Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
File: 0Q44sLejPvOhbhVDNAKYfW1njaE.mft (raw, json)
Hash identifier: 5FPmTLgJfKwRaoLvWNt7Ce6ySZZLqmFomazogLjevdo=
Subject key identifier: 6C:90:F2:D4:1F:91:CB:BD:7B:B0:5F:0F:CB:21:0A:18:36:0A:0D:C9
Authority key identifier: D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
Certificate issuer: /CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Certificate serial: 0198D7734C6C3E3F3CFEFA4B46DAA9AFC09F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
Manifest number: 12F5
Signing time: Sat 23 Aug 2025 15:01:54 +0000
Manifest this update: Sat 23 Aug 2025 15:01:54 +0000
Manifest next update: Sun 24 Aug 2025 15:01:54 +0000
Files and hashes: 1: 0Q44sLejPvOhbhVDNAKYfW1njaE.crl (hash: 73bPpzgDtj0vwmyyQlMIlMuRCfrSpnGbpBIvYmIqCdQ=)
2: pTXcU1-027t2C2Vu9gFY335XMJc.roa (hash: VazQFR0+HiS2IaElmJ/i9QSFb0To3uFvpZ1ELlNt0rw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:4c:6c:3e:3f:3c:fe:fa:4b:46:da:a9:af:c0:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Validity
Not Before: Aug 23 15:01:54 2025 GMT
Not After : Aug 24 15:01:54 2025 GMT
Subject: CN=6c90f2d41f91cbbd7bb05f0fcb210a18360a0dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f0:26:c2:b0:51:03:b1:75:54:43:52:45:34:
71:5e:de:84:24:1c:f1:17:c5:d4:90:b5:92:6d:bd:
9e:e9:f0:a5:d7:0e:0c:35:b7:fd:d4:28:09:fe:e7:
d0:97:e5:1b:91:3e:42:8b:f4:26:17:5e:c6:88:a8:
ca:44:32:f4:30:66:ad:c1:3d:d0:8e:99:53:1c:63:
65:e5:b0:d8:f9:aa:e6:06:ec:16:34:34:d0:01:cf:
12:bd:76:4c:28:df:79:22:43:6f:6e:76:62:f5:3c:
25:33:ac:be:f5:4d:7e:77:b2:e8:10:b1:32:34:84:
7d:d9:74:1e:a2:3b:00:51:ab:f7:33:94:30:4c:39:
8b:85:49:56:90:fa:92:45:be:53:d0:49:f8:5b:3b:
1e:3c:0f:d4:f7:2b:8d:54:d1:ee:c4:92:77:82:1c:
57:ff:68:e1:a5:45:1c:6f:9b:51:49:bc:ae:33:0b:
e9:75:bd:92:af:ca:52:2d:ff:0d:9b:65:24:02:b6:
39:9c:3c:21:f0:21:4a:de:0a:77:70:2c:6c:fd:c8:
99:17:e4:8c:c4:43:1a:ad:51:e5:23:ea:e1:bb:02:
91:df:b6:08:7f:99:46:af:44:03:a5:55:8f:e6:4c:
7c:e7:70:9b:87:a6:6a:58:ce:e6:b4:fc:cb:74:fe:
2a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:90:F2:D4:1F:91:CB:BD:7B:B0:5F:0F:CB:21:0A:18:36:0A:0D:C9
X509v3 Authority Key Identifier:
keyid:D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:f9:51:b1:89:19:69:76:38:c0:9c:b5:50:3a:a0:3f:53:ce:
9d:9c:fe:db:dc:e0:0a:e7:fc:af:91:ed:29:2a:1a:af:20:e4:
c8:80:c3:16:fe:1d:4b:78:da:ed:a3:87:d8:53:0b:00:a9:93:
dc:69:8b:69:c8:41:89:c5:1b:02:f0:c8:b1:dd:6b:f9:05:a8:
53:31:e8:98:a6:b1:e6:0a:3b:a4:6e:ee:80:fe:0a:ca:53:b1:
c2:f0:8b:f1:5c:9b:58:34:b9:1f:7d:6e:3c:16:fc:6d:19:70:
d6:df:0b:8a:f0:21:6b:94:2e:b2:6a:46:8f:ef:2d:45:d2:3c:
fb:5f:d7:c6:f6:9a:36:07:66:6d:91:be:78:5d:cd:70:54:ab:
81:36:5f:ae:54:5f:ae:4e:40:6d:6a:2c:67:58:3a:af:23:bb:
f0:12:1b:b7:72:f7:ae:ed:1b:27:7d:ba:4a:97:74:1d:5a:10:
6b:80:82:16:98:18:69:82:02:e2:dd:68:5f:4f:e7:dd:a4:32:
1a:c2:bf:a8:46:05:47:f7:b4:fd:fd:78:b0:34:37:93:e1:d8:
5a:99:6a:83:c5:03:42:33:21:d7:26:49:3f:64:72:12:55:03:
10:1e:49:b0:8d:32:df:86:a4:cb:81:ba:cc:b5:ff:81:1f:29:
5c:c5:d4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:25:17 2025 by rpki-client