Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
File: RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft (raw, json)
Hash identifier: f/0pPR/bPunYJgwjO447edKHVew3ZZh3DS3kT+3pBT0=
Subject key identifier: C3:59:65:DD:BA:1D:DD:19:92:05:9B:04:35:03:56:A1:82:20:EB:02
Authority key identifier: 44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33
Certificate issuer: /CN=44814ea7e83b4019bfd5797eba989da06dd90e33
Certificate serial: 0198D54EBB118C53C6A5A661DE92424EEA87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
Manifest number: 0E10
Signing time: Sat 23 Aug 2025 05:02:43 +0000
Manifest this update: Sat 23 Aug 2025 05:02:43 +0000
Manifest next update: Sun 24 Aug 2025 05:02:43 +0000
Files and hashes: 1: RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl (hash: LRusoeGm2io8Nud+eIpXxjIjdLGbvkVq3sPGVk6QW5A=)
2: UjkL1yTwH0Ugfy2br2JpH0C8VqU.roa (hash: byfiFTAulr+F8qmR9o1/fYHwOTE6vMHjzS05/tD7xBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:bb:11:8c:53:c6:a5:a6:61:de:92:42:4e:ea:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44814ea7e83b4019bfd5797eba989da06dd90e33
Validity
Not Before: Aug 23 05:02:43 2025 GMT
Not After : Aug 24 05:02:43 2025 GMT
Subject: CN=c35965ddba1ddd1992059b04350356a18220eb02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c7:b4:52:d2:43:dd:13:76:76:e0:43:88:0b:
b8:dc:b3:83:82:bb:38:74:bd:9a:22:a2:f5:d8:3f:
6f:0d:c4:b7:33:8a:68:22:2c:7e:d2:56:13:1d:e0:
d7:40:d1:15:34:a5:b4:03:98:8c:ce:fd:ba:ca:02:
4b:b1:80:ea:7b:99:4d:1c:6b:c1:e3:df:cc:6e:8a:
77:e3:a9:49:c9:ea:94:09:f9:00:68:f5:a8:25:30:
81:8b:b1:52:b8:66:74:7d:ee:3d:85:87:0f:cc:e4:
2c:66:95:a7:1b:10:e8:fe:bc:c1:58:89:a1:04:fc:
de:76:4d:73:01:10:a2:23:d8:7e:72:ed:f7:fa:f6:
2d:39:f0:b0:50:fb:ff:8a:56:96:52:82:2f:8c:2f:
2e:8c:74:df:ca:34:9e:e1:f6:29:01:1a:6b:52:0e:
a5:1b:3b:27:1b:51:c3:da:bb:22:e6:49:b6:69:9a:
a4:18:fe:0f:20:40:f7:1c:bc:40:16:5a:b5:57:d5:
88:67:b9:0e:4a:dc:64:e6:0b:cc:50:7b:ab:98:92:
0a:3f:c2:0a:c2:71:66:cd:2c:2c:c8:84:c5:7d:ab:
d7:b6:9f:a7:cd:a0:f7:14:85:4a:77:37:34:db:9d:
63:6f:4c:c2:a1:f3:12:fe:ac:19:70:92:a5:6f:ae:
50:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:59:65:DD:BA:1D:DD:19:92:05:9B:04:35:03:56:A1:82:20:EB:02
X509v3 Authority Key Identifier:
keyid:44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:fb:c8:fd:94:61:71:e8:f6:47:d0:f8:f0:be:96:bd:fe:48:
