Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
File: chprP17V-3TQNRIhZRPEyB7-Hlw.mft (raw, json)
Hash identifier: HmMXklQO52gOyIeuTtl2osWYXgv3e187Q29BBndYdIo=
Subject key identifier: 97:A1:F7:01:39:95:28:DD:DC:CD:23:0D:51:2A:5D:76:45:EA:BD:52
Authority key identifier: 72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
Certificate issuer: /CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Certificate serial: 0199FF598E051EDC42AB12CA0126F93663DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
Manifest number: 0DC7
Signing time: Mon 20 Oct 2025 02:01:22 +0000
Manifest this update: Mon 20 Oct 2025 02:01:22 +0000
Manifest next update: Tue 21 Oct 2025 02:01:22 +0000
Files and hashes: 1: chprP17V-3TQNRIhZRPEyB7-Hlw.crl (hash: JCRNwKXemrf2Za5cHpc5KMzfQhat56mqNNXDge0OfvE=)
2: kXwe6i_ywP7BuQfaKeMIx8MSFQ8.roa (hash: /QfuO16P3y+Nn1KiVZoDEz0J7D7ghuw9uLlF/vWhXd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:8e:05:1e:dc:42:ab:12:ca:01:26:f9:36:63:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Validity
Not Before: Oct 20 02:01:22 2025 GMT
Not After : Oct 21 02:01:22 2025 GMT
Subject: CN=97a1f701399528dddccd230d512a5d7645eabd52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3d:9f:95:29:77:37:ac:50:84:75:96:c2:33:
c1:82:ba:62:b5:b9:65:18:3e:d9:31:22:43:87:94:
9e:02:d5:e9:27:1c:9e:63:26:62:de:d7:b0:fb:3f:
ca:51:e8:ad:ce:ff:aa:77:f8:97:99:86:36:de:96:
b1:75:f1:26:a1:05:03:61:09:92:20:03:26:ab:21:
f6:ef:72:30:96:41:2a:46:91:2b:76:86:d6:44:fa:
40:b6:bc:c8:09:cd:50:44:37:4d:06:ab:0f:5c:85:
6a:89:c4:cd:6b:c0:c7:e0:85:ba:32:13:67:5a:05:
8a:7f:77:9b:80:40:f7:ea:df:90:fe:0a:f6:6c:c7:
bb:08:2f:2c:03:0e:a6:8b:1f:e4:7c:c2:39:be:62:
a9:4b:af:02:40:56:4c:0a:17:cb:40:21:bc:de:4b:
7b:35:72:90:8d:5d:f1:76:c7:a0:d3:41:fa:e8:74:
84:94:f1:9e:0c:78:9a:97:f0:29:ed:fa:1f:d9:ef:
da:ae:51:f3:e2:ed:1e:28:e1:95:22:61:07:a4:59:
e7:fc:07:c4:6e:14:ef:f9:3f:31:16:fc:ee:93:0d:
75:f0:a2:fa:8b:bf:30:e0:5b:5a:12:dc:98:08:de:
de:4b:60:64:d3:df:5b:d5:b2:98:ec:34:56:d5:56:
e2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A1:F7:01:39:95:28:DD:DC:CD:23:0D:51:2A:5D:76:45:EA:BD:52
X509v3 Authority Key Identifier:
keyid:72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ba:35:2d:77:9d:3d:58:fc:4c:c4:ce:87:e3:f0:d4:1e:38:
19:81:2f:04:c1:96:09:79:09:49:8e:17:45:f4:a1:d5:63:f9:
ba:f0:80:a1:1a:9f:96:01:e9:d0:c3:5e:4d:04:d5:d8:29:8b:
f1:ff:5a:79:c7:72:16:e2:38:5a:13:7b:98:c6:f9:f3:c2:44:
dd:68:c9:09:fb:98:b4:f6:97:aa:ff:c8:49:f2:25:6a:cd:51:
64:dc:c3:c7:d0:28:2f:b8:d3:47:68:e1:07:6c:05:bc:55:6a:
09:70:bb:6d:f0:7a:d7:1a:9b:d3:bb:5b:af:0b:76:59:38:45:
6c:58:f0:db:c6:bb:c4:cc:0f:54:96:88:68:70:ba:9b:20:2e:
b5:4f:50:b5:68:d3:64:1c:f2:6a:3e:21:c1:82:3c:7a:e7:14:
c3:4c:b1:e4:32:12:5e:2f:dd:36:eb:ce:8c:5e:be:38:df:c9:
c1:c9:76:4d:1d:52:a2:61:e5:e1:d6:ac:58:c8:eb:81:20:75:
86:f5:20:8f:6d:a1:69:5a:ff:85:4b:1a:73:de:4b:62:99:f3:
74:65:2e:a9:6a:a5:36:c2:fc:53:0e:6a:57:50:e5:8d:5d:df:
b0:05:0a:4c:5a:64:45:b1:64:3f:c8:ee:08:bc:b6:a8:91:27:
3a:f8:9e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:02:48 2025 by rpki-client