Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: oC5/8uk8CAwUrYv1D+J9pKLf0IML2MsnbNQcV55imd8=
Subject key identifier: F4:B7:51:1E:0D:CC:C9:12:B4:C4:05:0E:66:BF:23:CA:A5:41:17:6A
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 019873E1FB2C34E89BDC0EE087B894998B24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0934
Signing time: Mon 04 Aug 2025 07:00:46 +0000
Manifest this update: Mon 04 Aug 2025 07:00:46 +0000
Manifest next update: Tue 05 Aug 2025 07:00:46 +0000
Files and hashes: 1: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: FNQPD+nRaAYniL34MjTse9pTEDMCnS8iBdj8dhnEBPs=)
2: EOgnkpCGO25TfSV28ABNiElbHMI.roa (hash: xamMOb/MG2jklBJl6shRJRNZ2UW4izFBKtZBvXEcSVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:fb:2c:34:e8:9b:dc:0e:e0:87:b8:94:99:8b:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Aug 4 07:00:46 2025 GMT
Not After : Aug 5 07:00:46 2025 GMT
Subject: CN=f4b7511e0dccc912b4c4050e66bf23caa541176a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:99:84:46:50:23:8f:0e:d5:f4:71:2a:87:f9:
af:0c:8d:c5:f4:75:54:b2:15:a7:f8:7a:22:da:d9:
b9:a4:c4:d9:28:27:90:e0:0d:45:ad:4f:be:bd:43:
a4:22:2f:00:25:cf:ed:dd:d5:ca:95:ec:5b:90:80:
1d:31:dd:8f:02:df:61:c7:f2:ce:87:12:a4:20:29:
dc:c2:fd:af:7a:93:2c:14:6c:5e:f3:11:ab:c8:2b:
ad:2f:70:e5:8a:01:44:c0:15:ba:99:c3:55:de:3d:
50:44:e8:59:39:44:b6:af:d7:41:ee:56:80:8a:02:
58:34:59:19:82:11:75:ea:e0:ea:8b:81:b9:55:2f:
a0:e4:d5:50:0d:2d:4c:78:19:5d:08:2e:2e:9f:69:
ab:12:16:6e:76:79:fe:33:af:7f:00:e5:46:07:d0:
15:0f:71:44:5c:cc:06:c4:ea:94:dd:b0:bd:6b:a0:
5b:e8:e6:af:88:76:b0:33:d4:fb:fa:e1:f1:03:11:
ae:9d:76:a8:2f:7f:0f:a8:8c:7d:58:88:d6:98:c0:
78:58:23:a0:09:57:97:30:85:1b:f9:25:8c:5e:9d:
39:ff:c7:02:93:bd:e2:29:a0:5f:26:5c:1b:ae:1c:
31:cb:2a:fe:ca:d1:db:79:a4:c7:c9:d1:50:30:9c:
5e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B7:51:1E:0D:CC:C9:12:B4:C4:05:0E:66:BF:23:CA:A5:41:17:6A
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:d0:09:a8:0d:d0:78:42:ca:8b:f2:46:ef:19:62:de:bd:0a:
1d:b3:dd:e9:5f:d4:2b:b3:08:78:26:56:0c:87:a9:5a:1a:b1:
82:02:c1:9f:0c:ec:04:8b:34:31:3d:cc:be:97:67:6a:8e:3d:
1b:60:3d:a2:7b:dc:7a:f9:bf:6e:cf:e5:7e:88:1e:0a:70:3d:
7b:17:9e:69:46:b3:e7:fa:c3:91:ab:4a:52:a7:1c:36:2e:2a:
68:47:eb:a7:21:df:7e:a6:48:78:d1:5e:b2:88:01:7a:5f:b4:
a9:a3:f4:b2:85:7f:f7:f5:6d:a7:70:73:9d:c3:47:98:f9:a4:
24:e2:80:f9:0e:03:fd:81:2d:0c:07:a7:b9:35:74:a4:05:f6:
78:41:e0:8f:bb:72:16:a2:fc:17:66:03:c5:91:34:d4:e1:2d:
37:58:73:00:e7:35:b6:92:c3:f9:ee:b6:ac:e5:80:6c:fb:09:
03:61:e4:8e:17:38:80:3b:2f:cb:2f:15:0c:fe:22:01:58:4a:
1e:4f:64:00:4c:21:85:73:52:10:34:c8:d3:b2:9a:c1:da:8c:
f3:ad:5a:9f:03:3f:39:a4:9f:3a:46:8b:5f:07:34:e3:dd:d7:
df:4c:29:4f:e9:97:16:6e:81:4e:0e:76:0f:d2:8f:d6:4b:76:
a1:bb:2b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:08 2025 by rpki-client