Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
File: qyt5QmiS7R2nsuYYZ3DPsErmA80.mft (raw, json)
Hash identifier: ppPJB/6ZXel1sLncayP9NDS+4MVhOmtyADbojI1UgOw=
Subject key identifier: CA:2E:DB:84:43:AF:A9:DA:6C:C8:26:6F:2D:04:51:91:93:7A:6C:B5
Authority key identifier: AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
Certificate issuer: /CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Certificate serial: 01987C777A0DEF806AFE5804E9678E93B209
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
Manifest number: 08C1
Signing time: Tue 05 Aug 2025 23:01:01 +0000
Manifest this update: Tue 05 Aug 2025 23:01:01 +0000
Manifest next update: Wed 06 Aug 2025 23:01:01 +0000
Files and hashes: 1: qyt5QmiS7R2nsuYYZ3DPsErmA80.crl (hash: SYRphFv1u/837IjYrSCqJmVQKXBWFgUa54updD3eKfE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:7a:0d:ef:80:6a:fe:58:04:e9:67:8e:93:b2:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Validity
Not Before: Aug 5 23:01:01 2025 GMT
Not After : Aug 6 23:01:01 2025 GMT
Subject: CN=ca2edb8443afa9da6cc8266f2d045191937a6cb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ec:43:f2:1a:c6:c3:16:54:a2:cd:ed:ec:c5:
b9:b3:7f:7d:f6:f6:80:a1:81:6f:34:c9:5d:2e:c3:
60:0a:9a:55:2a:f4:70:cd:b9:e1:02:90:d8:cd:0c:
2a:09:b9:1d:5d:c0:ae:c5:45:7a:97:27:3e:30:60:
0b:75:27:e8:5c:e0:00:44:26:56:71:e3:e2:f0:54:
3b:09:06:da:13:a4:de:ad:e0:88:3b:af:95:49:50:
79:b6:bf:ac:1d:6d:aa:6b:61:1e:08:cd:16:91:27:
fa:14:30:42:09:53:13:a2:df:19:96:fb:47:97:6f:
71:e8:36:ae:91:bc:ff:17:59:c5:5b:49:29:b9:7f:
a4:84:88:5c:6c:92:6b:0a:7e:e6:d7:d6:3c:99:de:
2c:7b:9b:77:2b:c2:7d:78:49:d8:e5:8b:86:c1:49:
dd:b3:d0:80:a8:4b:d3:77:b5:c9:e3:fa:8c:1d:6c:
ac:32:d4:ac:43:c7:22:61:a9:b4:d0:e6:c3:97:a2:
e6:6e:f3:02:7a:d1:e2:ec:d9:68:6a:6e:a8:f8:56:
43:22:dc:4e:ac:09:ef:66:0e:5c:99:d9:9c:e4:a7:
0c:3d:56:06:2c:b6:64:96:9b:fd:7c:d8:b0:6f:3a:
59:b6:90:db:06:e6:e0:ba:26:29:bb:84:d8:c8:0b:
56:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2E:DB:84:43:AF:A9:DA:6C:C8:26:6F:2D:04:51:91:93:7A:6C:B5
X509v3 Authority Key Identifier:
keyid:AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:58:6d:03:75:15:0f:86:cf:ac:82:45:bc:36:c5:b2:94:58:
bd:36:54:fb:43:f4:c3:d3:3f:d0:49:1b:9a:48:2d:b3:d7:19:
f9:b3:c9:8c:a7:a4:b7:ff:db:e9:91:0c:1a:ac:80:11:f4:ea:
91:b5:b2:dc:57:1c:ee:94:89:db:6a:74:7b:f3:64:a2:ca:0d:
4a:58:5d:4d:4b:2a:56:80:50:6c:72:07:98:79:55:37:fb:c7:
39:fe:39:b2:7e:e9:76:22:9f:89:84:16:ed:e1:68:2a:78:ca:
34:50:f1:8f:0d:43:d0:17:29:5c:1c:66:9a:e7:f3:87:1f:21:
ef:66:e0:ab:5c:e0:a9:98:4b:e0:46:28:3f:b7:56:43:b7:12:
35:1d:c6:03:c5:f5:51:e8:90:05:37:65:fa:b6:18:e2:f9:ca:
df:82:c6:07:dd:c7:dc:cd:56:91:8e:32:d1:99:62:bf:37:77:
ea:22:cd:8c:d0:25:87:4b:c1:7e:63:46:7f:70:5d:f1:98:52:
fb:23:6a:45:c7:19:9b:c3:64:51:3c:22:9e:2e:9e:a8:7d:4b:
9c:a0:bc:9c:b3:6c:1d:35:8f:c1:63:c6:0e:84:fe:fa:91:b2:
fb:e0:64:11:1a:77:ea:3b:a7:5b:3c:55:83:7f:3e:4b:fe:8d:
e4:d2:14:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:06:51 2025 by rpki-client