Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
File: qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft (raw, json)
Hash identifier: JJWNwKZetxroiVVLhEyET7jt084MXKcsolmUmm8oJcA=
Subject key identifier: 0A:D2:6F:77:2F:21:6B:BD:3E:8C:78:84:DB:F1:E1:81:AB:B5:36:75
Authority key identifier: A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
Certificate issuer: /CN=a9a073b31d888e4439e272e007c9532fc305c80d
Certificate serial: 0198D473B2161C13E610A9C59E1AFB11DF47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
Manifest number: 0D0B
Signing time: Sat 23 Aug 2025 01:03:28 +0000
Manifest this update: Sat 23 Aug 2025 01:03:28 +0000
Manifest next update: Sun 24 Aug 2025 01:03:28 +0000
Files and hashes: 1: E0nL2r6tA4Kip6utbHVTl2QsGcA.roa (hash: aen5+JQjIiPGZfLBCbBcX/i0rEODfLs98wUB0AIvd0A=)
2: qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl (hash: +9s0BwC7pJq4OMKcXlfGUCXalvtXzfWVezPILyMxHxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:b2:16:1c:13:e6:10:a9:c5:9e:1a:fb:11:df:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a073b31d888e4439e272e007c9532fc305c80d
Validity
Not Before: Aug 23 01:03:28 2025 GMT
Not After : Aug 24 01:03:28 2025 GMT
Subject: CN=0ad26f772f216bbd3e8c7884dbf1e181abb53675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:dd:30:fa:2a:a1:fb:22:5f:8e:d8:d5:e0:92:
b3:60:87:0a:35:03:47:25:48:15:81:8e:f9:93:3c:
2a:dd:f7:18:31:55:4c:38:92:2a:c5:e3:54:ce:82:
b8:58:e8:7e:c8:e8:ea:c1:3d:24:5b:ac:d3:02:ed:
b9:b8:f1:21:cd:35:1c:da:f2:26:ec:da:f8:94:b6:
58:d3:95:1d:13:24:64:48:ac:4f:0d:e5:9c:64:71:
e0:07:ab:23:93:5c:22:18:13:77:65:71:1e:b9:62:
70:b6:c7:19:df:d4:f1:50:16:64:6a:04:49:1c:3c:
19:ca:cb:83:e5:97:03:a8:eb:19:1a:9d:d0:8a:4a:
90:a3:93:6a:ae:68:2f:b7:1e:8e:9c:4c:21:af:85:
3f:0d:82:33:8d:f7:a9:06:ea:77:f6:59:91:a7:70:
b6:39:c9:cd:77:26:7b:d5:29:ae:d4:39:53:fa:34:
54:2b:54:7b:7c:9b:33:16:dd:b8:20:cb:af:11:8f:
54:fa:9a:57:52:4b:03:e6:d7:aa:f8:87:68:54:b5:
7b:29:c6:44:c7:3f:bd:e8:18:9d:ef:bc:52:94:79:
1e:61:39:0e:4e:04:27:1e:04:93:00:f8:ef:fa:ff:
71:ad:50:6b:2b:94:ca:8d:da:a9:b2:31:c9:13:ec:
05:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D2:6F:77:2F:21:6B:BD:3E:8C:78:84:DB:F1:E1:81:AB:B5:36:75
X509v3 Authority Key Identifier:
keyid:A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:c3:f2:cd:c1:8c:29:32:ed:ad:8d:13:f3:61:9c:f8:b9:24:
fc:02:13:a7:80:9f:c9:82:ef:31:51:aa:d3:1d:b2:3e:6e:10:
18:15:c3:8e:ab:fe:47:11:34:b2:b0:0f:df:7b:fa:98:57:21:
eb:b9:e1:67:5c:1c:b9:c2:84:aa:42:33:16:69:8a:fa:07:46:
99:1a:4f:cc:85:a2:df:b0:3f:bc:ee:f4:26:12:0a:32:9d:46:
27:48:e8:04:03:2b:8d:e3:70:3e:82:fc:01:31:31:58:53:2e:
e7:8f:a5:44:34:a0:71:f7:aa:87:be:05:09:16:5c:4d:fd:6b:
5a:68:31:b3:8c:ac:f2:be:86:42:9b:3f:72:e8:90:a8:98:a9:
92:96:f5:91:c8:9b:49:a1:f7:3e:12:b5:6f:7c:9c:b6:19:14:
b3:fa:e0:3f:fc:23:b6:d7:3b:51:bb:91:a9:a4:68:c1:05:de:
ad:75:8b:01:1c:23:45:50:03:ac:fa:ba:98:6b:1d:ec:7b:d7:
5b:78:47:11:de:2d:bb:2b:cc:48:1e:30:c8:3a:92:8e:78:bf:
bf:86:d0:fb:d1:20:c7:c3:02:84:13:66:7e:49:fe:f7:d1:18:
0b:e7:f9:3d:e1:02:fb:71:2b:68:29:ee:4a:05:1f:d1:89:f2:
fb:0f:35:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:37:56 2025 by rpki-client