Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: EPSUsYbeEnaIXiJAprFDxT8e6Iyzqrh9t0OMRgcywdU=
Subject key identifier: 4D:2C:CD:33:8E:39:71:01:DE:79:65:B7:09:C6:FD:31:B6:4A:97:19
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 01976960981BD3CF936E8BCF0A5310B3F8A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 08AA
Signing time: Fri 13 Jun 2025 13:00:27 +0000
Manifest this update: Fri 13 Jun 2025 13:00:27 +0000
Manifest next update: Sat 14 Jun 2025 13:00:27 +0000
Files and hashes: 1: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: jnmPuGj74o+NpXDrZqTbG6+mv9aKI+2T2rh21YsVm+E=)
2: EOgnkpCGO25TfSV28ABNiElbHMI.roa (hash: xamMOb/MG2jklBJl6shRJRNZ2UW4izFBKtZBvXEcSVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:98:1b:d3:cf:93:6e:8b:cf:0a:53:10:b3:f8:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Jun 13 13:00:27 2025 GMT
Not After : Jun 14 13:00:27 2025 GMT
Subject: CN=4d2ccd338e397101de7965b709c6fd31b64a9719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3c:78:17:63:88:be:78:8e:70:82:db:1b:14:
9c:a1:32:3c:23:78:1f:ba:ab:3c:83:d5:be:22:17:
67:d2:f4:f9:6c:db:8d:d1:e1:14:62:2d:20:12:21:
2b:62:c7:aa:1b:f1:cc:5c:74:a0:ab:7b:cc:9d:7b:
fd:c8:68:7f:1b:d3:05:84:da:21:34:cb:47:b4:3c:
99:c3:ac:2f:1b:91:b7:22:06:ab:0e:71:9d:ee:e8:
6d:ff:60:1d:db:29:3f:3a:96:0a:85:f7:6c:62:cf:
89:23:64:cd:cb:6f:f2:45:bf:6c:8b:d6:98:b4:09:
85:66:a1:06:2c:ad:a0:0e:84:18:f6:66:41:b2:3b:
bc:4b:66:6e:d6:15:56:34:9c:f8:34:a7:91:3e:d7:
38:8b:0e:f9:fd:c1:70:cf:30:57:00:90:4f:bd:cb:
4f:3f:37:93:1e:de:2a:99:4f:94:13:20:99:86:70:
83:db:8b:d4:49:c4:d2:cf:ff:a7:69:59:af:06:4b:
bd:e1:ad:1c:c9:7d:87:e0:8a:92:45:b7:9b:1c:5f:
18:76:4d:52:1d:ee:19:83:a5:98:e6:16:d2:1a:ab:
d3:e8:5b:5a:07:19:7d:0b:36:7f:a8:c2:3e:07:85:
aa:02:5f:53:70:6a:98:18:5e:de:e8:82:46:b5:70:
ac:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2C:CD:33:8E:39:71:01:DE:79:65:B7:09:C6:FD:31:B6:4A:97:19
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:fd:18:3c:77:33:46:99:40:59:1c:a7:38:c8:89:4b:2c:77:
79:df:e5:cb:9e:f1:5a:53:5b:db:7a:db:ec:4d:6c:54:e7:c8:
7d:42:1f:2c:40:8d:6e:ce:89:e4:78:2f:7b:d6:ae:7c:25:a6:
a4:d3:55:13:04:97:49:8e:34:9c:c8:6e:c6:76:91:5c:de:77:
f5:c4:1e:7c:6c:50:21:4c:f9:20:1a:9e:88:25:59:16:cd:a6:
c4:80:cd:1b:71:08:98:64:ec:27:6e:b1:9a:c5:b5:52:be:df:
01:23:53:d7:91:49:31:4e:57:69:b1:c3:31:88:52:bb:ef:e9:
a5:7a:bf:96:f0:ed:c6:c4:6e:67:5a:22:7e:38:b3:29:0b:d5:
89:e6:fe:12:12:30:82:bc:e3:9c:43:34:d3:86:5e:6a:05:b3:
cf:77:59:ca:fc:d1:bb:e9:f6:34:ef:cb:3d:b6:eb:19:79:47:
6b:a3:44:a9:5e:13:2a:48:c2:b6:4e:ed:55:7d:65:08:32:3b:
81:75:f3:85:94:b9:1e:07:45:78:f0:96:ad:c7:7f:26:cc:25:
14:7b:e6:39:f9:1b:2f:e3:c5:35:c3:6d:b5:0e:d0:3d:e2:f5:
ac:9b:02:4d:9d:2d:04:fc:1a:8e:87:24:28:aa:63:9e:84:2d:
9e:bd:78:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 18:57:08 2025 by rpki-client