Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
File: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft (raw, json)
Hash identifier: QzjcG7F4S0aUlL2+OeiUZHpFYlIVcOY5z6dgWWQxYpQ=
Subject key identifier: 60:8B:70:76:B4:AD:2B:AC:CE:18:B6:09:34:EB:9B:62:B0:0F:2B:FA
Authority key identifier: D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
Certificate issuer: /CN=d90482763070955e7ea87e2ca37b891b864b2577
Certificate serial: 019874F52EF2D13307AA2C19B481F103FB9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
Manifest number: 0423
Signing time: Mon 04 Aug 2025 12:01:21 +0000
Manifest this update: Mon 04 Aug 2025 12:01:21 +0000
Manifest next update: Tue 05 Aug 2025 12:01:21 +0000
Files and hashes: 1: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl (hash: 93xYAZrkCNnU8HHOnyTOwhm/q/V8YG4Y2biVJlD+G38=)
2: Yb5YJ3L2tqVozBMmHxwxHP3KHNU.roa (hash: d/qHhT7K9mCNYlK3vHYLDP5ND31mVOYvhj6NNOTvoNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f5:2e:f2:d1:33:07:aa:2c:19:b4:81:f1:03:fb:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90482763070955e7ea87e2ca37b891b864b2577
Validity
Not Before: Aug 4 12:01:21 2025 GMT
Not After : Aug 5 12:01:21 2025 GMT
Subject: CN=608b7076b4ad2bacce18b60934eb9b62b00f2bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:be:6f:c0:1e:b5:ce:50:f9:d3:8f:f9:86:aa:
0b:aa:0f:51:55:52:eb:e4:d8:b2:3d:4c:0e:30:6e:
05:a3:35:3f:9d:f9:e9:14:22:8b:19:1a:06:69:ff:
3e:0f:5a:42:24:06:69:a1:e5:ba:bb:98:3a:bd:ec:
17:0d:49:4e:4d:88:b4:6a:bb:5d:da:99:07:9a:7e:
91:7a:de:85:72:e5:8e:b9:f2:c7:4d:30:74:a6:7b:
07:b9:2e:2b:09:8b:0d:f6:6e:34:6d:f4:be:81:c2:
be:4d:18:43:f3:90:9c:62:29:05:31:9c:f6:67:8d:
42:0c:45:5b:95:80:8b:dd:ad:18:df:28:94:15:ae:
d8:dc:81:2c:89:fc:4f:51:75:c7:bf:d5:9e:7f:50:
84:9c:6d:f7:63:ae:73:4d:15:64:a2:6c:8d:5a:19:
10:c6:ff:94:6c:90:bc:a3:a7:13:eb:74:a2:fc:c8:
bc:61:48:d1:a7:1d:7c:f2:50:6f:c4:6d:01:c8:6d:
e8:c9:ab:c3:92:35:44:14:1d:e4:ef:24:24:29:7f:
a0:a0:3b:87:30:6d:78:90:41:87:32:68:66:87:65:
e8:79:ae:38:8f:cd:8a:18:06:98:d0:88:45:6f:40:
66:cc:96:33:4a:3f:dd:d7:e4:38:5c:14:a2:0a:93:
28:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:8B:70:76:B4:AD:2B:AC:CE:18:B6:09:34:EB:9B:62:B0:0F:2B:FA
X509v3 Authority Key Identifier:
keyid:D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:2b:19:f0:f0:b5:54:9e:04:af:a3:a3:26:bd:e2:dc:0e:2b:
93:75:66:e5:ff:92:9e:88:b2:10:db:33:a1:b0:a5:b8:7c:a9:
f9:82:1c:88:41:92:2c:13:e6:ba:91:d9:04:aa:06:4f:89:f3:
42:85:4c:b7:00:99:57:3e:73:5c:85:12:af:36:16:e3:d6:88:
8d:5f:91:26:c0:ec:02:0e:db:4c:75:66:ba:57:eb:fe:48:42:
58:2e:70:66:04:2b:b8:91:60:4e:c2:92:9a:8a:fe:ca:dc:1e:
71:fa:83:28:54:e2:fb:02:f0:f9:6a:82:13:aa:de:5b:89:c9:
5e:5c:a6:2e:ac:38:5c:ae:72:1a:64:d1:db:4b:9f:94:64:3c:
3c:0a:32:4a:5c:07:72:ff:6a:b4:a5:35:59:3a:66:cf:b9:32:
08:16:08:72:4b:91:be:fd:eb:90:f0:5e:cc:c7:18:51:83:47:
71:a8:ee:39:92:fb:a9:ba:43:48:b5:57:29:ad:31:69:23:3f:
65:c9:d5:de:0a:9b:6d:3c:ce:19:49:41:b6:8f:0f:aa:55:55:
39:03:ed:39:e3:60:3b:d0:40:65:db:5c:69:1e:ea:ff:01:a4:
32:a4:f3:04:21:b3:47:14:11:8c:d6:6e:10:3d:37:3a:0d:f3:
6e:25:87:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:00:35 2025 by rpki-client