Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.mft
File: qhC-mR89uJUJcQwgZ233qKS_4bQ.mft (raw, json)
Hash identifier: 5jnYaAGwovyptYpo8K2oSf/8MCXq7pIneyso6/mQW5M=
Subject key identifier: AE:0A:EC:10:2D:0E:AF:CE:FB:6F:A8:0D:5A:E6:3D:1C:CD:0A:84:BA
Authority key identifier: AA:10:BE:99:1F:3D:B8:95:09:71:0C:20:67:6D:F7:A8:A4:BF:E1:B4
Certificate issuer: /CN=aa10be991f3db89509710c20676df7a8a4bfe1b4
Certificate serial: 0199228C774C771314496DF23B0DF05941AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qhC-mR89uJUJcQwgZ233qKS_4bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.mft
Manifest number: 0A7E
Signing time: Sun 07 Sep 2025 05:00:54 +0000
Manifest this update: Sun 07 Sep 2025 05:00:54 +0000
Manifest next update: Mon 08 Sep 2025 05:00:54 +0000
Files and hashes: 1: qhC-mR89uJUJcQwgZ233qKS_4bQ.crl (hash: laQP1GABnwQd4tSmhRMZCgYXmuCAUcSrv9/SB75t9x4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qhC-mR89uJUJcQwgZ233qKS_4bQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:77:4c:77:13:14:49:6d:f2:3b:0d:f0:59:41:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa10be991f3db89509710c20676df7a8a4bfe1b4
Validity
Not Before: Sep 7 05:00:54 2025 GMT
Not After : Sep 8 05:00:54 2025 GMT
Subject: CN=ae0aec102d0eafcefb6fa80d5ae63d1ccd0a84ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c0:8f:d0:49:fe:55:13:05:b0:9a:b9:94:be:
7d:ca:02:03:01:e1:d2:2d:9c:59:23:0f:98:2c:0d:
87:fa:f5:96:76:7d:ff:4c:6c:d4:ad:0a:51:bf:ae:
40:c4:d8:71:c2:d9:fa:5d:15:b2:59:66:d5:53:7d:
d6:69:5a:a7:b9:bc:78:7d:82:f0:9c:a5:24:ca:1d:
dc:a4:47:fa:69:5a:99:91:ee:73:61:f7:5d:aa:21:
3e:64:a4:3c:b2:09:2e:64:a2:63:be:cb:97:05:f3:
2e:4e:e7:79:34:f0:3d:fb:88:09:63:e0:15:91:6d:
64:ff:58:3a:17:86:e8:48:14:66:fe:ff:16:c3:17:
67:42:36:fd:3f:ae:6d:92:18:e4:9a:3b:bd:fd:06:
ef:5a:07:9b:9d:21:3d:6e:6b:54:6b:1d:cf:7a:94:
19:3d:1a:22:fe:e3:fc:9e:af:c9:0d:3b:5a:89:7d:
41:c5:2c:f5:87:c4:34:e8:93:8a:69:b5:e6:87:06:
14:d0:75:52:66:2d:92:89:9a:5f:69:80:b2:2d:8a:
35:bd:96:ce:7d:a1:a4:ce:04:43:69:33:ed:07:ec:
ca:4e:d7:79:84:22:d7:6c:a0:8d:3a:ea:32:9b:7d:
27:14:be:80:45:f7:92:a6:98:ae:74:cb:ae:07:ea:
b5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:0A:EC:10:2D:0E:AF:CE:FB:6F:A8:0D:5A:E6:3D:1C:CD:0A:84:BA
X509v3 Authority Key Identifier:
keyid:AA:10:BE:99:1F:3D:B8:95:09:71:0C:20:67:6D:F7:A8:A4:BF:E1:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qhC-mR89uJUJcQwgZ233qKS_4bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/235365-8d15-4125-9017-183e2e72301b/1/qhC-mR89uJUJcQwgZ233qKS_4bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:8e:28:b8:7c:70:24:08:1a:fc:ec:6d:fc:6f:16:0c:b3:0f:
f9:88:a4:ad:10:5a:28:d5:d9:ec:c0:0d:3e:80:2f:60:79:b7:
a4:dc:1b:d2:1a:d9:50:ea:d7:83:a3:94:3c:0e:23:89:02:f0:
2b:88:c7:48:09:a4:fd:78:67:48:d1:fa:08:c3:16:c0:ea:cb:
3c:91:a8:db:14:fa:c6:32:71:a7:73:6d:d0:88:55:66:ab:4f:
59:d3:b2:6d:8a:38:87:19:51:f6:1b:90:11:c3:c0:f2:aa:1c:
f2:01:67:0e:84:4d:97:db:6c:c0:1e:ac:a4:03:1d:41:b1:0c:
c1:45:df:79:59:77:2b:33:f4:72:29:16:da:da:24:5b:1c:74:
42:aa:b7:8b:a7:9a:6b:dd:da:e2:37:a6:4a:04:98:9c:8a:cb:
b5:a2:f0:07:eb:ea:bd:77:8c:a5:e3:45:c6:f7:64:a7:3b:90:
f8:db:c0:a1:b6:5a:8f:e4:c4:56:22:eb:57:b3:84:52:fe:c7:
f3:a7:9e:e6:e7:1b:42:ba:d2:d8:f0:08:58:b0:8b:4c:2c:b0:
87:24:19:9e:ea:36:55:15:e8:c5:9b:91:ff:59:11:1a:0c:7d:
f1:14:0b:64:6a:6c:58:b3:79:d4:11:47:99:cf:6a:a4:0d:23:
b0:8b:a8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:51:50 2025 by rpki-client