Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
File: tAqlFjSW4FOna21pzcRfdQBs2N8.mft (raw, json)
Hash identifier: pQbsdm+KXAzHNw0m029PiQo0WXZIohJzUEkb9x5h8WE=
Subject key identifier: 48:FF:48:19:0D:BA:49:7C:58:00:08:F9:00:29:EE:DB:9B:16:C1:CD
Authority key identifier: B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
Certificate issuer: /CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Certificate serial: 019872CF2E86D8AACA3A99B9F4F3230ADA00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
Manifest number: 1617
Signing time: Mon 04 Aug 2025 02:00:37 +0000
Manifest this update: Mon 04 Aug 2025 02:00:37 +0000
Manifest next update: Tue 05 Aug 2025 02:00:37 +0000
Files and hashes: 1: 1-d6DUI7mmJKHILGE-ACGJbIFV40.roa (hash: WM+ispXO9qKwdYzXWtwDmpPip6PK1PIBVYZaFFY6Sl4=)
2: tAqlFjSW4FOna21pzcRfdQBs2N8.crl (hash: u74XpShqe8sruIvMGMtA2P05l0Cigx1YPFUJG6hRbnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:2e:86:d8:aa:ca:3a:99:b9:f4:f3:23:0a:da:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Validity
Not Before: Aug 4 02:00:37 2025 GMT
Not After : Aug 5 02:00:37 2025 GMT
Subject: CN=48ff48190dba497c580008f90029eedb9b16c1cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:39:93:2e:b4:69:bb:fb:e6:5b:fe:92:79:1d:
04:f4:1a:2f:3b:11:dc:6f:39:51:fb:00:98:94:54:
4b:c4:44:e6:ce:3c:ca:66:fb:5f:60:93:e5:35:74:
c7:25:d6:66:78:94:35:0a:03:2e:6c:b8:89:03:28:
3e:e3:57:5f:ac:57:ea:02:05:ad:f5:33:61:b9:c8:
23:90:11:96:c6:c8:4a:db:b9:72:76:55:e9:41:c8:
71:a2:32:79:7b:f7:22:99:ca:bd:a1:80:03:24:92:
09:08:7f:bf:e4:22:02:29:c8:b6:0c:9e:3b:51:9e:
24:82:1b:d8:46:5c:4d:f8:cc:58:11:c6:31:6e:dd:
c9:39:38:80:98:3f:7a:8a:b8:18:f5:6d:a8:3a:1c:
3c:cc:bd:b4:b3:80:1a:f4:31:ec:c3:42:e4:61:7d:
0b:9b:9e:e4:75:ef:bd:9c:23:b3:38:6d:c0:e9:a6:
d4:11:db:73:e7:e1:e7:33:73:58:88:ce:ab:1e:81:
71:b1:05:a0:a4:5f:37:14:1a:4f:b7:5d:c4:2c:db:
c4:40:53:c2:77:7e:1f:67:f8:a3:38:c5:ed:a2:d9:
91:a0:fc:9a:43:a3:ac:ac:d8:f9:cb:e6:26:2c:a9:
f1:f4:d6:b3:24:f6:22:81:70:f1:a9:9a:5c:7d:a4:
fc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:FF:48:19:0D:BA:49:7C:58:00:08:F9:00:29:EE:DB:9B:16:C1:CD
X509v3 Authority Key Identifier:
keyid:B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:b1:b1:8e:fa:ee:7c:4c:a4:87:e2:e9:00:a7:8a:79:8d:26:
cc:a1:f9:78:2f:08:06:26:a0:1b:1b:3f:8b:fd:79:9c:f1:af:
67:0d:f0:2d:9c:c0:c9:57:da:6c:a3:a5:5c:1c:d6:c4:f8:55:
bc:7c:15:03:a4:1b:9c:eb:00:36:37:13:90:3f:66:14:20:d0:
c8:47:ee:e1:f5:44:1f:0a:44:86:f6:c3:5f:48:78:9c:da:c0:
2b:e9:b0:4e:60:b1:4a:2e:5d:c3:d6:40:6e:89:af:bb:62:82:
fd:a2:ef:b3:c8:2e:8a:56:f6:05:c4:19:77:d5:cc:e4:45:52:
a2:0f:54:3c:ec:2a:c5:e2:d6:10:88:38:0b:d1:b5:a2:61:de:
57:b1:5d:2a:3f:35:43:98:f9:3f:6e:dc:06:4c:3d:4d:4d:71:
ed:3c:91:6e:5f:ff:83:34:ea:f8:1d:1d:0b:dd:c1:0b:a5:36:
46:ed:b4:12:74:bb:3b:ad:a1:34:79:1a:03:d9:89:32:f8:c3:
b4:4c:2f:d5:30:4c:60:2a:79:d6:88:f8:7b:c5:46:aa:9c:09:
93:68:31:a4:4d:22:b2:46:55:fb:89:0d:57:a0:49:1c:5b:23:
ca:c8:7e:34:c3:44:f7:9f:d8:af:a5:4c:7d:1c:eb:c6:51:7a:
77:6d:af:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:51 2025 by rpki-client