Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: LqNyIh5jgIqUmkD0fQpFY+YtTBxm/oBUtNmlTLQKjzE=
Subject key identifier: 12:A6:76:B7:E2:0C:7C:41:B4:B1:61:71:6C:58:93:46:AA:B1:C9:BB
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 0197B6A177B30CE73471DFB05C903436B803
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 08D2
Signing time: Sat 28 Jun 2025 13:02:04 +0000
Manifest this update: Sat 28 Jun 2025 13:02:04 +0000
Manifest next update: Sun 29 Jun 2025 13:02:04 +0000
Files and hashes: 1: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: ZdxRdp17q5cLcYhXxIL1/XW4VjJVO4037odBjNW6TEk=)
2: EOgnkpCGO25TfSV28ABNiElbHMI.roa (hash: xamMOb/MG2jklBJl6shRJRNZ2UW4izFBKtZBvXEcSVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:77:b3:0c:e7:34:71:df:b0:5c:90:34:36:b8:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Jun 28 13:02:04 2025 GMT
Not After : Jun 29 13:02:04 2025 GMT
Subject: CN=12a676b7e20c7c41b4b161716c589346aab1c9bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7f:af:b7:4f:3a:66:8e:43:dc:d4:0f:dc:e8:
bb:7c:40:eb:66:b0:24:05:ff:32:da:0b:a0:8e:be:
c2:23:f1:53:92:e2:b3:45:0b:b5:2b:ee:38:14:65:
af:95:d1:a0:9a:00:08:f8:b3:35:be:fd:5c:ab:92:
c4:4e:aa:7b:4e:06:94:98:1a:90:4c:17:aa:0e:4e:
97:81:c1:6d:23:44:a6:b4:59:c1:0f:d2:d7:82:2c:
35:6a:b6:51:e8:d6:74:2f:ef:ca:2f:5b:a4:09:58:
21:fb:af:41:a4:c1:d6:b8:be:79:0e:0b:4b:78:53:
7e:24:e9:9e:cf:43:1a:73:80:c5:a4:a8:dd:6a:48:
19:ee:c5:68:40:06:09:b9:af:11:a0:10:69:8b:f7:
27:56:76:1d:72:09:3d:2e:4c:d2:bd:a6:d1:1e:5a:
c6:eb:05:78:af:43:65:30:3e:29:4f:22:92:18:96:
dc:d3:c6:ce:ec:41:68:77:a6:62:69:00:e0:a2:c3:
31:e9:71:45:f6:4b:a7:5f:82:38:5d:33:ce:e9:35:
80:b6:31:b9:1a:ae:08:fb:f6:99:a6:d3:f0:ca:86:
06:50:64:bd:27:4f:5b:8a:92:60:a6:38:14:42:70:
d5:9a:3c:bc:b3:52:6b:15:c1:c0:d9:41:9e:9a:7c:
26:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A6:76:B7:E2:0C:7C:41:B4:B1:61:71:6C:58:93:46:AA:B1:C9:BB
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:fd:74:0a:58:52:29:fe:cf:d0:f0:0d:96:c8:6e:4c:19:d1:
14:11:bb:97:7c:1f:03:37:1f:91:10:f1:df:75:3d:24:44:94:
b5:e0:9d:fe:15:ed:d4:b7:b0:ce:6a:c4:73:91:9c:fe:26:bc:
b3:0c:57:66:db:48:e4:f8:c6:ff:ac:a9:fc:65:ce:3a:a1:e9:
5d:3f:56:0c:0e:81:d3:93:9d:3f:5a:e6:0c:15:69:f9:7b:70:
b3:fa:c5:cf:0c:e3:45:65:78:4c:c8:43:76:8a:a9:0c:ba:7f:
4a:f1:bf:92:fc:73:85:8c:9f:2b:41:84:5f:63:94:80:9b:71:
d9:06:b6:d3:f4:fa:8b:d6:81:f6:6a:af:af:e5:ba:84:89:82:
7a:6a:27:3f:df:9d:86:5a:ea:81:64:df:b6:cf:e0:94:53:ca:
ca:2b:cc:3a:73:97:d4:95:f9:c6:ad:2b:bc:cd:5d:59:33:9b:
02:f8:43:3c:bf:45:36:75:ec:bc:5a:2e:05:15:ec:e3:32:ec:
65:2b:56:61:f9:b7:ca:9d:59:b2:dc:a2:62:0a:a0:f3:97:9f:
82:c4:95:e0:fe:3c:2e:c0:25:29:2d:ef:0d:27:1e:f4:02:cb:
5b:d8:7f:9e:3c:a5:f0:2c:6f:e4:45:33:87:e8:6d:27:a1:aa:
7b:4b:57:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:58:25 2025 by rpki-client