Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
File: chprP17V-3TQNRIhZRPEyB7-Hlw.mft (raw, json)
Hash identifier: pwK9c/uUETnobthr6cAFQTVu7+pajN2Brga80aPTNcI=
Subject key identifier: 94:54:E7:AF:38:E9:A8:69:61:E5:EB:18:6C:69:5D:1E:64:49:80:D1
Authority key identifier: 72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
Certificate issuer: /CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Certificate serial: 0198D7E11649C28C5FDDF0B26CE6A1498646
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
Manifest number: 0D2E
Signing time: Sat 23 Aug 2025 17:01:49 +0000
Manifest this update: Sat 23 Aug 2025 17:01:49 +0000
Manifest next update: Sun 24 Aug 2025 17:01:49 +0000
Files and hashes: 1: chprP17V-3TQNRIhZRPEyB7-Hlw.crl (hash: /vHF6nq8wB2JwnmvUEP2ThrstIta8GTnif9Begit3xI=)
2: kXwe6i_ywP7BuQfaKeMIx8MSFQ8.roa (hash: /QfuO16P3y+Nn1KiVZoDEz0J7D7ghuw9uLlF/vWhXd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:16:49:c2:8c:5f:dd:f0:b2:6c:e6:a1:49:86:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Validity
Not Before: Aug 23 17:01:49 2025 GMT
Not After : Aug 24 17:01:49 2025 GMT
Subject: CN=9454e7af38e9a86961e5eb186c695d1e644980d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:78:f9:4e:32:00:16:14:b5:5b:ac:13:5e:57:
32:12:42:10:ef:8d:70:d6:e6:0c:46:57:7f:3d:c5:
ae:4e:59:5d:02:6a:4f:e6:04:6b:38:89:b5:39:d2:
42:fc:32:c2:ee:82:9d:2a:c2:18:62:64:77:9d:6d:
4a:4f:cd:90:0b:ab:5a:d3:b6:1a:dd:61:59:3f:ad:
dd:86:49:05:a1:91:2b:56:f0:49:aa:20:7a:51:a6:
66:c1:a4:9c:1d:bc:2f:42:5c:49:0e:40:ae:93:5d:
1a:b9:8f:2d:6f:a9:c0:a1:71:0c:c2:e8:44:f1:73:
4c:f2:35:30:6f:e3:44:40:82:aa:fc:ef:d2:3f:d2:
5b:0b:5f:22:b9:6d:a5:e4:95:21:a4:d2:1c:9f:c9:
1c:f8:27:f6:1e:de:fe:13:98:6c:02:14:47:2b:77:
a4:16:f9:fc:b0:ed:28:8c:16:3f:ba:58:d4:f6:31:
ec:bb:cb:4e:57:c6:35:90:25:e2:c0:d1:77:bf:18:
fd:1b:5f:5f:0d:ee:45:01:8a:a9:c1:07:e2:2d:1d:
07:50:b4:1f:26:61:26:2a:a0:b4:2d:8b:1f:a2:b6:
79:00:7e:31:02:37:4f:b7:d7:7d:f5:b6:54:c8:db:
8b:57:6a:85:51:85:cf:20:04:88:a7:1e:6f:0a:12:
6e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:54:E7:AF:38:E9:A8:69:61:E5:EB:18:6C:69:5D:1E:64:49:80:D1
X509v3 Authority Key Identifier:
keyid:72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:3e:4c:4f:18:43:8a:b7:4c:e1:df:0f:73:29:6f:bf:31:8b:
0a:ac:b3:b6:8a:df:f0:8b:d7:05:56:17:59:1c:29:87:a9:c6:
c9:82:6a:34:fd:ff:74:12:15:e5:a2:cf:5f:94:37:06:c5:50:
26:c9:16:d9:16:21:34:e3:b3:64:93:b8:0d:a6:78:b2:49:fb:
34:63:ea:5f:3a:23:76:37:79:01:16:b8:d3:60:d6:5f:05:a1:
3a:78:b1:06:16:8b:37:f6:85:ac:bd:46:63:74:37:c0:94:0f:
30:0b:d0:fb:16:64:d0:45:f6:40:0c:ef:b5:db:b5:46:d4:2b:
4d:80:df:12:60:0d:d4:91:7f:37:d3:f2:38:d7:00:dd:be:9f:
a0:0d:99:dd:24:65:b7:83:9a:c7:8e:a6:4d:bf:52:2e:86:95:
e2:34:4d:7d:28:28:7d:ea:bd:df:f7:d8:0c:41:57:fc:76:67:
13:ea:02:28:1b:5b:82:a9:14:74:15:0a:ed:f5:07:59:fc:79:
a7:f5:ba:18:e9:3b:d7:c9:5a:53:09:56:30:c8:45:57:73:23:
21:3d:af:17:0f:e7:bd:7d:fe:5d:7a:4f:2d:f3:9b:44:24:6d:
08:10:2b:a7:cb:dd:84:28:7f:7f:ff:94:e5:27:cd:8b:ef:c6:
62:22:3f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:04:48 2025 by rpki-client