Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft (raw, json)
Hash identifier: OuiWgxXKZsnE/sPiDZ88+IUqA9qufNpNbYckfg7yNkk=
Subject key identifier: 93:D1:BD:06:1F:BE:69:D2:68:20:2D:7B:F9:BC:E1:07:80:87:05:42
Authority key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
Certificate issuer: /CN=4501e85c0025c4ae29528058e232d737c2f495ce
Certificate serial: 0198D583733F85DDA35BEBD9CBA9F47FF384
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
Manifest number: 02AB
Signing time: Sat 23 Aug 2025 06:00:18 +0000
Manifest this update: Sat 23 Aug 2025 06:00:18 +0000
Manifest next update: Sun 24 Aug 2025 06:00:18 +0000
Files and hashes: 1: RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl (hash: D38j9wwWjKGZiQ6KK3T6U5nQluON2yin/c54oaG7Dz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:73:3f:85:dd:a3:5b:eb:d9:cb:a9:f4:7f:f3:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4501e85c0025c4ae29528058e232d737c2f495ce
Validity
Not Before: Aug 23 06:00:18 2025 GMT
Not After : Aug 24 06:00:18 2025 GMT
Subject: CN=93d1bd061fbe69d268202d7bf9bce10780870542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:32:dd:e7:61:01:d7:b5:f3:24:1a:b7:f4:13:
5e:db:11:55:a3:03:48:86:98:7e:41:1f:b5:d6:ae:
1c:62:65:ee:d0:bc:36:ad:74:10:fc:92:85:68:d3:
48:4b:cd:f4:22:6e:8a:42:f5:7d:73:3c:34:b7:c4:
1a:b3:47:9e:98:a3:6b:59:ff:fb:92:9e:57:26:67:
b8:fc:d2:f1:67:5d:0e:0e:46:fb:a6:3a:23:10:aa:
93:b3:54:b6:3c:45:ca:cb:22:75:7b:d4:9d:51:a1:
f0:2e:a1:f0:e1:7b:4a:5e:cf:64:b6:ae:b5:96:c5:
46:3a:d1:a9:a5:8e:21:3b:22:71:1a:6a:d5:78:ac:
52:d6:8a:c0:12:01:bd:20:d8:ac:76:8c:3d:01:83:
93:ec:69:1c:c3:89:83:9a:f8:4b:e2:e4:da:2e:25:
e6:04:65:61:e2:1c:da:c4:49:24:0a:cc:1c:a4:a2:
3f:80:12:ba:32:52:c2:03:69:2c:b9:30:07:16:1e:
38:49:47:9e:e6:33:d2:f6:13:73:e4:b7:01:7c:d2:
00:02:f4:94:af:8b:33:13:0f:ee:3b:0f:0d:f9:6c:
8c:9b:41:db:06:46:1b:44:f6:09:4d:bc:15:c3:b6:
82:78:f0:37:59:18:7a:05:c9:bf:dd:8c:10:fa:cf:
d0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D1:BD:06:1F:BE:69:D2:68:20:2D:7B:F9:BC:E1:07:80:87:05:42
X509v3 Authority Key Identifier:
keyid:45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:f1:8d:2c:9c:ff:91:97:34:99:8b:55:10:10:5a:41:30:38:
4e:69:d1:8c:67:0b:cf:dc:ef:a5:e8:fc:c8:c1:be:58:67:bd:
f7:77:8b:20:f1:fc:95:b3:b6:be:52:13:2e:fd:01:9a:e4:f9:
e3:7e:ae:db:eb:00:f5:99:80:d2:3b:bf:d6:a2:05:ad:73:15:
43:16:be:18:32:e1:eb:bb:88:43:a5:fa:ae:9b:9f:4d:3e:ff:
24:9c:2b:be:a6:fd:6f:e5:20:c8:b5:50:fc:d0:6a:c0:a5:a4:
b9:2d:63:6f:7f:4c:25:b4:93:09:5f:a7:b7:50:87:dd:73:60:
1c:e6:5f:2d:53:de:6e:14:59:02:4a:1c:04:47:ef:85:c7:0e:
d3:c7:f7:fc:86:30:dd:c0:76:79:56:29:65:a4:90:31:a3:b6:
76:f9:e8:63:08:22:d7:18:e4:41:15:b2:92:9d:98:d7:d4:a7:
89:7f:90:a7:c6:2d:df:01:e4:63:80:6d:ad:dd:2f:ec:9d:df:
58:2d:f0:96:ea:f9:c0:57:0c:4d:7c:eb:38:4b:3f:70:37:89:
6f:39:b3:cd:fe:44:3b:91:3f:60:cf:b2:50:86:a0:5a:d2:37:
d5:c7:6b:cc:09:d3:b7:67:f8:49:1f:9a:f1:98:a1:1a:69:96:
0a:43:51:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:37 2025 by rpki-client