Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
File: CQggTXz1vEqrOP-jnaOmge0he9Q.mft (raw, json)
Hash identifier: FgpjPZX7TDCsO5xVS1SMyUtdEnBXj19C3b3+QT3pHxo=
Subject key identifier: EE:E5:BE:9C:E1:F0:5D:16:45:A0:98:A8:B0:49:8F:C5:F4:81:68:2A
Authority key identifier: 09:08:20:4D:7C:F5:BC:4A:AB:38:FF:A3:9D:A3:A6:81:ED:21:7B:D4
Certificate issuer: /CN=0908204d7cf5bc4aab38ffa39da3a681ed217bd4
Certificate serial: 0197B5FBFE28AB55C76FF2FFD86257C627AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 10:01:20 +0000
Manifest this update: Sat 28 Jun 2025 10:01:20 +0000
Manifest next update: Sun 29 Jun 2025 10:01:20 +0000
Files and hashes: 1: CQggTXz1vEqrOP-jnaOmge0he9Q.crl (hash: LczAKTz1xBxDSQ48M9ribSSfom/ugQbq1/g6DH4y0O8=)
2: sDPpx-mL_-TYo49AUalN83Hb7rw.roa (hash: TLER53MCgePm+J2o6lGDLT56kpvbjUNH4PxF0iwFFXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:fe:28:ab:55:c7:6f:f2:ff:d8:62:57:c6:27:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0908204d7cf5bc4aab38ffa39da3a681ed217bd4
Validity
Not Before: Jun 28 10:01:20 2025 GMT
Not After : Jun 29 10:01:20 2025 GMT
Subject: CN=eee5be9ce1f05d1645a098a8b0498fc5f481682a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0a:f3:92:16:81:91:49:58:1b:36:f6:26:97:
06:78:d4:52:bd:0e:33:5a:2c:4c:d1:20:7c:06:f2:
41:56:7a:55:2f:e7:2f:73:fd:1f:3f:1d:70:67:c8:
d0:1f:a7:5c:cb:1c:2f:1d:c8:ca:bb:27:2d:16:70:
3a:b0:a7:fb:a7:f5:7c:41:29:9c:47:70:54:6d:8c:
ff:52:5c:84:28:31:25:9b:6d:b1:61:31:be:31:8d:
bb:b5:91:70:72:7e:9b:be:02:5b:8a:f9:e6:03:61:
e7:1a:82:b7:98:22:80:09:de:79:06:cb:29:40:63:
2d:20:10:3a:65:6a:48:62:f2:2e:c6:64:88:e1:17:
55:28:65:ee:60:f8:1e:05:c5:2b:f2:8c:1d:72:f0:
b8:51:67:29:c2:55:66:fc:76:e6:04:c1:fa:ef:eb:
93:12:63:21:ef:d2:d2:f1:d6:45:84:69:7e:fa:18:
61:b2:9c:d0:89:f5:4e:c5:3e:ac:97:90:90:3b:b0:
85:88:55:f4:cc:e7:94:62:72:4d:6d:c6:2e:85:e7:
71:cc:55:22:d2:a5:6f:24:3f:27:6b:a1:f2:1f:d9:
03:e7:4d:b3:5d:47:c0:35:35:1a:d5:9f:3e:d4:d4:
8c:de:c2:60:71:50:50:55:f5:c8:eb:fa:7c:1a:c7:
25:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E5:BE:9C:E1:F0:5D:16:45:A0:98:A8:B0:49:8F:C5:F4:81:68:2A
X509v3 Authority Key Identifier:
keyid:09:08:20:4D:7C:F5:BC:4A:AB:38:FF:A3:9D:A3:A6:81:ED:21:7B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:47:d8:e4:9f:01:e4:28:ee:90:b2:90:65:82:26:e1:cf:de:
6d:46:db:27:1c:52:23:d7:3d:62:a7:d4:c3:5f:ae:b8:89:41:
4c:16:88:e5:5f:62:f1:12:95:f3:ac:b9:6f:62:fb:2d:fe:14:
f2:6b:bc:57:14:ba:6b:77:84:59:f7:23:38:8f:88:d0:2b:60:
b3:6b:2e:9e:8a:61:62:0b:d1:69:fc:fa:05:40:d9:77:16:12:
30:c6:cb:46:b2:37:d3:7a:b8:e8:65:13:9c:26:26:67:df:a7:
61:09:08:d7:88:6d:61:c3:58:c2:57:64:a4:8f:63:64:d3:de:
05:17:0e:68:2e:be:3b:dc:4f:f7:05:4e:40:00:1d:3d:44:75:
67:34:3a:db:96:84:f8:87:cb:88:29:70:4c:0e:18:02:c5:36:
da:a0:23:ff:70:4e:37:47:e7:4a:db:80:b4:41:72:da:07:65:
99:4a:83:36:d2:59:a9:4e:c9:76:1a:e3:9e:58:4b:90:bb:13:
47:f0:60:7c:d9:db:31:d8:61:7d:7e:43:59:48:d3:2d:12:9b:
16:66:2f:da:8d:63:22:50:14:9e:49:9f:cc:ec:15:e9:f2:ba:
37:29:cd:c0:f6:8c:ca:c0:a8:2f:6f:13:64:20:e5:e0:10:44:
13:f8:58:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:37:03 2025 by rpki-client