Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
File: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft (raw, json)
Hash identifier: QLF6Vief8ciEFxmEVSdpFeCEWhxs059E7lSS6UyRPDM=
Subject key identifier: E6:2B:28:95:1F:70:5B:4D:AB:F0:DD:C2:B9:F8:47:A9:95:B1:9F:ED
Authority key identifier: 46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32
Certificate issuer: /CN=46aa60676c130c6438e45b5a607210e9566b6832
Certificate serial: 0198D4DFE451CD89BEECDD9E316127E9F108
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
Manifest number: 0362
Signing time: Sat 23 Aug 2025 03:01:39 +0000
Manifest this update: Sat 23 Aug 2025 03:01:39 +0000
Manifest next update: Sun 24 Aug 2025 03:01:39 +0000
Files and hashes: 1: 4pIrmmCZWAO8NuTmun2AQKQETQo.roa (hash: Pf6nhAI8L5UL8XOlhvccLv1CzKTIGW/DapLLMv9479I=)
2: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl (hash: 9YNvW2oSu86qopds89Z496nGtkm0eN0ZBAZxe4XYzBA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:e4:51:cd:89:be:ec:dd:9e:31:61:27:e9:f1:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46aa60676c130c6438e45b5a607210e9566b6832
Validity
Not Before: Aug 23 03:01:39 2025 GMT
Not After : Aug 24 03:01:39 2025 GMT
Subject: CN=e62b28951f705b4dabf0ddc2b9f847a995b19fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:97:6d:20:64:da:d1:81:bd:8b:5f:c0:a2:ac:
bb:57:47:05:10:e3:0d:75:55:6c:e1:58:bc:95:b3:
8d:ea:8c:cb:73:ab:e2:3f:4d:81:3b:a9:14:0d:24:
07:02:8e:be:37:8f:0e:65:db:a8:e5:51:50:fb:e7:
aa:65:41:a2:98:a2:47:4e:5f:70:3e:e3:3e:e2:08:
a4:e0:8a:f3:bc:28:b1:70:25:d2:e6:4c:9b:b2:de:
e4:2a:d1:0f:fe:a9:2f:7d:53:03:98:36:f6:c1:c7:
d2:19:28:40:62:16:b4:d3:11:86:7a:91:a3:cc:3b:
3b:96:62:14:99:39:ed:39:94:81:a8:75:41:78:8c:
00:2f:60:5f:c8:2d:24:62:34:eb:bf:7d:01:ae:8c:
f1:5a:f7:0b:39:34:1e:ce:9a:3c:92:61:fd:0c:a4:
11:2f:3e:ff:6f:5e:fa:41:34:c2:95:d5:de:3f:59:
9c:20:77:2f:b3:04:1b:37:7a:fa:c5:6a:28:e6:3a:
a5:8e:2b:af:72:93:d8:23:b7:0a:0c:68:3d:2b:1d:
57:b8:cf:34:b9:72:85:79:2c:d5:88:37:6e:d4:17:
3c:2c:7a:75:ec:5c:0e:ba:df:8e:f8:f5:42:82:db:
fb:8c:e2:7d:de:82:c1:11:94:20:60:d8:5f:d7:4f:
fb:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:2B:28:95:1F:70:5B:4D:AB:F0:DD:C2:B9:F8:47:A9:95:B1:9F:ED
X509v3 Authority Key Identifier:
keyid:46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:db:c4:c4:2e:96:5c:74:ad:bc:ed:ae:65:9e:16:32:89:a4:
65:a9:21:63:ba:64:71:3a:0e:0f:8a:90:4f:bd:61:90:db:83:
87:93:c7:ac:63:4e:08:90:f9:28:57:1d:8d:6c:a5:c5:fd:d2:
bc:02:4f:d5:3d:b5:64:21:f1:42:53:6c:f4:9e:87:a4:d3:e3:
62:a7:e4:6a:2e:e6:98:96:df:2d:5d:d7:ee:9b:4e:97:c0:58:
11:be:0e:f6:07:06:08:8d:ef:03:97:a5:5c:3c:a0:8e:8c:37:
21:67:fe:43:8c:23:b0:d9:10:54:03:f1:ee:41:30:9e:17:d1:
1b:d6:61:2f:79:22:dc:d4:8b:2a:f7:32:6d:07:b7:26:b8:c3:
34:cb:87:37:83:5f:28:74:c9:dd:7c:cb:10:04:c0:b3:c4:8c:
54:c6:78:6b:c1:7f:9e:ec:fc:0b:8e:90:49:ab:47:5d:3a:2a:
9a:df:49:b4:fc:a3:67:ee:b2:fe:44:af:e9:73:b4:64:4e:47:
f0:3e:4e:da:20:62:7e:b7:6f:fa:6e:6a:f4:37:17:bc:55:92:
b0:4d:54:b7:c9:0e:b4:78:98:4b:db:ef:e2:43:0f:72:15:82:
7f:4a:c5:55:3d:3d:cd:49:01:d6:46:b1:2d:0a:a0:9e:91:c5:
d2:73:08:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:20 2025 by rpki-client