Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
File: tAqlFjSW4FOna21pzcRfdQBs2N8.mft (raw, json)
Hash identifier: Q4JZYW5KiyGi+FJj+MvN09sXkaDyzM4Z1d9Pi54cP7k=
Subject key identifier: 86:EA:47:14:94:58:BB:AC:B0:AA:42:CB:DC:D6:73:C1:18:0C:DB:12
Authority key identifier: B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
Certificate issuer: /CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Certificate serial: 01974B560535F186054649E733C7429E8926
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 17:00:17 +0000
Manifest this update: Sat 07 Jun 2025 17:00:17 +0000
Manifest next update: Sun 08 Jun 2025 17:00:17 +0000
Files and hashes: 1: 1-d6DUI7mmJKHILGE-ACGJbIFV40.roa (hash: WM+ispXO9qKwdYzXWtwDmpPip6PK1PIBVYZaFFY6Sl4=)
2: tAqlFjSW4FOna21pzcRfdQBs2N8.crl (hash: VDHSg3Ux6Exb3a5p9/B9D3r1uK2q9ZIP9AEGvy/BscY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 17:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:05:35:f1:86:05:46:49:e7:33:c7:42:9e:89:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Validity
Not Before: Jun 7 17:00:17 2025 GMT
Not After : Jun 8 17:00:17 2025 GMT
Subject: CN=86ea47149458bbacb0aa42cbdcd673c1180cdb12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fe:51:13:3f:d6:1f:e0:78:09:8c:44:39:1b:
0a:22:e9:98:76:8a:b7:8a:fe:ab:d2:c9:07:92:fa:
c8:3a:89:8b:5b:2f:6f:f7:36:32:ae:67:77:1b:f4:
11:1f:54:48:bf:7a:40:19:ca:b2:d3:e3:9f:02:c3:
cf:e6:36:c0:37:6b:de:8b:5c:d2:62:e9:de:90:5d:
e3:03:7f:78:8d:c8:ee:14:bb:34:46:70:c1:24:68:
c3:8d:c7:9c:0e:b2:a1:2d:e2:0d:58:e7:c6:0a:38:
ab:50:ab:28:7e:e5:38:c6:c8:51:c5:70:76:b0:0e:
ce:30:89:e6:1a:6c:05:89:02:48:b8:98:cb:55:bb:
43:c6:b9:2d:83:95:7f:8c:e9:4b:3a:53:66:c1:ef:
00:a7:47:d5:f2:e5:da:6b:72:e7:45:16:2f:e6:f1:
24:25:2e:20:4f:3d:f4:fd:ae:8a:86:94:60:95:45:
9e:1e:1e:50:49:72:05:fe:18:a8:a2:85:84:fe:6b:
a0:5f:93:32:7b:48:55:c7:ab:53:64:96:be:cf:fc:
a6:1d:52:88:f0:28:d9:37:22:68:79:e1:a6:77:66:
86:04:61:65:ba:68:b9:0e:80:8d:71:e1:41:04:67:
8c:8d:02:97:25:5a:a9:ec:46:47:b1:12:5b:42:a1:
6f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EA:47:14:94:58:BB:AC:B0:AA:42:CB:DC:D6:73:C1:18:0C:DB:12
X509v3 Authority Key Identifier:
keyid:B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:96:f1:db:70:85:c5:26:e6:bd:4b:4f:a1:50:99:08:3c:e2:
d1:ef:a8:bf:23:84:65:07:db:18:3d:61:89:a0:7c:50:a0:63:
8a:95:a0:26:ad:39:73:bb:e8:4b:4e:fe:bf:83:11:f5:d5:6e:
ec:4e:1a:be:4f:1a:55:7c:e9:79:f7:af:1f:27:3f:01:e6:22:
9e:73:a4:0d:2b:43:ea:26:d6:35:22:8e:38:0c:99:38:db:0b:
86:b2:8c:f4:5f:a6:ea:1c:32:6e:2d:f6:24:37:c9:9c:2d:07:
9e:7c:74:2a:29:0d:77:ab:e7:36:aa:0b:4a:0c:33:bc:1c:ab:
80:84:93:ed:e3:2f:77:09:c0:b3:cf:14:d3:52:1e:98:11:ca:
e7:a6:47:b3:1b:5f:a2:34:d1:d8:47:8a:97:ad:75:7b:83:8a:
c0:71:e1:c4:a0:59:1f:6d:09:f2:2b:03:06:a7:e5:0a:cf:fa:
5d:a5:9e:a3:e1:90:4b:5e:f9:b9:de:cd:9a:53:58:1e:59:e7:
b1:6c:00:c1:53:1b:53:6c:c7:55:c4:6a:00:39:d3:db:e3:7e:
e8:cc:cf:67:60:61:da:ba:2d:88:82:0d:a0:6d:c1:da:4d:ca:
c3:89:22:65:8c:ce:6b:ea:12:6a:72:7d:8d:3d:ec:66:d2:01:
9e:10:53:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:39:59 2025 by rpki-client