Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
File: 7jcJhfg_QTMBEcNQzWseHurVJqo.mft (raw, json)
Hash identifier: O90n3QFEst9brW7zJTQrmOro9hCZOAZRqhHdfV0XIxE=
Subject key identifier: 20:9A:DE:7F:0D:42:98:FC:41:FC:98:BE:28:AC:8F:E0:53:9E:30:92
Authority key identifier: EE:37:09:85:F8:3F:41:33:01:11:C3:50:CD:6B:1E:1E:EA:D5:26:AA
Certificate issuer: /CN=ee370985f83f41330111c350cd6b1e1eead526aa
Certificate serial: 0198D583B181F6C91E29FFC004033E210869
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
Manifest number: 164F
Signing time: Sat 23 Aug 2025 06:00:34 +0000
Manifest this update: Sat 23 Aug 2025 06:00:34 +0000
Manifest next update: Sun 24 Aug 2025 06:00:34 +0000
Files and hashes: 1: 7jcJhfg_QTMBEcNQzWseHurVJqo.crl (hash: 7OCrHu5ptZEiH1aHrcPt/W+RYwkg5QnU0XOhhzpWqng=)
2: YMiovkkM1pTRsj2s2pWWavdNH3M.roa (hash: d26rfkrfXfTKQZRjWJD5TAVJi3E84OTuQPo2eEaVnMI=)
3: cXrx1ROqbRYTJpBaY9JfsPVk3Ow.roa (hash: e0I94SNdLBs+vaXUAirpLtLE8FeKHQEH/NhmFQRxO+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:b1:81:f6:c9:1e:29:ff:c0:04:03:3e:21:08:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee370985f83f41330111c350cd6b1e1eead526aa
Validity
Not Before: Aug 23 06:00:34 2025 GMT
Not After : Aug 24 06:00:34 2025 GMT
Subject: CN=209ade7f0d4298fc41fc98be28ac8fe0539e3092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:af:f7:60:47:04:84:09:2f:bd:ab:36:a3:60:
57:42:31:4f:ea:e6:8e:8b:4f:40:c9:05:96:5e:48:
3c:6c:49:41:62:e0:3d:34:71:c6:eb:7e:de:70:09:
63:8d:42:ee:2e:70:35:8f:c6:2b:3b:7a:8e:69:84:
ba:79:96:d3:ce:4c:4b:07:33:49:c7:ae:ad:cd:08:
67:1b:f5:2f:3e:87:f5:73:76:d0:17:45:af:de:33:
3a:9e:15:e8:6a:2a:76:e2:a2:5d:a5:e3:d0:4e:4b:
38:d1:36:9b:db:ef:0e:51:31:52:b1:90:52:12:6c:
71:93:51:d9:c5:e1:80:ff:47:66:cf:60:ff:27:68:
fe:e6:1f:1d:38:c6:8e:21:c9:60:03:28:b7:38:9e:
c5:93:8a:1f:6a:b8:9a:f9:62:af:8a:7d:58:4f:f9:
08:3a:12:43:24:66:f7:9b:e1:be:a5:9c:a2:2f:ca:
78:5d:51:33:c0:f2:e4:d7:e1:16:1c:2a:35:50:c0:
e3:6d:a1:b8:75:63:6b:45:db:80:e3:c2:19:98:26:
ed:db:cc:fa:c7:9b:97:c9:98:ce:a0:97:3e:e5:39:
32:9d:55:4b:58:f8:87:d1:f7:99:54:7d:9d:8c:35:
39:94:c3:a3:2d:5b:98:7b:ee:18:9f:f0:d4:32:47:
5e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:9A:DE:7F:0D:42:98:FC:41:FC:98:BE:28:AC:8F:E0:53:9E:30:92
X509v3 Authority Key Identifier:
keyid:EE:37:09:85:F8:3F:41:33:01:11:C3:50:CD:6B:1E:1E:EA:D5:26:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:bc:96:11:68:27:ad:6b:c7:a8:3d:ec:4b:c2:cf:59:f1:58:
cd:59:05:04:fe:95:e1:76:15:d5:37:5f:b7:87:89:ef:ca:a0:
30:d7:ac:00:a2:e4:6e:4f:b6:3b:d0:00:27:6d:0e:3d:91:7e:
cb:2a:62:1a:fd:46:ef:89:47:64:c4:3d:33:60:b4:74:06:3c:
cd:f2:16:48:71:d5:5a:e3:c6:bd:f9:8c:09:59:3b:b0:2c:a2:
74:ae:80:a8:0b:6e:ab:7c:d9:9f:4e:93:78:f5:af:f3:e7:69:
21:00:4e:2d:ed:2b:cc:47:2d:1c:02:5a:24:37:88:ac:6b:44:
fc:ce:c4:9e:90:62:cb:99:81:c7:ae:35:78:b5:3f:70:bf:4b:
0b:e9:6c:7e:99:f0:17:a5:5e:cf:cd:18:e3:18:73:46:f0:9c:
5b:dc:8c:88:78:d1:b5:0f:01:b1:70:fc:d7:7d:f3:fa:d7:c5:
67:43:e7:24:48:53:d6:47:0b:c9:5b:66:a7:6d:4f:a3:b3:c2:
d6:af:5d:4b:04:8d:69:c0:40:b0:93:c4:97:7a:36:9c:e7:02:
b9:9b:94:72:36:45:f3:7f:7a:20:32:0e:09:57:0f:b6:cc:4c:
c3:5e:9e:c2:88:82:19:5f:72:61:73:b8:b0:11:39:01:cf:26:
43:d7:85:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:41 2025 by rpki-client