Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
File: 4QnieMeGIlTIh1XkcXOYpVKkkEA.mft (raw, json)
Hash identifier: 2WQbXQikVfUmCJpFfKsOSIOFI2RcnYQ2toZ7N3jOdQg=
Subject key identifier: 96:67:96:10:96:5B:9E:70:26:7D:02:B1:E1:A9:FE:90:39:8D:8F:3A
Authority key identifier: E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
Certificate issuer: /CN=e109e278c7862254c88755e4717398a552a49040
Certificate serial: 0198D516140447D1B1CEDC5610C14620E3A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
Manifest number: 03E9
Signing time: Sat 23 Aug 2025 04:00:50 +0000
Manifest this update: Sat 23 Aug 2025 04:00:50 +0000
Manifest next update: Sun 24 Aug 2025 04:00:50 +0000
Files and hashes: 1: 4QnieMeGIlTIh1XkcXOYpVKkkEA.crl (hash: hFtr9lcD5g5NABsyHhF0LSomDQAEsCd0geL78uxVIGM=)
2: 8a9J3an90z8mWS8TkwqA1Af6V60.roa (hash: Sfg4OixpuznuGw9qd09AY2Lx61QBeTwn9kYrisQDEss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:14:04:47:d1:b1:ce:dc:56:10:c1:46:20:e3:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e109e278c7862254c88755e4717398a552a49040
Validity
Not Before: Aug 23 04:00:50 2025 GMT
Not After : Aug 24 04:00:50 2025 GMT
Subject: CN=96679610965b9e70267d02b1e1a9fe90398d8f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:20:75:cc:62:9b:bf:b6:94:52:20:64:ca:1f:
68:5f:ff:0a:92:3c:84:25:1c:89:b1:88:51:79:7b:
11:86:41:b5:56:7d:2f:44:59:9b:1b:8d:5a:72:70:
8f:67:91:e7:48:03:9b:ce:cc:81:b5:86:d8:68:3d:
29:6a:e3:14:db:98:6c:f8:b1:d4:67:74:86:9d:03:
56:88:63:9c:4c:10:75:56:d8:7d:58:37:6e:7d:66:
49:e8:84:c7:6b:fa:97:e3:46:bc:eb:5c:ad:a1:18:
fb:2e:55:9f:54:f8:fe:e7:c8:e7:45:ba:de:aa:73:
ce:3c:0a:20:64:eb:ab:f5:b2:b3:05:ae:19:ef:4a:
3e:8c:a6:8d:e4:6b:a5:c7:b3:d2:dc:22:67:43:1e:
8d:64:86:5b:a0:c0:a2:40:35:47:02:a1:ce:bf:af:
32:7e:c2:90:73:54:bc:9d:31:86:b8:96:52:e1:bd:
bd:41:52:f2:bc:56:ee:f7:80:7f:d3:61:c4:1b:18:
5c:74:33:d1:d8:57:8f:8c:80:f4:63:57:f2:4c:17:
06:9e:7f:b2:3f:8f:85:30:81:16:ff:d0:86:29:f3:
1d:0b:9d:03:ed:4b:11:76:d6:b0:70:33:fc:e7:a9:
a6:e3:77:87:10:3d:3e:08:2a:ef:60:07:74:e8:2d:
a4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:67:96:10:96:5B:9E:70:26:7D:02:B1:E1:A9:FE:90:39:8D:8F:3A
X509v3 Authority Key Identifier:
keyid:E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:f3:91:19:02:10:a6:9d:67:39:37:f1:7b:9f:a4:b9:0f:18:
89:b0:e8:45:4b:dc:9e:21:96:ee:56:8a:cd:39:ee:f8:83:be:
af:08:13:f1:b1:f1:c6:32:d1:fc:60:92:69:65:b1:10:dd:db:
96:30:2e:4a:9f:2e:6d:25:27:ba:04:7d:b7:1c:cb:fb:b8:4e:
01:95:46:a0:c1:97:57:f8:4a:6c:7c:81:dd:66:0a:47:19:57:
f2:b5:fc:9d:db:18:00:6f:63:74:ed:98:d4:47:21:88:3b:aa:
e1:13:14:b9:8a:ff:6a:66:7b:d7:6c:07:6c:bc:63:ba:53:8e:
bc:24:e6:67:f2:dc:29:1a:5f:ae:7f:ae:a0:ae:f7:79:bb:f4:
56:18:8d:db:49:90:00:b8:2c:d4:d8:a0:20:1b:85:03:f7:29:
11:7f:8c:7a:5a:12:e8:18:ec:71:ee:b2:df:96:15:01:51:58:
d1:1b:69:64:06:08:ec:fd:f7:b6:12:3f:18:b4:47:c8:89:bf:
b9:20:00:21:64:a2:67:96:88:63:b9:1b:38:95:5c:52:b9:1f:
b7:ae:0b:06:a3:9b:3d:17:44:c6:93:d0:5d:d0:9a:19:cd:51:
15:ba:f2:ba:35:71:7f:6f:45:39:ad:b7:78:98:99:dd:15:99:
7a:0f:a9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:32:56 2025 by rpki-client