Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
File: CQggTXz1vEqrOP-jnaOmge0he9Q.mft (raw, json)
Hash identifier: 2yQ4MmWdj96qLa8MdADQP7SnMSNzR5Txqs25Juns5k4=
Subject key identifier: A2:7B:BB:95:E1:3D:4C:78:1C:06:5E:09:0D:F1:A2:B6:65:65:5C:97
Authority key identifier: 09:08:20:4D:7C:F5:BC:4A:AB:38:FF:A3:9D:A3:A6:81:ED:21:7B:D4
Certificate issuer: /CN=0908204d7cf5bc4aab38ffa39da3a681ed217bd4
Certificate serial: 0198D7A8A82D3C0E9CB6CF69EDAA99D07DED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 16:00:11 +0000
Manifest this update: Sat 23 Aug 2025 16:00:11 +0000
Manifest next update: Sun 24 Aug 2025 16:00:11 +0000
Files and hashes: 1: CQggTXz1vEqrOP-jnaOmge0he9Q.crl (hash: yTaPxJzWGaWekhbDrC0stWLjbyx6YUP4zFx5zfnxGhs=)
2: sDPpx-mL_-TYo49AUalN83Hb7rw.roa (hash: TLER53MCgePm+J2o6lGDLT56kpvbjUNH4PxF0iwFFXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:a8:2d:3c:0e:9c:b6:cf:69:ed:aa:99:d0:7d:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0908204d7cf5bc4aab38ffa39da3a681ed217bd4
Validity
Not Before: Aug 23 16:00:11 2025 GMT
Not After : Aug 24 16:00:11 2025 GMT
Subject: CN=a27bbb95e13d4c781c065e090df1a2b665655c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:06:d4:ef:01:f5:38:cf:ff:2b:5e:a8:84:
e5:13:35:d9:a7:3c:96:c5:c3:63:45:51:d2:0e:c2:
3b:46:fe:25:51:bc:03:d7:6c:f4:a6:ab:83:ff:69:
6a:66:bb:91:a8:26:0e:f2:21:84:3a:6a:63:b7:49:
32:fa:2c:cc:54:5d:41:57:71:04:1f:c7:9e:f1:7b:
81:a8:8e:9c:78:d4:f9:83:81:6a:73:75:7f:56:b6:
5b:2c:a4:b8:16:90:1d:f0:47:3e:78:f1:03:6e:ec:
ff:d4:74:af:62:c3:80:2a:e7:dc:bc:49:c8:dd:2c:
e9:6e:89:36:0c:7c:4b:0f:18:58:e1:f6:9d:e7:43:
46:01:a5:30:e2:55:28:74:89:c9:a4:da:6d:31:6f:
a0:85:6a:f9:de:5f:50:b3:21:a4:e2:3a:98:35:6b:
88:94:0e:91:6e:b7:23:82:06:9c:26:a3:5c:24:19:
9f:54:a8:c8:70:4f:58:2c:b0:8c:bc:0c:69:a3:26:
b5:d6:37:98:7a:bd:aa:7d:17:98:9b:e1:c8:5d:54:
1a:3f:11:cb:ba:a9:04:ab:19:1a:22:b2:4d:bd:6a:
c8:da:47:83:ae:0e:09:a3:04:1a:58:56:37:08:f1:
18:8a:10:20:27:9f:3e:99:27:e7:8e:46:a1:ce:ed:
73:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7B:BB:95:E1:3D:4C:78:1C:06:5E:09:0D:F1:A2:B6:65:65:5C:97
X509v3 Authority Key Identifier:
keyid:09:08:20:4D:7C:F5:BC:4A:AB:38:FF:A3:9D:A3:A6:81:ED:21:7B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:ff:5e:d3:66:ae:84:ae:f4:a9:e6:ca:2d:64:2b:b5:33:c0:
06:e9:be:6e:86:81:29:27:de:71:03:28:0f:d8:59:2e:b1:98:
88:a9:53:9e:1d:49:b0:ac:62:8c:c3:ff:b3:b8:6e:07:2c:a9:
e8:48:c4:2c:36:f1:50:71:09:14:d3:fd:35:9a:9b:63:2a:33:
22:e9:18:01:22:56:53:39:d5:d5:d9:a7:24:0e:6e:7d:b9:6d:
81:08:8c:40:fc:72:a7:a2:dc:16:35:96:f3:f1:56:3e:32:51:
ba:38:5d:77:fb:50:55:67:c7:d2:4b:44:0f:f6:66:f1:ce:e3:
b5:0f:d6:33:05:ca:93:c8:b6:cd:8b:d3:ba:a8:73:30:b0:91:
18:08:2c:b7:73:d3:4e:a6:77:25:02:6b:e1:a2:c4:46:a7:1f:
80:42:e1:39:65:3d:1b:3c:46:a2:55:b5:96:f4:bc:cd:13:5e:
f7:94:b2:0e:71:b6:62:7b:2e:90:b8:bc:86:fc:5d:17:a3:23:
ad:23:a6:fc:46:22:a6:01:af:0f:88:3b:b6:84:bb:b2:be:1b:
9f:21:ee:d6:9f:db:47:e9:ae:97:27:29:f2:51:83:2b:55:d5:
4b:ad:98:93:5f:d7:b7:c9:f2:47:88:a5:94:11:a7:08:77:57:
67:7c:b1:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:49:27 2025 by rpki-client