Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
File: 28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json)
Hash identifier: 5ZcrjKYURFcZ5eRUxaMlMEHgVGoqHRexPqB7Iwy2zHY=
Subject key identifier: D7:18:7A:89:7D:85:55:63:8A:22:C8:B7:51:96:7B:2D:FC:79:0F:26
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial: 0198D5BBF0547E21C32A01CB1903A6E921B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 07:02:00 +0000
Manifest this update: Sat 23 Aug 2025 07:02:00 +0000
Manifest next update: Sun 24 Aug 2025 07:02:00 +0000
Files and hashes: 1: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: KRHtEMXxGlazbpD2YJUoSHkt+IOSOT8T1bLxnSBfVlY=)
2: 5OG6iGTbUMv4yreuCzltBDVdDTU.roa (hash: B8Cg7jxvmm1JBGJPeKqbsREjncwII7bdGdlW3Ml3/PA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:f0:54:7e:21:c3:2a:01:cb:19:03:a6:e9:21:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
Validity
Not Before: Aug 23 07:02:00 2025 GMT
Not After : Aug 24 07:02:00 2025 GMT
Subject: CN=d7187a897d8555638a22c8b751967b2dfc790f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:82:e8:3d:76:76:11:5a:49:3f:2d:e6:d6:53:
06:76:64:0c:c9:f1:c3:6f:9b:94:40:9b:cc:57:50:
ac:7d:84:fa:4f:3b:83:88:91:02:ec:a4:08:32:11:
43:86:1c:c7:83:7e:37:47:e5:18:c6:4b:81:b7:d4:
1f:47:b6:69:ce:1e:fb:2d:44:b7:97:95:49:19:f0:
dd:8a:9d:1c:ec:6a:fe:cb:50:67:98:ab:38:16:25:
76:75:31:99:ca:c1:2e:c4:90:f7:e3:af:78:46:85:
19:49:2a:82:80:17:d8:ba:d3:6e:30:62:6b:ca:2a:
e7:79:f8:37:d6:bc:c7:5b:1d:9b:80:9f:30:1d:cd:
58:f8:dc:2d:3c:0e:29:1d:5a:c7:ed:28:c2:c6:09:
9d:75:58:a7:55:47:11:12:bf:e0:a6:5a:c6:c6:15:
f2:0e:cf:b9:d0:e6:c9:65:51:27:18:ff:33:37:5d:
76:08:6d:7f:a7:62:45:08:b1:fe:61:ea:72:82:ac:
6f:b2:0c:09:89:b7:bf:97:09:13:6e:d3:9f:ba:bb:
c0:6c:07:45:fe:0d:4c:b9:0b:67:a1:37:32:52:4b:
83:bc:c3:1b:5e:e5:8e:64:38:a8:b5:93:cf:d4:43:
9b:d7:e4:b4:93:64:e0:0e:6e:c3:96:36:ce:f8:b3:
9f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:18:7A:89:7D:85:55:63:8A:22:C8:B7:51:96:7B:2D:FC:79:0F:26
X509v3 Authority Key Identifier:
keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:1c:07:a7:43:ae:ba:08:81:b7:b1:da:76:58:ff:5f:2f:c6:
45:9d:f7:9b:77:13:db:da:21:4d:e8:7c:69:3f:dd:d8:ec:82:
2a:cf:09:33:95:8e:4c:af:6e:ca:37:72:21:fa:c8:d8:38:a0:
d1:64:7f:58:b7:47:f3:65:70:8e:85:37:4b:88:70:44:38:30:
71:12:1e:c7:0c:f4:cb:7e:f9:fc:e2:1f:f9:2c:82:3d:c6:87:
60:64:0d:2e:2e:78:d4:a4:1b:36:53:63:05:1e:c5:e2:2e:fb:
b8:13:7b:22:56:1e:e9:0c:18:77:e4:98:dc:7a:19:fa:ca:57:
1f:33:b6:18:e5:34:49:f3:85:38:26:39:c1:1b:02:e6:23:15:
f3:06:67:83:fb:c8:25:90:d4:d6:a9:41:b4:57:6f:90:15:72:
89:f4:36:4b:b6:5c:c8:e9:ca:81:2b:c3:80:bf:44:0a:9e:8f:
90:a7:20:b6:f2:ce:eb:83:52:04:01:44:6b:66:e4:20:c8:cd:
1b:b4:6a:67:d8:d9:4a:81:1f:e3:6f:7c:3e:dc:26:cb:38:9a:
5f:ba:e5:2b:db:de:fc:b8:28:90:db:6c:15:d1:bc:97:27:11:
e9:ec:54:46:f9:ab:27:d0:bb:6c:6a:d0:b3:b7:f9:d7:a6:f5:
95:3a:2c:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:37 2025 by rpki-client