Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
File: bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft (raw, json)
Hash identifier: wMab1YrVg6o/4yzubI/4YPKcUt5Mv8aBatOonejaDdo=
Subject key identifier: 38:3E:32:5E:21:84:01:28:F2:4A:7A:8E:E6:C0:E3:0B:89:25:9F:1A
Authority key identifier: 6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
Certificate issuer: /CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Certificate serial: 0198D4E0D0EBE9ECA90808D3EE3A394F27A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
Manifest number: 0A0E
Signing time: Sat 23 Aug 2025 03:02:39 +0000
Manifest this update: Sat 23 Aug 2025 03:02:39 +0000
Manifest next update: Sun 24 Aug 2025 03:02:39 +0000
Files and hashes: 1: bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl (hash: eCIq35tH3MdZxWYLWo1bmALT1uXO+9CtZO1OTlPGiS8=)
2: zFZRDLYL0fz0Tr9KOTbvt5Gi2T8.roa (hash: RoOpJgCK2e2T8+E3U8CF6Ztsr6QUn+lDcl3mIBxfJ0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:d0:eb:e9:ec:a9:08:08:d3:ee:3a:39:4f:27:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Validity
Not Before: Aug 23 03:02:39 2025 GMT
Not After : Aug 24 03:02:39 2025 GMT
Subject: CN=383e325e21840128f24a7a8ee6c0e30b89259f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:e8:8a:08:af:bc:fe:4e:d9:d4:6b:63:80:
85:dc:62:1f:aa:76:8b:74:f4:70:5c:04:be:8d:1e:
f0:38:9a:46:d7:ba:56:b5:c3:04:fc:99:a4:63:44:
2f:59:62:05:7c:54:37:7e:69:52:fb:12:15:18:75:
7b:23:3d:1d:c7:d0:69:96:40:76:5a:ae:9f:db:e0:
8d:9f:2b:da:c9:f7:df:fc:9c:41:3b:92:c3:46:ec:
23:cb:00:7a:4b:23:1b:c8:26:6a:63:78:03:d4:1f:
47:65:26:ed:de:e7:1a:1c:ef:a3:98:a8:da:29:86:
d5:d4:97:4f:e0:d3:fe:62:b9:c2:aa:20:0f:84:d2:
0d:2d:4f:8d:f7:09:dd:11:48:fe:db:4d:71:7e:ad:
e0:69:d7:24:8e:82:ed:6f:89:a4:18:49:fb:e6:c9:
74:0d:db:44:d1:61:ae:fa:d6:cd:32:25:d0:60:97:
c1:9b:b9:8f:2f:2e:2f:dd:e0:3b:c4:e0:c3:d8:0d:
d5:a0:6a:af:5f:15:8e:8a:ab:ef:7f:f0:cb:d5:10:
13:7d:bf:73:a3:c6:b7:b7:47:d4:52:bb:c3:e6:26:
47:c1:85:90:3c:5f:11:78:80:9f:94:02:a4:7b:f0:
78:fe:d8:50:cb:a7:0e:e0:09:07:56:93:dc:52:24:
6e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3E:32:5E:21:84:01:28:F2:4A:7A:8E:E6:C0:E3:0B:89:25:9F:1A
X509v3 Authority Key Identifier:
keyid:6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:0e:c7:48:d8:77:27:db:01:94:39:ad:bf:25:f3:1c:10:c8:
fc:1d:d9:9a:92:4f:8a:aa:80:c6:da:a0:c3:5e:29:e0:87:88:
ce:f3:e0:af:29:18:66:18:4e:90:b7:26:18:09:96:37:96:31:
82:47:07:c2:d7:6e:df:a9:dd:fb:1d:7a:a6:74:45:76:37:53:
89:34:28:fd:08:c2:b5:91:55:33:fd:8a:f5:0e:ac:03:e4:53:
f4:58:a3:09:d3:01:d4:7c:a2:54:f9:1b:10:6f:65:1e:4d:f2:
71:0b:87:1a:e1:9a:7c:2d:bf:4d:e7:de:ea:c2:e8:56:f2:80:
fa:ce:28:2a:98:02:2f:46:dc:27:fe:89:25:e1:03:13:7b:3b:
4b:0a:59:74:20:75:f5:f7:d4:c5:3f:6f:2e:8e:d0:3a:87:67:
24:bd:00:91:0e:36:33:42:f1:d3:b7:d1:86:5b:b3:bd:54:81:
1b:42:1d:59:6e:47:37:e2:b5:b1:31:ec:70:2d:1f:95:31:8e:
8f:24:a4:e5:55:7d:24:7f:7f:9d:9d:b2:d1:da:91:9f:65:88:
a0:63:0f:d0:54:e3:06:97:15:c7:c7:92:7d:4d:6b:3b:33:f5:
fc:e8:82:e6:f4:85:ff:89:1d:a4:45:1d:d6:9f:5f:0e:b0:72:
80:5b:f4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:37 2025 by rpki-client