Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: pPr1/w6dGY4FP4pzoWgkbjZJ89Z+gBMfumdy05pi8N0=
Subject key identifier: 52:DD:65:7C:D8:83:C0:AA:24:A1:BB:BF:33:DA:FF:0C:78:A0:84:01
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 019921E7C50982BFD58CFB0D0015C06952ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 02:01:01 +0000
Manifest this update: Sun 07 Sep 2025 02:01:01 +0000
Manifest next update: Mon 08 Sep 2025 02:01:01 +0000
Files and hashes: 1: Diq6O5ga68_B8MEC7x3IDqn6lbc.roa (hash: r+Ep1MU6KZ691K575NCgrIa7fSiICzMjhV/0OlU71vU=)
2: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: nF7LW0AIQLM3riw+2TRKYh3LPovmlw+55BZP7SLKuJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:c5:09:82:bf:d5:8c:fb:0d:00:15:c0:69:52:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Sep 7 02:01:01 2025 GMT
Not After : Sep 8 02:01:01 2025 GMT
Subject: CN=52dd657cd883c0aa24a1bbbf33daff0c78a08401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:77:8c:40:92:b2:0e:0f:82:5b:e2:eb:dc:eb:
5a:01:94:cf:ca:0c:ce:cc:e2:04:21:17:dc:5e:c2:
77:ff:f1:6e:c0:83:1d:44:e5:dd:9a:27:37:19:bb:
4e:21:a6:8b:fe:93:c9:d7:03:8e:c6:7e:de:42:0d:
ef:ed:13:d7:5a:03:1e:02:0f:3a:55:a5:09:53:04:
c2:cc:b0:05:84:16:b8:d7:27:55:21:7b:31:f6:27:
7a:89:b4:bf:9a:dc:a3:5d:aa:bc:5d:50:04:81:1b:
ec:89:08:7e:58:53:78:bb:16:71:b3:d1:17:9a:8b:
e2:c5:9a:c2:ef:b7:ad:d4:ea:ff:f7:3b:05:67:57:
ef:ef:09:84:96:d2:fd:f9:ce:71:86:5c:23:80:ec:
42:3d:d6:80:22:b7:79:2c:1b:00:b1:4f:d9:22:b0:
0c:98:55:21:15:37:9b:70:85:6c:7d:e9:25:3a:0c:
9c:66:59:bc:0e:5c:6e:29:0d:4d:53:f7:0f:b6:32:
b8:f0:96:a7:7b:a1:9f:87:7f:3b:8a:a4:31:4c:64:
ef:64:7e:9d:ea:a9:72:97:49:7f:35:a3:55:ad:bb:
ab:94:01:e4:b1:59:75:2a:2f:6c:cc:dd:7a:06:90:
4a:36:a0:9f:05:ad:94:5f:1e:70:63:e7:44:ca:3c:
4f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DD:65:7C:D8:83:C0:AA:24:A1:BB:BF:33:DA:FF:0C:78:A0:84:01
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:0f:42:c2:45:5e:09:97:fe:5b:a7:87:f8:62:fb:10:22:a1:
d7:85:0b:3b:19:71:5b:6e:9b:a2:49:f6:0f:ee:7d:54:ed:77:
73:1f:27:f6:08:a7:89:30:b5:ed:b3:59:ab:bc:c3:85:68:c0:
23:0a:0b:7f:a6:62:3f:ed:1a:51:37:a2:bd:6c:0e:78:8f:6f:
25:37:27:9b:cd:64:d7:fb:0b:05:5f:6b:aa:da:c7:67:39:fc:
2f:7d:12:5c:54:7e:32:0a:11:99:ac:35:be:97:84:b2:1b:b4:
07:96:62:83:06:4c:21:6d:09:cd:68:e6:2c:83:83:4c:56:93:
8a:40:b2:ed:81:da:4f:dc:ef:fe:96:fd:fa:92:16:4e:45:0b:
0e:00:a2:1b:eb:90:22:af:fc:5b:3f:1c:54:5d:56:f3:d1:28:
f9:79:d4:ed:c3:5e:ae:54:c7:ac:6c:a3:e6:69:f8:fb:a2:ce:
54:45:a2:1b:58:9e:2b:84:a0:4c:d1:0e:60:1f:7b:10:46:89:
46:72:24:8c:5f:4b:1c:e6:d4:c4:e7:27:98:f9:d4:e9:90:02:
f0:a1:ff:b8:5c:f7:72:ae:96:db:0d:00:bf:48:a7:dd:08:de:
a3:02:e2:7c:61:ad:a6:ff:38:5f:b4:9e:3e:4c:52:34:22:58:
22:01:d2:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:29:29 2025 by rpki-client