Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
File: q22oNLMssSxL2uM_Zy80jZg_MXY.mft (raw, json)
Hash identifier: kLBSB3Fs+YxQn8JiajR3y25ozBn0+u1ZT6HSxP336IQ=
Subject key identifier: F5:4F:91:88:41:85:0D:0A:37:6E:B7:B8:EC:32:89:1B:B1:6A:DD:94
Authority key identifier: AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
Certificate issuer: /CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Certificate serial: 0198D6CDD3FC1BFE5C9BEB6752C65D23ACDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
Manifest number: 0EB2
Signing time: Sat 23 Aug 2025 12:01:09 +0000
Manifest this update: Sat 23 Aug 2025 12:01:09 +0000
Manifest next update: Sun 24 Aug 2025 12:01:09 +0000
Files and hashes: 1: evpxyC_xQr6-9_i5vhF3SSD60QY.roa (hash: F+Lkz2iLknBGekmgWZevszL+qAh6hnFUDMady9RqMNg=)
2: q22oNLMssSxL2uM_Zy80jZg_MXY.crl (hash: kkUY4afXfAkL/VR2xHptP56wCOb8U4PvL6G13GmM+No=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:d3:fc:1b:fe:5c:9b:eb:67:52:c6:5d:23:ac:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Validity
Not Before: Aug 23 12:01:09 2025 GMT
Not After : Aug 24 12:01:09 2025 GMT
Subject: CN=f54f918841850d0a376eb7b8ec32891bb16add94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a7:92:53:df:8a:ae:1e:0f:37:91:ab:63:7f:
e5:a2:66:05:0a:09:dd:c4:b1:25:c6:24:38:eb:76:
08:56:d9:b5:3f:8a:62:1e:9c:86:2d:05:18:15:ed:
78:2a:5c:df:b6:63:8d:e7:18:8e:ce:ae:7b:09:4a:
a9:95:d3:c3:2c:ac:e1:45:c3:9f:23:67:66:f2:6b:
83:89:f6:3c:3d:1a:41:a8:31:f9:a6:f8:4a:3b:88:
04:50:6a:bc:62:be:7e:a4:ca:08:bb:63:9b:fa:70:
d0:3e:73:66:42:05:b9:25:a1:de:19:cc:7a:2f:28:
94:f1:9b:e9:d9:26:fb:92:65:70:60:cc:6e:06:fd:
7b:d4:1d:f6:2e:7b:71:dc:20:39:76:d5:87:cb:28:
bf:26:1a:24:ca:10:b6:1f:57:85:ae:17:01:dc:c0:
a0:b5:cf:d9:41:0b:52:28:28:f2:9c:4e:98:60:65:
22:28:36:d4:02:ee:9c:fe:17:77:b5:0b:bd:42:07:
2c:19:78:4b:e5:7a:fe:ad:69:1c:50:19:5d:89:dc:
3a:db:4e:48:d8:3a:37:ad:ac:ed:90:7e:9d:f1:42:
28:74:5a:f8:cc:ac:03:29:b9:8b:d9:8b:2c:51:63:
28:24:ee:69:ac:ee:08:4f:4a:70:e3:a2:a4:3a:95:
48:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:4F:91:88:41:85:0D:0A:37:6E:B7:B8:EC:32:89:1B:B1:6A:DD:94
X509v3 Authority Key Identifier:
keyid:AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:4a:d8:6e:b5:93:d9:c5:a7:ee:3a:db:38:0e:7b:45:91:8b:
5b:c1:94:58:db:f8:06:b9:42:19:bc:2b:f9:7c:39:f9:73:3d:
86:de:e6:33:a6:88:b4:ca:0c:5e:ee:bb:bc:3c:d0:73:f8:dd:
7e:7f:d6:02:dc:6b:6e:34:e8:66:25:ea:0b:58:c1:81:80:2e:
2e:dd:ab:62:37:2e:f6:f7:86:43:f1:71:0f:79:77:15:9e:86:
7e:ae:a1:7d:63:40:6b:cf:d3:cb:03:f0:84:d6:05:02:88:f9:
1d:a9:a5:a2:05:b8:97:5b:be:42:20:bc:65:ae:4b:64:ea:3c:
9f:e7:60:0e:03:16:7f:b9:f1:9c:88:d5:07:11:5c:30:a7:8f:
99:ed:56:7d:c0:5e:f1:27:36:b2:7c:21:05:f1:f7:1e:f8:d5:
05:79:ed:0e:c4:6e:48:f6:6f:d0:37:d1:68:d8:f8:e0:70:7c:
51:d2:2b:a9:ac:84:9e:e8:62:a7:c1:a7:64:0e:ba:b3:9f:36:
f1:34:34:a4:d0:50:c0:73:f3:72:87:99:c3:8b:2c:65:9d:92:
21:91:9b:5d:f9:4b:06:3f:f7:ff:13:9a:09:0f:e4:b0:f0:63:
d4:0b:0d:6e:8f:24:f4:83:bb:91:d3:8b:19:db:7a:af:4e:2f:
5b:c0:25:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:52:43 2025 by rpki-client