Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
File: MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft (raw, json)
Hash identifier: yXb9ibZr1cySONBQORPRc+lcRUHHG/n4EhGFwfPR104=
Subject key identifier: 31:54:A4:0B:CE:86:69:3B:70:F7:B9:E7:02:79:45:9B:0F:01:DB:6D
Authority key identifier: 31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
Certificate issuer: /CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Certificate serial: 0198D5F16F8BA698784F610BF7F9A809C7FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
Manifest number: 0E49
Signing time: Sat 23 Aug 2025 08:00:26 +0000
Manifest this update: Sat 23 Aug 2025 08:00:26 +0000
Manifest next update: Sun 24 Aug 2025 08:00:26 +0000
Files and hashes: 1: MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl (hash: P5AGJfNXutD8yopa5eYc2WrKf92DRMJ/heOP2alcVo4=)
2: QXjAwQSpvYGLG9EKG43DcrvrWjg.roa (hash: /g3NGPvML9niLWrxGUEsCrw0JcuhbxCMPrgB31IKq7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:6f:8b:a6:98:78:4f:61:0b:f7:f9:a8:09:c7:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Validity
Not Before: Aug 23 08:00:26 2025 GMT
Not After : Aug 24 08:00:26 2025 GMT
Subject: CN=3154a40bce86693b70f7b9e70279459b0f01db6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:df:37:5a:f2:bb:ad:e5:59:3e:d6:6f:f0:30:
a4:1d:5a:12:2b:70:39:06:67:a2:09:da:09:85:d9:
f5:8d:ca:1c:58:1f:90:e6:f8:10:e7:b5:22:64:49:
04:4a:e6:db:dc:ae:6a:25:23:8b:61:ea:5a:65:5c:
ce:7c:8d:3a:49:9c:0c:b1:09:f1:5b:3e:51:ea:a1:
32:e6:5e:f7:ac:d4:3b:9d:f6:3e:fc:21:ca:41:25:
f1:7e:48:06:d7:de:ca:98:46:b6:f2:69:78:a0:3a:
41:8c:11:0d:23:66:44:82:e7:40:4f:16:c2:8d:e0:
21:2a:d8:e2:52:dd:39:52:cc:81:71:59:97:49:7c:
03:7c:13:e0:f1:99:f2:da:5b:9f:2b:67:a9:be:8f:
24:8d:bb:9e:dd:7c:1c:6e:bc:98:01:49:fa:07:06:
cc:d2:8b:9e:f8:ba:a5:3d:3b:57:ec:81:91:8f:ed:
bb:57:66:4f:0c:d4:f0:bb:26:bb:45:5d:08:f1:c1:
77:3c:9f:d0:7e:7b:d7:72:ef:24:a7:0d:53:da:d6:
3b:f9:cd:df:54:4a:84:c7:f0:93:84:aa:42:de:c0:
0f:dd:bb:c1:bf:02:9c:2e:9d:ff:3a:5c:be:4f:8e:
4a:9f:c2:39:e3:2e:17:54:03:c8:be:3c:c5:0b:ac:
ac:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:54:A4:0B:CE:86:69:3B:70:F7:B9:E7:02:79:45:9B:0F:01:DB:6D
X509v3 Authority Key Identifier:
keyid:31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:44:7c:cf:67:36:a9:3a:bc:f9:1f:21:e0:88:2b:d9:35:09:
e9:5f:e5:6b:b0:ec:ea:8d:10:c0:88:04:b1:e0:0c:07:f4:73:
43:63:bd:22:c1:87:32:a2:71:c8:b7:27:55:c4:37:37:1a:c4:
6f:3f:0d:16:ac:01:80:e6:15:51:d5:b9:04:da:fb:e2:6d:c4:
91:cc:bb:1b:19:64:f7:23:d2:cb:d5:53:8a:67:a1:27:cd:f3:
29:7d:28:a9:db:83:b3:3d:7d:88:4f:d2:a7:c2:67:fb:b4:6e:
1d:9a:1d:67:92:21:ae:45:4b:d5:ec:08:12:42:ad:30:ac:11:
b7:58:0e:bf:35:16:43:0e:72:2a:de:3b:8e:82:96:ac:a1:60:
17:2b:26:78:98:db:2c:50:da:65:1b:67:9e:d6:51:8a:2d:37:
20:cb:a0:a0:7b:38:b6:65:c3:90:d1:08:fc:4d:10:a7:4d:ef:
27:1e:77:b9:c1:c9:b4:56:cc:aa:fd:6f:2b:61:40:2f:bf:3e:
99:3a:ea:57:bf:29:54:4b:2c:25:28:d7:07:11:93:b2:3e:5a:
10:f6:64:38:52:3a:1a:a0:91:ed:c1:05:59:6c:95:b0:95:da:
2a:c4:b1:59:9e:77:36:ae:38:59:2d:04:01:b0:c2:3b:bb:af:
2f:aa:93:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:35:58 2025 by rpki-client