d5:3e:e2:85:bb:52:ee:10:c0:d6:7a:9c:dd:5a:9e:89:63:01:
4c:16:da:b0:d0:c0:fd:60:ac:20:72:13:34:09:0a:ea:4c:0a:
fd:b0:5c:9b:ce:5f:38:58:a2:7c:63:ca:a6:bd:6b:5a:3d:85:
48:03:bc:4d:4f:60:90:aa:66:a0:61:52:61:9a:7e:8a:29:c7:
f5:27:24:08:d8:bd:c5:a3:b7:d4:29:6f:4f:09:b4:b8:31:db:
94:9e:3e:ed:f1:84:f6:9c:2c:3a:f9:c6:b3:38:62:dd:dd:f5:
e1:57:09:49:4e:7b:cc:40:ef:d4:75:74:d9:63:32:67:5b:6b:
9d:89:13:3f:5e:5f:3e:d7:f0:0a:74:7c:85:df:37:3e:0c:14:
6b:e3:9b:46:22:8f:ee:b8:1d:9e:2f:13:e0:cc:87:be:e1:b4:
5a:ca:b0:2d:3e:fe:0d:23:4e:13:b6:0b:d6:c3:7f:dc:a3:85:
34:4a:6a:8a:7e:bb:c2:79:70:b2:65:4c:a3:e8:49:34:98:32:
da:44:71:03:5b:1c:9b:f6:d9:6b:4f:1c:19:11:75:17:c9:05:
3a:c5:8b:71:92:14:88:09:d1:d0:e7:14:bc:bf:0c:d4:18:47:
b5:59:be:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTrsRjFPGpaZh3pJCTuqHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0ODE0ZWE3ZTgzYjQwMTliZmQ1Nzk3ZWJhOTg5ZGEwNmRk
OTBlMzMwHhcNMjUwODIzMDUwMjQzWhcNMjUwODI0MDUwMjQzWjAzMTEwLwYDVQQD
EyhjMzU5NjVkZGJhMWRkZDE5OTIwNTliMDQzNTAzNTZhMTgyMjBlYjAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Me0UtJD3RN2duBDiAu43LODgrs4
dL2aIqL12D9vDcS3M4poIix+0lYTHeDXQNEVNKW0A5iMzv26ygJLsYDqe5lNHGvB
49/Mbop346lJyeqUCfkAaPWoJTCBi7FSuGZ0fe49hYcPzOQsZpWnGxDo/rzBWImh
BPzedk1zARCiI9h+cu33+vYtOfCwUPv/ilaWUoIvjC8ujHTfyjSe4fYpARprUg6l
GzsnG1HD2rsi5km2aZqkGP4PIED3HLxAFlq1V9WIZ7kOStxk5gvMUHurmJIKP8IK
wnFmzSwsyITFfavXtp+nzaD3FIVKdzc0251jb0zCofMS/qwZcJKlb65QywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMNZZd26Hd0ZkgWbBDUDVqGCIOsCMB8GA1UdIwQY
MBaAFESBTqfoO0AZv9V5frqYnaBt2Q4zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUklGT3AtZzdRQm1fMVhsLXVwaWRvRzNaRGpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8zYWM0NGItNTY1YS00Mjg2LWE0MGMt
ZDdlMDFhYzAyYTc1LzEvUklGT3AtZzdRQm1fMVhsLXVwaWRvRzNaRGpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC8zYWM0NGItNTY1YS00Mjg2LWE0MGMtZDdlMDFhYzAyYTc1
LzEvUklGT3AtZzdRQm1fMVhsLXVwaWRvRzNaRGpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUPvI/ZRh
cej2R9D48L6Wvf5I1T7ihbtS7hDA1nqc3VqeiWMBTBbasNDA/WCsIHITNAkK6kwK
/bBcm85fOFiifGPKpr1rWj2FSAO8TU9gkKpmoGFSYZp+iinH9SckCNi9xaO31Clv
Twm0uDHblJ4+7fGE9pwsOvnGszhi3d314VcJSU57zEDv1HV02WMyZ1trnYkTP15f
PtfwCnR8hd83PgwUa+ObRiKP7rgdni8T4MyHvuG0WsqwLT7+DSNOE7YL1sN/3KOF
NEpqin67wnlwsmVMo+hJNJgy2kRxA1scm/bZa08cGRF1F8kFOsWLcZIUiAnR0OcU
vL8M1BhHtVm+sA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:40 2025 by rpki-client