Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
File: q2TJrlviZApf1pRYanBMo0wgh78.mft (raw, json)
Hash identifier: ytseTeY9efS9GWYom4kGIRlk/iDBcWhJMfm4H+Rv9O0=
Subject key identifier: BA:21:F1:D4:31:47:A7:1C:D9:98:81:75:48:FD:AE:4C:00:00:D2:D2
Authority key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
Certificate issuer: /CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Certificate serial: 0198A04DC15724B3FBD3AE59868701227543
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
Manifest number: 162F
Signing time: Tue 12 Aug 2025 22:01:46 +0000
Manifest this update: Tue 12 Aug 2025 22:01:46 +0000
Manifest next update: Wed 13 Aug 2025 22:01:46 +0000
Files and hashes: 1: JLsWf4ypDqy3C3Vznf4c_jhkWzQ.roa (hash: W+Y7OMJT6eANPHdTBze3RK40F6OnPRrXmssah9nRki0=)
2: q2TJrlviZApf1pRYanBMo0wgh78.crl (hash: 60iMtjzbIt/CVfVB9ZQnRr3Mg6kAjE4F/cAbuIoOdSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:c1:57:24:b3:fb:d3:ae:59:86:87:01:22:75:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Validity
Not Before: Aug 12 22:01:46 2025 GMT
Not After : Aug 13 22:01:46 2025 GMT
Subject: CN=ba21f1d43147a71cd998817548fdae4c0000d2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:87:c8:95:52:80:53:29:a8:5a:5c:47:53:04:
3d:fc:bd:9f:d7:21:49:9e:6a:cc:77:d8:ef:10:68:
0c:89:47:89:6f:9e:84:4d:19:ca:53:c3:2e:57:08:
60:7f:23:1c:58:31:41:12:bc:dd:3b:4e:9c:af:d8:
72:00:5f:67:68:e4:99:79:dc:d1:c3:11:ad:d8:28:
cd:e6:b2:6c:3e:7f:f2:64:9b:4b:a2:83:7d:bd:98:
19:01:f1:d2:fe:c8:6f:80:3d:4f:7f:e8:9d:a7:8d:
30:fb:a2:96:5a:e5:7c:9a:f4:d5:7d:5c:58:71:89:
74:4b:a6:8b:d6:0f:8d:ce:e3:03:2b:f7:00:1f:b4:
ec:b1:3f:5b:8f:37:51:f4:54:c2:d7:4c:58:7c:c0:
d5:38:08:05:b7:f4:df:55:0f:48:24:f7:8d:8e:5f:
c8:68:2a:06:78:c2:fe:52:55:a7:fb:f1:57:77:72:
40:cc:e2:af:2d:65:e5:7a:c6:c3:04:bf:cf:f6:4c:
df:9a:64:0d:b9:34:c1:75:84:89:3d:d7:6b:6d:e9:
ad:ed:2b:39:e7:b3:9f:d2:db:37:35:ae:a6:57:7f:
04:0d:43:97:6b:1f:8c:75:99:65:20:34:e9:6e:03:
ca:6a:a2:e6:6b:ec:44:5f:cf:84:e1:37:91:b3:48:
4f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:21:F1:D4:31:47:A7:1C:D9:98:81:75:48:FD:AE:4C:00:00:D2:D2
X509v3 Authority Key Identifier:
keyid:AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:af:84:d2:a0:1a:64:8e:6d:74:38:d0:c5:2f:31:cb:e9:f3:
7d:af:2d:a1:a0:45:11:a2:c0:33:d1:47:36:b2:e3:3e:e1:7f:
63:1f:ab:3e:06:78:12:39:0f:0b:b0:86:cc:c4:6b:a8:fb:1c:
2f:97:01:52:f0:e9:48:40:bc:2c:cf:d3:6d:c3:64:0e:7d:81:
dc:d1:63:35:ee:8e:cb:a5:09:58:26:c5:91:90:4a:64:3b:4c:
8a:c3:1e:09:09:60:4f:a0:6b:a1:4f:3a:a1:7f:ae:e8:5b:b9:
98:1f:4e:6e:7f:c7:d8:10:44:50:73:2e:99:55:13:73:dd:d9:
1a:c2:3e:31:e8:cd:d4:81:b2:82:4b:25:fb:9c:01:a2:99:22:
3a:a6:d9:c6:e6:81:73:59:82:33:bd:fb:a2:81:33:fc:d1:d7:
c1:f1:00:6c:10:dd:4b:14:0b:6e:ca:bd:65:a7:b8:0a:bc:40:
64:c2:04:a3:a3:19:2b:c3:59:af:c5:77:d8:2b:c6:cc:7c:31:
16:a5:8d:68:52:e8:12:07:62:25:71:0c:70:5e:4a:ae:27:f4:
1b:3f:08:97:6d:fe:53:40:6e:69:fc:6d:b6:a0:2d:54:74:f4:
3b:a6:01:b8:f5:93:f1:29:3d:6f:ab:9c:2f:d3:76:ba:aa:b3:
7f:77:33:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:52:41 2025 by rpki-client