Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
File: 0Q44sLejPvOhbhVDNAKYfW1njaE.mft (raw, json)
Hash identifier: lGXjjuxo8YjWz1J6eq+zfCSjR0xpkweMGTpMXpoLFpE=
Subject key identifier: 36:5B:15:FB:2C:28:C3:22:F3:CA:37:A3:12:C9:BB:6D:56:CD:94:EC
Authority key identifier: D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
Certificate issuer: /CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Certificate serial: 0199FCFD217D58233090B690DB585FF8D2C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
Manifest number: 138D
Signing time: Sun 19 Oct 2025 15:01:11 +0000
Manifest this update: Sun 19 Oct 2025 15:01:11 +0000
Manifest next update: Mon 20 Oct 2025 15:01:11 +0000
Files and hashes: 1: 0Q44sLejPvOhbhVDNAKYfW1njaE.crl (hash: Piqlfo9HuEf3BB69gVAxmj7ACC+FovwiCoHM2uZ2SKM=)
2: pTXcU1-027t2C2Vu9gFY335XMJc.roa (hash: VazQFR0+HiS2IaElmJ/i9QSFb0To3uFvpZ1ELlNt0rw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:21:7d:58:23:30:90:b6:90:db:58:5f:f8:d2:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Validity
Not Before: Oct 19 15:01:11 2025 GMT
Not After : Oct 20 15:01:11 2025 GMT
Subject: CN=365b15fb2c28c322f3ca37a312c9bb6d56cd94ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d9:e3:ec:76:ca:5b:ff:bb:2f:06:3c:0b:a0:
65:f6:d4:a0:a7:ae:d3:d1:0f:8c:3e:5d:c4:fd:62:
b4:0d:1b:ed:23:81:a7:1e:a9:45:9b:a9:0c:ff:00:
e0:a8:7f:0f:07:ea:5a:d3:9a:c2:35:01:09:f7:67:
ad:d6:46:e6:b0:9c:f2:d9:22:53:57:ce:28:5e:94:
5e:7a:27:5a:d6:fd:b7:bd:1a:ea:27:fe:1c:e2:3d:
07:e3:b7:48:fb:f1:9e:a7:a8:bc:3f:22:13:2f:ba:
a0:05:a2:53:66:ef:85:81:28:96:e9:86:54:68:13:
18:94:4e:b8:74:ce:f4:c3:f0:1b:8a:d2:b5:cd:c0:
29:f1:04:01:8c:db:24:dd:8b:c1:c4:ce:ec:36:c4:
77:6d:8c:6c:9a:18:a0:3c:70:e9:19:f1:1d:c9:44:
eb:18:b9:6b:6c:d4:1b:f6:cb:1b:a5:ba:76:32:25:
62:ea:5e:ed:33:8a:73:d8:6f:bf:22:b5:a5:b7:1e:
11:c2:4c:8a:02:4f:03:29:e5:89:f5:f0:66:9f:a5:
08:fc:2d:f3:91:74:27:f9:1b:4d:6c:b6:e8:03:c4:
a1:de:87:1d:3d:d0:6f:dd:a1:46:05:2f:f2:69:a1:
6a:f4:23:b1:c1:a3:90:39:76:21:c8:5f:59:12:c0:
93:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:5B:15:FB:2C:28:C3:22:F3:CA:37:A3:12:C9:BB:6D:56:CD:94:EC
X509v3 Authority Key Identifier:
keyid:D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:19:db:c2:e9:60:20:31:f3:bf:8b:cf:18:d6:45:e0:7d:83:
32:44:c9:b5:0c:6a:71:e7:85:ae:30:02:6f:ca:d6:46:f2:a3:
db:b6:d9:d2:03:ac:a0:76:51:ed:22:90:00:53:9e:6c:92:1c:
11:0c:e0:d2:93:24:7b:64:be:1e:01:b2:71:c7:fb:82:9e:36:
dd:f6:c4:1e:c9:ed:2c:3f:ec:d5:97:61:48:a7:bf:3a:1e:fe:
63:c1:28:f5:7c:12:9d:ad:21:ee:c5:b6:32:b6:57:67:44:46:
47:79:00:a8:c8:0b:62:22:7f:da:f1:41:0f:c1:7b:25:ce:8a:
63:28:c9:09:d4:04:43:38:1c:1f:dd:dd:8d:af:0c:22:28:19:
4b:47:b3:0a:d3:2c:4c:91:c6:6c:97:5c:f7:4b:74:0c:a1:35:
5a:c9:df:99:c0:cb:92:0a:b1:ed:e3:cf:19:bc:8a:42:24:a1:
19:88:88:7e:59:68:1f:ff:7d:a0:b7:f9:9b:fb:c0:46:2d:52:
6a:e5:0b:e6:af:b7:2f:d8:e2:c1:f8:25:6c:dd:19:89:09:2b:
df:38:35:60:b9:14:fc:97:c5:2d:c2:04:5c:95:9d:5a:1e:bb:
90:7a:79:42:7c:9b:d7:71:ca:ad:07:1a:23:55:75:c7:3a:88:
17:43:0f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:14 2025 by rpki-client