6:0d:a2:67:df:c9:bf:d7:6b:58:22:f2:
a0:75:4d:59:25:59:0f:43:ef:11:8b:89:60:7f:dd:
1a:56:fb:e1:aa:35:16:1c:ea:96:1e:05:e6:b3:5b:
40:94:0c:4f:ce:a8:b0:af:18:ab:f6:9c:07:b3:2d:
29:4d:0f:cc:8f:22:2f:75:de:f8:1f:9e:a1:47:ff:
54:8a:a5:32:68:3e:28:c3:c6:49:a3:af:d6:16:ae:
2f:19:6d:4d:98:13:5f:3d:52:f9:6f:44:a6:c0:ef:
5d:84:f4:63:0b:66:e2:c8:24:49:ac:d9:11:eb:59:
3c:a0:a0:21:89:b1:66:f7:ee:8d:99:24:0a:1b:de:
20:ea:65:47:00:dd:46:0e:c5:5e:3e:59:ed:db:78:
87:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B0:57:01:85:3B:28:68:B8:83:F0:1C:E3:86:A3:2E:0F:4C:88:FC
X509v3 Authority Key Identifier:
keyid:B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:8a:cc:19:62:ab:0d:ea:35:3d:03:b3:01:7a:a5:3b:30:26:
2c:4f:e2:f6:5d:06:e0:2b:d8:c4:4a:07:d8:09:b5:0e:07:7a:
fd:a1:1f:4b:63:63:bc:56:4d:48:c8:c9:0e:66:c7:ad:5f:ff:
d2:1c:08:76:57:2c:28:58:88:77:f4:17:2e:21:cf:34:ce:24:
0b:bd:a6:f0:db:14:dd:db:b7:69:35:16:0f:ea:2d:3a:9c:f8:
85:dc:be:ff:86:27:c8:0a:cc:e4:6b:f7:9d:09:70:1a:fe:ae:
d1:7e:b0:bb:b8:b9:11:53:d2:a5:7e:b5:6b:75:1d:24:b6:e4:
b5:67:12:a0:d2:b5:35:15:1f:8b:13:47:0b:b6:73:1e:0b:19:
b7:86:ac:21:db:5c:ba:56:d9:39:8e:c6:ff:1b:c1:81:34:5d:
27:fd:eb:00:42:66:6c:0c:88:19:c8:2d:0c:c9:0f:3a:1b:5b:
a4:ef:ea:9f:2c:bd:20:93:03:6f:b5:de:37:f8:fe:48:59:97:
a3:e1:33:3e:9e:28:52:f2:6d:4b:7d:3f:ef:a4:7d:1f:4b:5a:
dc:14:0f:61:1a:22:44:58:99:7b:04:e9:33:83:16:d9:5f:1a:
9b:ac:89:8b:15:89:18:c5:c2:15:a1:2f:36:13:10:1a:07:17:
a0:f1:f1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:34:15 2025 by rpki-client