Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: g9KMkx4taQOas0lXOalI4DXfms4OT+GvChgaxaNiLzo=
Subject key identifier: F1:4C:E7:EB:7B:FF:54:0D:65:8D:67:E9:96:0B:FF:9A:61:B1:9E:DC
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 0198D4A811D9F36F134CEE47D7A1A9C7D1D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 02:00:40 +0000
Manifest this update: Sat 23 Aug 2025 02:00:40 +0000
Manifest next update: Sun 24 Aug 2025 02:00:40 +0000
Files and hashes: 1: Diq6O5ga68_B8MEC7x3IDqn6lbc.roa (hash: r+Ep1MU6KZ691K575NCgrIa7fSiICzMjhV/0OlU71vU=)
2: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: IT1EBHCt5V+tveRsBaCs96PQmzCbB9TFbZ0PcXV35iw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:11:d9:f3:6f:13:4c:ee:47:d7:a1:a9:c7:d1:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Aug 23 02:00:40 2025 GMT
Not After : Aug 24 02:00:40 2025 GMT
Subject: CN=f14ce7eb7bff540d658d67e9960bff9a61b19edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:64:1e:74:21:dc:e9:e3:1c:dc:e9:d8:a3:62:
c9:15:0c:21:99:63:cb:86:74:34:da:f2:7e:f1:70:
ab:d3:33:44:81:fb:fd:46:6e:c7:38:5a:1b:1c:34:
2d:15:8b:51:e5:6a:9e:d3:09:d9:5b:f6:ca:95:0c:
54:c2:3b:9e:64:8b:91:0a:31:ee:28:95:3c:1f:cb:
f2:9b:d7:c3:80:b9:bf:3a:82:cc:94:2f:11:f1:dd:
52:fa:ed:7a:13:1a:19:14:87:a6:60:95:8b:ba:b5:
d5:83:be:2d:52:4f:dc:35:75:22:a5:4a:55:c0:17:
25:1a:c9:67:03:97:1a:4b:4f:c3:73:f0:89:75:12:
36:de:13:8c:0e:b0:49:60:b8:ba:5f:ec:b2:bd:b1:
1c:3f:a4:70:c6:a8:65:ef:c2:58:c0:68:63:95:25:
1a:2c:12:ba:7d:d5:14:a6:9a:ea:bc:7a:ef:a1:76:
10:8a:01:e6:2d:61:8b:70:d4:cf:81:2a:9e:a7:61:
2c:a3:7a:5a:42:48:47:b6:3d:a3:a5:43:56:91:82:
98:99:5d:cb:76:4b:a6:0b:b9:02:0c:c8:34:3a:53:
de:72:d1:64:a0:ad:c1:b0:ab:dd:3d:eb:9c:07:85:
1e:0e:ea:34:9a:2d:89:bc:17:ec:8e:01:bb:57:8a:
ed:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4C:E7:EB:7B:FF:54:0D:65:8D:67:E9:96:0B:FF:9A:61:B1:9E:DC
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:76:1b:1d:27:9e:b8:9b:71:53:20:3b:92:b9:da:d2:1f:68:
6b:22:a4:30:0c:6f:41:62:51:c9:41:b4:cc:9a:54:f3:75:da:
9a:47:99:ac:30:b1:2f:6d:be:84:8b:34:6d:36:64:19:d0:db:
49:0f:58:f8:83:1e:2b:e0:62:04:c9:26:de:6a:4f:6d:6c:6b:
d9:10:4c:2e:a6:d5:46:2e:f6:8b:30:f2:15:76:24:cb:b5:57:
a8:00:41:21:e4:4c:d2:2d:b5:3d:bb:96:c5:6d:5d:d7:a6:ef:
ed:15:9b:e0:01:eb:67:8f:c0:88:63:b9:cc:8b:7f:d3:f2:1e:
7b:08:38:01:df:02:92:40:7c:b9:c0:a2:4d:12:9c:c1:74:ce:
1e:af:0d:02:64:92:9b:95:49:9d:12:49:38:75:9e:e4:b7:f5:
8d:58:0d:cc:c5:21:3d:20:2c:20:cf:fb:04:5d:ab:23:9e:3c:
af:d5:ea:49:af:ab:d6:24:8f:fc:05:dd:10:65:ae:6b:3c:5c:
33:f3:6b:8c:70:eb:6a:fc:6d:a4:a9:cb:23:dc:5d:59:10:32:
f8:ff:6e:33:e4:a1:83:c8:07:32:1b:cb:df:96:cc:95:67:21:
39:6c:2f:a6:a3:de:1b:7e:7b:b7:6a:59:c8:d6:31:e1:77:13:
73:eb:78:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:40:49 2025 by rpki-client