Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
File: _Q7wQPukW857BxY0lc316FB3kZ0.mft (raw, json)
Hash identifier: IvdchlvN4gCwOukLB2uY+nOdFRh6woVW2rcNhnKOHZI=
Subject key identifier: 84:2E:5C:B7:20:2B:F4:89:6E:7B:A6:EE:C6:02:04:D3:FA:5E:04:30
Authority key identifier: FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
Certificate issuer: /CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Certificate serial: 0198D5F16611D4562E68CE648E5D1792DECF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
Manifest number: 0CE0
Signing time: Sat 23 Aug 2025 08:00:23 +0000
Manifest this update: Sat 23 Aug 2025 08:00:23 +0000
Manifest next update: Sun 24 Aug 2025 08:00:23 +0000
Files and hashes: 1: BrNhX11GN3gzWV-434wlzWriATQ.roa (hash: e/gkiYTr4M+ZdV4GBEAw4FBFr5Cgb0NfH0gUAD5dMJY=)
2: _Q7wQPukW857BxY0lc316FB3kZ0.crl (hash: tpOYollMusSNnDZxiscexETW0gO7+zO1jgemb9kVTKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:66:11:d4:56:2e:68:ce:64:8e:5d:17:92:de:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Validity
Not Before: Aug 23 08:00:23 2025 GMT
Not After : Aug 24 08:00:23 2025 GMT
Subject: CN=842e5cb7202bf4896e7ba6eec60204d3fa5e0430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:83:4b:17:0e:c2:3d:72:c3:39:dc:6e:e8:e6:
63:54:ef:dd:a4:79:87:5e:ec:52:c1:8d:55:2b:fa:
f1:da:68:7c:59:6f:14:23:ea:dd:53:d5:87:29:e2:
10:d5:31:b7:bd:f4:cb:56:a4:0f:49:92:93:22:5c:
2b:42:06:09:2f:1c:0e:b5:3d:f4:0d:e4:61:76:1b:
72:27:fe:b6:ff:6f:17:24:0b:49:92:3b:11:53:dd:
63:c1:f5:06:49:20:e1:fc:52:da:a1:32:1d:93:76:
7a:59:4d:e4:3e:a6:14:85:17:25:b1:4b:de:dc:b3:
03:cd:7b:0e:54:7b:31:04:a4:2a:d9:fb:ed:9c:e9:
7a:b9:eb:5a:dd:bb:2c:00:64:fc:a4:8f:74:aa:6d:
be:88:c0:b9:21:91:68:94:86:ee:b8:6d:4e:57:d7:
d4:5e:d6:27:62:d4:6b:56:10:71:05:09:c4:c8:ad:
18:e1:17:27:88:5f:8b:44:1c:6c:29:d6:be:24:7a:
32:63:b2:e4:8e:63:55:83:d6:69:8f:1b:22:b2:ce:
a8:87:c8:ad:f8:e1:27:dd:6c:37:4e:e3:29:ea:b2:
d0:a6:e8:7c:c3:4d:cf:4a:a7:1e:6f:00:d5:5b:6d:
98:83:80:80:93:c3:26:d1:bb:6f:b9:ff:cf:f7:bc:
53:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:2E:5C:B7:20:2B:F4:89:6E:7B:A6:EE:C6:02:04:D3:FA:5E:04:30
X509v3 Authority Key Identifier:
keyid:FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:90:e4:2b:90:ea:c5:2b:b1:38:ca:63:e6:90:cf:24:eb:18:
7a:ff:b1:c0:27:c1:62:22:78:66:35:bc:26:4c:8a:0d:18:eb:
00:e1:be:f5:c5:05:f8:7c:dc:c3:e3:46:9b:d6:56:f6:9a:ad:
be:c5:dd:d5:cd:4d:7f:6f:7e:f4:51:ce:79:0a:db:59:4f:6b:
7c:22:f9:c9:50:3b:16:50:41:f3:e7:c2:09:3e:09:34:b0:b4:
14:5a:34:16:b5:d2:82:f4:20:79:9a:1a:d8:46:fe:07:7e:82:
6f:c4:ee:62:13:af:87:c0:88:fe:49:5a:41:cb:56:be:4f:38:
08:61:c7:b4:4b:ba:05:b0:9c:a3:84:c5:68:45:3c:fa:7e:ba:
5b:48:e2:7f:f1:ce:73:e2:70:a7:4c:b5:c0:da:c4:ba:ee:a1:
57:4d:50:54:28:ca:c4:cc:28:92:41:38:61:91:7d:01:f5:64:
9a:ab:ec:ee:70:95:64:78:97:d9:46:01:32:db:38:1f:77:d7:
53:79:d3:cf:da:7c:f9:6f:9d:88:bf:b0:3d:b5:19:79:4b:a9:
46:bf:ec:52:7c:2b:69:b0:6c:fd:96:14:60:62:16:4f:be:5c:
f9:76:c1:43:c0:17:52:78:a8:01:dc:2e:7a:36:67:ea:d2:ac:
97:ef:8c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:36:46 2025 by rpki-client