Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.mft
File: qKI6ziwGf44hL_NZ2pbCBYtks-o.mft (raw, json)
Hash identifier: 4UadcLU90m7DxAge4d7Wmz4PLVso9Cn0WWaMOoc+7CY=
Subject key identifier: 4C:AF:C9:42:92:BD:17:0F:1D:DE:51:59:F6:EB:34:67:54:47:6A:97
Authority key identifier: A8:A2:3A:CE:2C:06:7F:8E:21:2F:F3:59:DA:96:C2:05:8B:64:B3:EA
Certificate issuer: /CN=a8a23ace2c067f8e212ff359da96c2058b64b3ea
Certificate serial: 0198D51628746A014E8A46BB35A095E74AF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qKI6ziwGf44hL_NZ2pbCBYtks-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.mft
Manifest number: 067C
Signing time: Sat 23 Aug 2025 04:00:55 +0000
Manifest this update: Sat 23 Aug 2025 04:00:55 +0000
Manifest next update: Sun 24 Aug 2025 04:00:55 +0000
Files and hashes: 1: qKI6ziwGf44hL_NZ2pbCBYtks-o.crl (hash: YdZWECL10Ldq1PbeHmYmMkvJRAYaXDUvjQzGTIzUpTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/qKI6ziwGf44hL_NZ2pbCBYtks-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:28:74:6a:01:4e:8a:46:bb:35:a0:95:e7:4a:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8a23ace2c067f8e212ff359da96c2058b64b3ea
Validity
Not Before: Aug 23 04:00:55 2025 GMT
Not After : Aug 24 04:00:55 2025 GMT
Subject: CN=4cafc94292bd170f1dde5159f6eb346754476a97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7d:8b:1f:2a:22:23:eb:4f:3b:76:ea:3c:0a:
10:ce:53:a4:66:af:63:e0:68:fd:8d:00:b1:0b:d0:
16:31:90:b8:d2:ef:ac:33:c5:05:27:c4:14:f9:c2:
45:e3:c5:91:47:9b:ff:d7:7e:e3:ec:db:5d:f5:0b:
bf:5a:56:65:a0:ac:2c:9d:4f:9f:3b:32:d2:43:9e:
db:2b:de:31:c2:f0:d6:2b:0e:76:d5:99:15:69:e9:
52:55:a8:a7:ac:61:27:a8:1f:a5:49:25:0c:ea:fd:
12:20:2b:27:a6:02:ce:48:f1:44:7e:c9:a6:9a:4a:
15:10:5e:a7:1a:cf:2c:eb:04:4a:60:70:ae:ec:b2:
49:a7:d2:2b:b5:8b:02:c2:5f:26:55:3a:29:8c:5a:
86:13:e9:a6:84:ee:43:cd:fc:8f:ec:59:71:c9:52:
f5:0b:4e:2e:33:1d:54:e4:c8:a1:07:8b:ed:d7:88:
33:39:cf:eb:6f:48:99:b7:37:7f:f7:c1:1f:18:5b:
e6:5e:5a:78:43:43:26:b3:7f:29:8d:cd:0a:83:87:
79:fb:ec:98:02:5a:39:d5:5f:50:06:7a:ae:d7:bb:
09:54:10:43:e4:c2:28:71:c8:e2:c9:7f:fc:a4:a8:
5d:c5:5f:e1:eb:fc:94:0f:4f:8f:bc:fa:36:d6:50:
af:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AF:C9:42:92:BD:17:0F:1D:DE:51:59:F6:EB:34:67:54:47:6A:97
X509v3 Authority Key Identifier:
keyid:A8:A2:3A:CE:2C:06:7F:8E:21:2F:F3:59:DA:96:C2:05:8B:64:B3:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qKI6ziwGf44hL_NZ2pbCBYtks-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/1e0bb6-e456-4a8d-b60b-752d5de0a90e/1/qKI6ziwGf44hL_NZ2pbCBYtks-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:a1:1a:a0:75:c4:ba:ce:7e:b1:6e:a7:75:60:76:0a:e9:96:
84:78:fc:a7:12:3c:34:47:70:48:45:1a:e1:bb:7f:53:fa:12:
e1:76:ea:c9:d8:c4:f6:25:6e:93:4f:9a:92:1c:b2:75:a3:b8:
03:ec:bd:cd:f8:76:c6:17:f2:63:eb:fa:84:50:55:53:80:cb:
a3:19:82:a2:a4:89:04:4d:d4:7e:8f:69:03:3d:e6:e3:7b:27:
f2:6a:43:7b:66:52:a9:98:bd:cc:54:95:7b:af:89:b5:8f:a2:
2d:ee:99:f5:61:ba:e3:e7:a8:61:8b:7e:a2:12:01:79:ed:17:
67:ef:36:c4:90:71:46:cf:d9:0a:58:2d:82:d9:27:ca:84:4e:
8c:00:46:be:0d:86:9b:b7:ee:48:a1:b9:9b:2a:bf:b1:47:0a:
c1:5f:f9:f8:7c:bf:68:e2:20:56:94:b7:c6:05:5d:78:35:47:
85:1e:c7:77:b1:71:cb:9e:33:5f:7f:11:35:39:2a:95:3a:b1:
f3:69:21:fb:3b:22:4c:4b:4b:54:c2:0f:32:2d:8d:8a:57:b0:
93:e6:81:00:d6:45:02:6f:0b:47:6b:4e:fc:45:8c:67:0d:b1:
1d:18:15:7e:d2:24:dc:e5:da:07:bf:28:e6:65:15:f8:fe:0a:
2d:0b:60:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:39:28 2025 by rpki-client