Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: OFh5mk5CmYzY6Ti/ue3uUKv+9E4w4EAhanYZbWO2PqQ=
Subject key identifier: F1:0E:DD:4C:55:AC:42:97:95:34:97:ED:F7:19:3B:8F:64:77:81:81
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 0197469DB7A6EB5D6F93AD5059963C41EADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0898
Signing time: Fri 06 Jun 2025 19:00:30 +0000
Manifest this update: Fri 06 Jun 2025 19:00:30 +0000
Manifest next update: Sat 07 Jun 2025 19:00:30 +0000
Files and hashes: 1: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: ITYwPVwaXSz9FbthHCTK2UGxKcT4ab9CwQ7vTYJun9s=)
2: EOgnkpCGO25TfSV28ABNiElbHMI.roa (hash: xamMOb/MG2jklBJl6shRJRNZ2UW4izFBKtZBvXEcSVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:b7:a6:eb:5d:6f:93:ad:50:59:96:3c:41:ea:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Jun 6 19:00:30 2025 GMT
Not After : Jun 7 19:00:30 2025 GMT
Subject: CN=f10edd4c55ac4297953497edf7193b8f64778181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a6:43:82:13:a6:24:b9:25:6f:01:0b:48:b3:
38:e8:a6:52:7d:8a:e6:05:f3:78:f8:36:e9:de:23:
cd:0a:6d:4f:56:23:20:71:28:6f:06:ce:29:b8:70:
18:39:93:13:e2:20:03:59:6e:fe:ee:65:17:23:b7:
ff:f5:98:ee:70:47:ec:de:e5:99:91:5e:f1:57:d5:
4b:b7:03:1c:81:f0:c5:a1:97:d2:26:77:16:65:07:
18:ba:9e:bb:a4:34:dd:e5:a4:dd:d9:55:2f:da:ff:
f2:41:f2:5b:19:0b:68:77:68:51:93:31:95:88:b4:
c5:e5:d9:af:6c:5c:14:dd:aa:02:55:79:ae:47:5a:
23:6b:0a:8b:23:a7:7e:e0:61:f9:af:08:98:9e:13:
4a:e7:ba:36:d9:4e:03:30:dd:6b:20:00:28:d4:aa:
e4:31:53:f1:f2:2a:92:b9:de:26:cb:95:d8:24:a7:
ed:b5:73:d4:3d:8a:07:22:66:aa:6e:16:f0:a7:31:
66:93:06:83:b2:ef:e4:be:8e:f2:4a:ed:b0:de:ee:
34:6d:a0:4c:85:cc:33:bf:7d:90:8b:4c:eb:02:e7:
cc:14:27:6f:47:fa:99:1d:c4:4a:7d:2e:40:3d:d2:
27:6a:85:d0:0c:4b:68:db:46:a6:d0:1c:f7:8e:36:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:0E:DD:4C:55:AC:42:97:95:34:97:ED:F7:19:3B:8F:64:77:81:81
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:54:a6:5f:8c:61:7a:9c:8f:aa:e4:ba:85:ae:86:64:35:31:
fe:df:1b:d2:03:54:9e:b7:39:fc:bc:0e:97:10:e0:29:7e:3b:
94:df:eb:37:8d:a5:80:a7:f2:14:ca:25:f7:ea:cb:17:6e:78:
5b:20:c0:e3:19:cb:c6:89:f7:84:e4:3c:b2:a9:2a:27:00:a4:
22:30:d7:43:86:98:13:b4:9b:c6:09:d5:f1:be:c3:ec:e3:05:
8e:ff:03:00:c7:63:02:b4:1c:e8:ed:d5:74:2c:36:68:5a:44:
4b:c8:98:2d:2c:32:a3:e3:39:e9:2a:5d:d5:a8:36:38:64:01:
fa:a3:e2:a1:9c:a7:68:11:4f:bb:d3:72:5d:7a:1f:cb:d5:8b:
27:37:32:ae:96:5a:19:3b:e9:2e:5d:e0:a8:4e:b0:61:f7:a7:
56:20:dd:98:4c:1e:69:28:ce:70:03:ce:2c:81:4e:65:26:bb:
06:82:66:76:0c:70:e1:a7:d8:30:19:56:17:d3:47:1e:fb:ae:
b6:90:04:93:a2:d8:3d:c9:66:a6:fc:02:93:2f:31:dc:3a:55:
b8:ae:cd:97:9a:ea:4a:cc:1a:49:19:a2:55:18:86:88:3f:fb:
e3:0f:1c:83:d4:9e:7f:01:89:8a:85:88:1d:71:10:24:be:c6:
ba:62:30:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:57:16 2025 by rpki-client