Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft (raw, json)
Hash identifier: E72CZDgUzKeTa3wihrUGB7JZZu/q5c/upbcslrhoaUI=
Subject key identifier: 13:91:92:36:84:DF:B0:1C:C5:42:10:E0:1F:E2:9A:43:92:22:60:4A
Authority key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
Certificate issuer: /CN=4501e85c0025c4ae29528058e232d737c2f495ce
Certificate serial: 0199FCFD82D15F8F8F2857402422CDA642E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
Manifest number: 0344
Signing time: Sun 19 Oct 2025 15:01:36 +0000
Manifest this update: Sun 19 Oct 2025 15:01:36 +0000
Manifest next update: Mon 20 Oct 2025 15:01:36 +0000
Files and hashes: 1: RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl (hash: qfj7EtRUAa4ciWFxjEJFaWb8+ZcC8cEAbGnTxBDeNrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:82:d1:5f:8f:8f:28:57:40:24:22:cd:a6:42:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4501e85c0025c4ae29528058e232d737c2f495ce
Validity
Not Before: Oct 19 15:01:36 2025 GMT
Not After : Oct 20 15:01:36 2025 GMT
Subject: CN=1391923684dfb01cc54210e01fe29a439222604a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d0:3e:12:c1:9f:2f:e9:04:e9:67:ec:0c:bb:
68:1d:62:39:c3:79:10:a8:99:2d:24:a3:8b:b4:28:
d3:dd:bd:37:d4:a2:bf:cc:26:4d:58:a2:e7:5c:19:
f2:10:68:b1:ea:bf:6d:07:76:de:48:0a:a9:08:70:
ea:2f:1e:25:0e:49:e3:8f:29:71:b5:90:e6:8e:f9:
02:50:bd:dd:92:1f:31:40:a8:42:49:22:3f:e1:ce:
af:a6:e5:6f:a0:1a:8a:d8:c2:b3:90:ba:24:26:9c:
93:16:e0:90:8f:33:56:ae:eb:0e:70:00:2d:e2:e1:
a2:de:e4:90:44:53:97:f5:7a:54:a8:a0:85:09:1e:
58:32:67:e4:1d:33:3e:aa:3d:3a:74:c1:b3:90:41:
a7:c3:d3:d4:6b:b8:3c:6a:89:4b:67:e5:c1:ca:dc:
0b:f7:eb:78:f3:6e:3c:50:42:47:cd:c9:bc:24:de:
a4:41:5e:fe:fd:34:2a:6b:10:4b:2b:89:c6:38:68:
96:33:df:8c:f3:ac:32:b2:80:1c:e5:6e:b8:6f:3e:
c5:05:dc:05:d2:be:e8:1a:19:a1:8e:67:dd:63:58:
b6:69:bf:4e:44:08:b9:c2:51:20:2e:4a:3d:c2:97:
e6:e8:07:f1:77:10:c2:1c:6e:b3:34:b6:d2:12:75:
99:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:91:92:36:84:DF:B0:1C:C5:42:10:E0:1F:E2:9A:43:92:22:60:4A
X509v3 Authority Key Identifier:
keyid:45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ec:76:df:8f:00:d9:49:12:b2:d4:36:f2:d5:0c:03:9a:1a:
35:ec:55:22:fe:4f:7d:31:e5:ae:37:02:0d:b0:64:ce:8d:0d:
e9:fa:fe:5a:22:7e:ec:7a:d5:0e:b8:e4:01:01:3b:48:dc:53:
85:e8:a3:e9:fd:27:1b:be:44:30:21:45:13:1d:c0:f2:b7:db:
ef:9d:06:89:78:96:ed:eb:32:82:9f:cc:41:44:a2:3b:8e:35:
2b:95:39:b1:42:16:92:03:41:86:21:7d:a8:0c:97:d8:ce:3a:
60:44:69:25:ff:d5:62:6a:d7:a0:b9:11:61:31:71:95:a8:b4:
f4:18:56:b8:b4:c3:88:cb:2f:8b:aa:88:dd:5e:97:ba:5c:fe:
09:20:8b:6f:f1:ec:e4:fa:cb:2e:da:a0:a0:7e:a3:61:1a:95:
49:39:52:58:52:95:72:88:f5:45:3b:22:60:23:14:53:69:c1:
07:51:24:46:9c:e5:eb:70:95:76:a9:3a:f4:26:60:67:af:f8:
ae:e3:d7:d7:ff:10:e6:8e:71:6e:be:a1:02:67:ee:fe:05:c9:
1b:9a:56:93:ae:69:98:4d:48:97:7d:6e:4a:01:35:ce:97:bc:
5f:0b:87:37:a9:e9:ad:66:54:ac:70:3d:3c:29:23:99:ef:93:
d3:b1:0b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:31:15 2025 by rpki-client