Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
File: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft (raw, json)
Hash identifier: QilfY4OQqvkXy9+pT80pTijKX+W9llYXXAs0lha3Xow=
Subject key identifier: 7B:BF:8A:8C:DC:50:57:53:83:CB:05:A5:F1:90:E9:DE:EB:EC:E0:07
Authority key identifier: 46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32
Certificate issuer: /CN=46aa60676c130c6438e45b5a607210e9566b6832
Certificate serial: 0197B70EDED5919411CA2668832644193595
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
Manifest number: 02CE
Signing time: Sat 28 Jun 2025 15:01:34 +0000
Manifest this update: Sat 28 Jun 2025 15:01:34 +0000
Manifest next update: Sun 29 Jun 2025 15:01:34 +0000
Files and hashes: 1: 4pIrmmCZWAO8NuTmun2AQKQETQo.roa (hash: Pf6nhAI8L5UL8XOlhvccLv1CzKTIGW/DapLLMv9479I=)
2: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl (hash: bThEs+GhbdWRdr263/VNBTdwPqCi2oEys5OugcNdNSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:de:d5:91:94:11:ca:26:68:83:26:44:19:35:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46aa60676c130c6438e45b5a607210e9566b6832
Validity
Not Before: Jun 28 15:01:34 2025 GMT
Not After : Jun 29 15:01:34 2025 GMT
Subject: CN=7bbf8a8cdc50575383cb05a5f190e9deebece007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d7:16:88:56:d5:05:e2:11:61:0d:8e:b1:af:
a4:fc:96:05:24:51:68:3d:78:72:bd:da:9e:ed:b3:
cf:51:8b:e7:10:b5:3b:b7:43:f4:15:ce:9f:d9:0b:
8e:da:bd:56:7f:70:b0:e5:48:1f:c2:66:f3:a5:0d:
e7:b4:4c:36:9a:e7:be:8f:90:32:35:1c:d3:09:76:
ac:22:0a:fb:a7:0b:90:f1:5b:52:d1:e5:79:fe:c8:
c3:53:73:c2:41:1b:cb:4c:c3:aa:24:68:6b:41:7e:
ef:f4:ee:9a:e6:17:d1:4a:7b:05:86:9e:58:af:f1:
7f:6f:7b:c7:bd:29:9c:b9:af:b4:f9:1a:13:3a:a3:
8a:66:1f:8b:6c:9f:b6:ed:e8:6d:a2:2d:fb:de:8e:
ff:11:43:90:60:cb:34:49:43:2a:14:30:6c:2b:6d:
28:aa:45:63:08:ae:eb:65:39:cc:1b:53:55:4a:65:
aa:cc:71:a1:70:3c:5c:0b:13:62:69:22:38:72:48:
96:e3:19:23:2d:b5:b0:6b:ff:44:98:9c:50:4f:d6:
23:cd:a4:ae:47:04:dc:3e:0b:c8:64:58:f6:ad:88:
c0:49:bc:cb:ea:e1:c1:52:93:b3:30:db:c7:1e:a5:
57:d5:0f:95:4f:27:66:ed:7a:fd:8c:44:ea:ae:31:
9a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BF:8A:8C:DC:50:57:53:83:CB:05:A5:F1:90:E9:DE:EB:EC:E0:07
X509v3 Authority Key Identifier:
keyid:46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:10:46:0d:8a:82:28:f9:d2:43:97:92:32:64:b8:05:89:b2:
cf:ea:a5:49:87:ab:93:32:84:16:a2:68:f6:0d:d4:36:ab:9e:
54:fb:a9:f2:0f:ec:52:45:d0:2b:2f:ed:34:62:ef:d5:3a:4c:
b6:5c:bc:e4:0d:a0:0d:45:3f:21:a3:0c:b2:ba:21:ba:f2:ec:
14:83:30:9d:53:6c:ec:b9:41:3f:d7:37:97:6e:5b:e4:ea:68:
e3:be:0d:d3:e4:e2:60:05:b7:15:3c:3a:a2:1e:00:3f:31:67:
3f:d6:d3:76:85:c6:6a:e8:95:8f:a5:fb:b5:24:7a:92:6c:27:
b5:10:f9:f3:1b:0c:37:c7:fd:f1:f4:69:4e:8e:de:ac:cc:2f:
dd:e2:d1:c9:f9:7f:59:db:2a:93:42:be:08:3a:cc:19:5e:03:
26:f8:6b:fc:c0:c0:f9:b1:b3:ed:b5:50:50:06:0c:3d:b8:3c:
b9:79:37:18:f5:37:76:2b:6d:2e:3e:25:32:f7:73:64:4f:16:
2a:82:c9:5f:21:aa:30:7b:0e:ce:a9:f3:7e:96:08:90:8c:f3:
ec:0b:e6:17:a5:25:28:f1:b9:4b:3d:31:d9:54:d1:4d:8b:2e:
06:28:5c:43:b4:58:3c:1a:c6:39:eb:f8:ee:fa:11:7b:6d:35:
24:c2:a0:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:54 2025 by rpki-client