Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
File: chprP17V-3TQNRIhZRPEyB7-Hlw.mft (raw, json)
Hash identifier: BQWggTayRKBNjUoN8GuQLlS4SeadGupZbiqDAjKuthU=
Subject key identifier: D7:49:1F:11:8F:36:D2:61:90:4C:C5:E0:3D:5A:DB:8F:00:D2:87:26
Authority key identifier: 72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
Certificate issuer: /CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Certificate serial: 0197B8213659B7AF13258D0B5F5F3B00BFC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
Manifest number: 0C99
Signing time: Sat 28 Jun 2025 20:01:13 +0000
Manifest this update: Sat 28 Jun 2025 20:01:13 +0000
Manifest next update: Sun 29 Jun 2025 20:01:13 +0000
Files and hashes: 1: chprP17V-3TQNRIhZRPEyB7-Hlw.crl (hash: sM4OuBGp4j0wbMD1nVAFbelk8ufL8K+xqX1xjwKSa1A=)
2: kXwe6i_ywP7BuQfaKeMIx8MSFQ8.roa (hash: /QfuO16P3y+Nn1KiVZoDEz0J7D7ghuw9uLlF/vWhXd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:36:59:b7:af:13:25:8d:0b:5f:5f:3b:00:bf:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Validity
Not Before: Jun 28 20:01:13 2025 GMT
Not After : Jun 29 20:01:13 2025 GMT
Subject: CN=d7491f118f36d261904cc5e03d5adb8f00d28726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:05:76:73:bb:10:85:90:2a:c4:f7:2b:05:cb:
12:8c:c6:50:93:be:d1:2b:d5:a1:8d:48:a2:e6:da:
f0:cf:eb:e3:9d:80:00:a5:96:0a:fa:04:d5:f7:8d:
4b:9c:f2:81:fc:09:98:e0:48:6b:42:b3:d6:b4:86:
28:1e:7c:82:c0:24:1f:b9:a8:43:d6:3c:3e:d0:de:
96:e8:87:2d:68:2f:46:17:be:13:08:03:02:1e:29:
fe:b4:92:a8:e3:d4:d3:c2:f7:6d:8d:a8:d7:df:cd:
bd:7c:54:27:9f:00:1c:e2:f8:93:7e:a2:0d:bf:f1:
b4:91:79:e6:e6:55:32:e7:19:be:29:b7:d7:fb:a4:
8c:27:9d:f8:7a:41:8a:13:6b:7e:ef:d5:95:2a:57:
2b:4d:cc:45:75:5e:e1:ec:22:1c:ce:ad:57:5c:ee:
70:6b:69:63:58:36:56:fb:f5:65:5f:a9:3b:4b:54:
67:ec:36:bd:8d:0f:d3:1f:83:b0:35:76:00:25:2a:
f7:10:11:b8:98:95:48:09:45:ac:e7:ab:c8:6f:1b:
32:89:93:26:e0:94:a1:a5:29:30:c0:16:91:a6:48:
4a:b1:a2:80:17:0f:12:d8:50:1f:a4:d5:ea:9f:cd:
6d:6e:22:ae:8f:83:71:89:84:8c:74:d8:dc:93:9a:
4d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:49:1F:11:8F:36:D2:61:90:4C:C5:E0:3D:5A:DB:8F:00:D2:87:26
X509v3 Authority Key Identifier:
keyid:72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:36:f8:1c:1f:97:b1:da:89:a9:1e:85:1b:4c:f7:1d:41:4d:
13:2c:10:af:65:8f:9c:12:e2:e6:85:de:75:b9:4f:07:83:59:
d1:66:f6:d0:96:07:62:95:f3:c7:d4:6e:fa:a1:c5:31:5d:0d:
ba:47:45:f9:89:f1:f1:9d:89:b7:e5:0e:1a:e6:68:6f:59:e8:
34:9c:3d:bf:d1:6a:4c:70:ab:2f:81:59:fc:42:75:04:db:b3:
07:9d:47:77:bb:bf:07:64:26:db:a1:ca:bc:f7:e2:ba:98:77:
60:1b:3c:41:1c:fa:b5:ef:7b:f3:ca:98:16:c3:ed:20:74:0c:
d9:3d:f0:7f:62:88:1a:62:cf:6b:73:19:9f:76:14:f6:9f:d6:
b6:ee:dc:a6:ac:18:47:87:44:91:8d:68:ed:4b:c0:d9:9a:2e:
1a:66:37:75:5d:a7:f3:e8:ef:80:16:d9:d7:aa:a9:4e:01:5f:
e7:1d:ef:14:1f:38:3c:57:50:f6:bb:de:88:e3:1f:89:ac:f3:
58:66:37:62:b8:52:55:61:2a:70:4e:b5:82:6b:10:66:1e:78:
64:a5:4a:ac:c5:f8:57:04:27:cb:20:58:36:b4:9d:ac:91:77:
a8:aa:22:74:27:ee:1e:de:6f:b7:df:87:46:f4:16:b6:e6:f2:
05:bd:b1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:40:23 2025 by rpki-client