Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
File: rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft (raw, json)
Hash identifier: 9nGdfUyj0YcB7rqAv0VR3HzsL6jXzdzv6l6CwUrqkTI=
Subject key identifier: A8:02:79:96:35:47:2D:15:F4:44:B2:83:09:89:B2:43:1F:CD:0E:E6
Authority key identifier: AE:04:10:6F:30:2C:00:77:E9:0B:66:76:2E:BB:22:2E:61:1B:33:DD
Certificate issuer: /CN=ae04106f302c0077e90b66762ebb222e611b33dd
Certificate serial: 01984A09ECD3B68891584BBF96A4217E1E51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rgQQbzAsAHfpC2Z2LrsiLmEbM90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
Manifest number: 0534
Signing time: Sun 27 Jul 2025 04:00:21 +0000
Manifest this update: Sun 27 Jul 2025 04:00:21 +0000
Manifest next update: Mon 28 Jul 2025 04:00:21 +0000
Files and hashes: 1: GOFFPgaA_FNPo8jH9LLALXPdKRA.roa (hash: JZqDVZ5TyXAW6arfyTRJvqhjtcPlVF0bW1jBuVqcZ2U=)
2: rgQQbzAsAHfpC2Z2LrsiLmEbM90.crl (hash: 0lPuEP4Hyu9pJ7gsrV7g4XmG7JX7BiySW6k0fSvPjSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
rsync://rpki.ripe.net/repository/DEFAULT/rgQQbzAsAHfpC2Z2LrsiLmEbM90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 04:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:09:ec:d3:b6:88:91:58:4b:bf:96:a4:21:7e:1e:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae04106f302c0077e90b66762ebb222e611b33dd
Validity
Not Before: Jul 27 04:00:21 2025 GMT
Not After : Jul 28 04:00:21 2025 GMT
Subject: CN=a802799635472d15f444b2830989b2431fcd0ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f8:e7:a6:ac:f3:bb:44:fe:b3:ff:9f:7c:48:
83:ed:77:bb:d0:83:f8:dd:1b:6e:1d:32:02:44:da:
2c:d2:da:2d:35:97:37:18:ba:2c:2c:01:d4:c7:8d:
32:7e:a0:8e:81:2d:e7:d6:4e:cc:c7:89:0d:8c:be:
f9:06:f8:9b:48:48:64:08:63:4a:23:d9:b1:07:7d:
ec:3d:8d:a3:cf:ec:4e:ec:26:9f:ee:25:8e:c5:4e:
ab:1a:f7:a9:96:b4:e4:1f:4c:4d:7a:a2:b8:ca:27:
9d:12:a6:26:52:fa:a4:33:b6:ae:9a:26:78:5e:16:
04:65:9d:5a:6e:4a:73:7b:01:4a:7e:ae:81:30:48:
9b:55:44:50:43:ed:16:52:7c:73:b4:10:3e:92:24:
7c:50:ea:38:96:c7:9d:57:e0:b3:a2:f0:69:63:58:
08:96:80:16:b3:6b:cf:c0:a5:d7:0b:61:46:cb:fd:
96:20:3f:82:8c:96:00:d8:56:48:cb:69:64:f7:c9:
45:dd:b3:73:3c:97:af:21:41:d8:e1:b9:eb:f8:e8:
f6:b3:7f:f6:52:78:ea:41:4c:b8:5f:bf:16:1c:e7:
cc:a2:be:d7:e0:6c:3b:a0:d5:e1:a0:62:93:e4:d4:
74:eb:26:06:d6:76:83:5a:df:8d:f4:5f:ea:6d:e9:
de:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:02:79:96:35:47:2D:15:F4:44:B2:83:09:89:B2:43:1F:CD:0E:E6
X509v3 Authority Key Identifier:
keyid:AE:04:10:6F:30:2C:00:77:E9:0B:66:76:2E:BB:22:2E:61:1B:33:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rgQQbzAsAHfpC2Z2LrsiLmEbM90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:02:f6:13:c9:ec:cc:be:5d:62:79:fe:b8:b7:76:bb:d5:6d:
75:96:36:a2:de:2f:53:b4:2f:59:29:04:cb:37:b1:ed:28:fd:
bc:48:31:5f:99:2d:8b:97:8e:0a:b4:bc:c6:38:03:bd:bd:d9:
29:ef:ec:d1:b0:71:1e:e8:2a:48:eb:6b:3a:b0:5e:05:a0:fb:
8f:c8:c3:79:c9:7f:3e:14:2b:e7:54:ab:89:df:f6:9d:65:b7:
ae:b7:2c:14:07:20:1d:9c:62:0d:84:10:b7:b6:eb:c2:12:7f:
90:5e:b6:9a:b3:f0:4a:8b:17:78:53:51:43:12:88:60:9c:f0:
af:ad:11:e7:8a:a4:27:c5:66:96:6d:53:76:0b:ca:0f:cf:97:
d7:69:c7:4a:c6:78:7d:72:fb:f3:2a:07:d6:e1:6f:27:a3:9c:
a9:3d:d1:30:32:73:53:e2:35:f9:5c:1a:c1:1d:f5:36:c5:69:
bb:5e:e3:3d:1a:c6:b7:d0:55:b1:2b:ba:07:9b:2c:39:3a:03:
7c:66:8f:c0:69:ce:8d:83:50:e0:10:53:06:fc:f2:eb:7c:ff:
09:91:58:12:8d:b3:5f:7f:b5:7c:ff:1d:aa:45:55:1c:8f:a0:
2a:be:58:85:56:7e:58:5c:40:76:14:2a:77:81:4f:2a:a7:ca:
39:0b:b5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:06:40 2025 by rpki-client