Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
File: qS25uA37nJVniwfvLJU9YxB_X2I.mft (raw, json)
Hash identifier: LjsN4uY+3Wb2yUEDaKLocLqavaf6k7csfqHtZ+zC8tM=
Subject key identifier: A3:BC:3E:AC:9D:8D:24:59:35:D3:1B:AA:92:2D:2F:0F:B2:C2:23:52
Authority key identifier: A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62
Certificate issuer: /CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62
Certificate serial: 0198808B88321B232B656F91801D214708EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
Manifest number: 087E
Signing time: Wed 06 Aug 2025 18:01:24 +0000
Manifest this update: Wed 06 Aug 2025 18:01:24 +0000
Manifest next update: Thu 07 Aug 2025 18:01:24 +0000
Files and hashes: 1: qS25uA37nJVniwfvLJU9YxB_X2I.crl (hash: fEOu9igZS7HqkIK55ezomuIntANI2qdeaZQy5e25Jlg=)
2: u2PcO0qxdpMSmR6nWgSSQ3nTHEM.roa (hash: hawJL7X7ALdqooYTS/10qneIqHecH3wASpMJDU35WRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 18:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:8b:88:32:1b:23:2b:65:6f:91:80:1d:21:47:08:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62
Validity
Not Before: Aug 6 18:01:24 2025 GMT
Not After : Aug 7 18:01:24 2025 GMT
Subject: CN=a3bc3eac9d8d245935d31baa922d2f0fb2c22352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8d:87:8c:fe:eb:c1:a8:2a:03:c2:9a:f8:70:
01:fe:d7:c0:5e:3d:e9:77:60:12:f4:e5:b9:04:f3:
b6:af:f0:cf:f4:81:3c:01:89:81:f7:7f:2d:89:2e:
5f:4c:63:2e:f3:05:3a:07:68:35:a5:16:c8:2d:a8:
c5:7f:7e:2b:d7:90:e8:94:83:fb:ad:12:57:44:bb:
6c:51:dc:f5:92:7e:03:f3:7b:10:88:3a:52:e7:37:
cb:e3:ee:04:3a:8e:f2:c6:3e:1d:1a:63:4f:76:bc:
1f:10:a6:86:d8:ce:b0:83:7e:73:d3:a3:6d:28:e8:
ff:ad:74:38:65:7f:35:d9:5c:f6:83:f4:62:93:f6:
00:72:47:7d:79:c2:d0:e3:1f:32:b6:9d:a3:13:09:
ae:e6:e7:d6:fb:f8:a0:ee:53:cd:33:19:01:76:1c:
8b:63:bf:e6:66:6e:59:e5:7b:6e:b5:f0:7b:ed:2c:
7e:42:51:ba:1b:84:ae:b1:59:d4:5e:91:02:93:43:
8a:30:ba:68:09:1d:35:73:4f:df:42:c1:98:c1:1d:
f0:4a:4e:d5:97:72:e0:76:51:32:95:d8:17:47:e5:
6f:e4:0a:2b:11:25:f7:9a:c6:74:f3:94:b1:44:3b:
ac:42:8e:c0:c5:df:87:fa:94:96:d9:a7:7c:94:50:
16:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:BC:3E:AC:9D:8D:24:59:35:D3:1B:AA:92:2D:2F:0F:B2:C2:23:52
X509v3 Authority Key Identifier:
keyid:A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:bb:d9:c2:5d:d4:8a:f8:b2:bf:9c:7a:e0:f9:b2:4b:ee:68:
31:f8:f6:a3:f5:57:49:c4:f0:db:4a:07:d6:be:ae:48:b8:14:
34:2b:a0:a8:37:f6:98:6c:14:35:64:da:39:72:b7:02:dc:fd:
a7:da:4b:f1:69:60:3d:ad:0e:47:89:31:ff:64:eb:43:a5:43:
17:f2:44:75:7c:9f:f0:10:38:35:50:79:2d:32:5a:e5:de:3a:
fd:54:13:37:4b:32:4d:73:7d:81:0f:25:29:3b:df:44:2a:77:
de:31:27:26:71:35:0e:91:7d:7a:44:1f:be:1b:a9:f4:4e:30:
8d:4e:3c:97:0c:85:69:41:cd:ed:ef:5b:c9:32:e7:4f:fd:f6:
ff:76:06:d6:ae:ea:f9:ae:e6:ea:07:4b:13:9d:f6:47:11:17:
05:90:73:ba:00:ae:18:21:ca:28:3b:81:2c:0d:c8:b2:60:12:
cd:be:aa:a9:97:78:52:3d:e6:83:2a:b5:6f:0d:03:05:1e:ec:
83:09:71:85:2e:a5:67:a3:3c:2f:32:98:cd:42:9d:2e:26:12:
bd:06:58:81:b0:17:49:14:16:72:1a:36:e9:0f:31:b7:00:a7:
a3:73:66:0f:84:d6:fb:f6:53:74:1b:37:c6:63:6d:49:30:c6:
ba:e1:53:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 02:01:28 2025 by rpki-client