Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
File: 8KEScQQ06Frl_m-_Qedr3fk4GM8.mft (raw, json)
Hash identifier: yJ7n0iLp5jpajuLRy310mR3mZ7FJESFxfXwRNncynUA=
Subject key identifier: 2B:1D:04:2A:F6:6A:1F:6D:45:68:57:CB:9D:F2:D0:9A:25:97:4F:F6
Authority key identifier: F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
Certificate issuer: /CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Certificate serial: 0198D73B012D5C96D2346B3066B292DC459C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
Manifest number: 04C3
Signing time: Sat 23 Aug 2025 14:00:25 +0000
Manifest this update: Sat 23 Aug 2025 14:00:25 +0000
Manifest next update: Sun 24 Aug 2025 14:00:25 +0000
Files and hashes: 1: 8KEScQQ06Frl_m-_Qedr3fk4GM8.crl (hash: yCHUWn9hyu6H2RJkTPxFq8P5miGxIXDW3Zl3Teb38+U=)
2: QxzsJBZ0KnjdWggXNkiPE3mxTiE.roa (hash: wp71B9vMq7Np21xWaUokwt4Wn7Ga2Zz2FhWmCQz4Lj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:01:2d:5c:96:d2:34:6b:30:66:b2:92:dc:45:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Validity
Not Before: Aug 23 14:00:25 2025 GMT
Not After : Aug 24 14:00:25 2025 GMT
Subject: CN=2b1d042af66a1f6d456857cb9df2d09a25974ff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b9:a6:f5:90:48:61:62:c9:54:4a:d3:41:8e:
62:f6:c3:02:c8:ac:02:8a:2e:fe:f5:06:0c:a9:c6:
d8:d8:ca:c0:40:14:c2:58:e4:f8:9d:18:6b:13:0d:
2b:8e:89:77:fe:ca:d3:d9:c5:fc:d3:03:3b:61:05:
88:b6:2b:3e:06:ad:2e:60:48:0f:75:5b:7c:ad:01:
13:26:05:5d:fa:08:57:a8:a0:4e:d9:53:81:aa:64:
b5:ea:b1:7c:c4:4c:95:80:8b:9e:7a:bc:66:fd:88:
c1:7e:db:e3:18:00:1f:e4:6c:cc:0f:54:29:d8:d2:
1b:3e:92:52:55:ff:29:03:5d:20:a3:c0:cb:00:5c:
be:35:c2:13:56:ec:5f:30:04:6e:85:9d:16:c8:61:
6c:98:f8:d4:60:86:89:bb:32:a3:93:3e:f5:53:44:
65:d4:32:fa:e8:99:b7:15:28:2a:11:9c:66:2f:a0:
14:dd:66:ea:43:b5:10:ae:23:a1:53:b1:41:65:7e:
7d:66:4d:04:7b:95:ab:e5:a2:e7:cb:3d:ce:f7:f7:
e6:43:88:0c:fc:ee:e8:a3:3c:9c:99:38:28:23:4a:
39:47:e8:2f:d4:29:a7:da:80:7e:8d:f1:5d:60:c5:
f1:37:33:7a:a0:53:f1:d8:a7:04:77:7d:f2:3f:0d:
26:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1D:04:2A:F6:6A:1F:6D:45:68:57:CB:9D:F2:D0:9A:25:97:4F:F6
X509v3 Authority Key Identifier:
keyid:F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:ef:4f:78:99:59:a9:e5:17:e9:72:5a:ae:f4:92:2f:1a:60:
66:43:ef:82:07:d8:a9:45:b8:9a:53:bb:32:9b:17:fa:74:e1:
0d:b5:84:1a:84:cf:7d:b7:07:21:f7:35:d1:a9:5a:a6:22:c3:
42:8d:87:56:b1:ba:19:ea:8d:69:c2:74:60:3f:ba:b9:05:59:
74:36:22:ff:b2:7a:14:a7:75:08:a1:a8:80:19:15:51:3f:68:
e5:64:de:09:85:52:4a:2d:48:5a:98:47:ff:d4:fd:0d:19:dc:
ba:fb:1d:03:aa:ba:7c:a4:32:32:d1:96:3f:71:f0:6a:55:fa:
4f:e2:65:d3:6c:58:9d:23:6e:93:7d:38:3f:4f:ec:08:1d:4a:
fc:d4:f9:4c:c9:a5:f6:6e:bb:1e:1c:24:16:13:f0:cf:41:1e:
6a:ae:fe:0a:5d:44:98:d0:7c:05:e4:18:58:38:36:b8:6d:92:
ce:11:f2:43:ad:83:39:86:f2:5b:76:31:ec:a1:b7:d8:0c:c4:
7c:35:bc:67:5f:2e:0b:45:79:7e:fb:3b:ef:c1:5e:f4:f7:8a:
71:60:61:08:8b:a7:43:86:82:72:e9:ec:96:26:cb:04:48:3a:
aa:7f:0c:b1:b5:e7:f5:8b:48:06:74:d1:07:0c:26:f4:4c:8f:
82:ae:e4:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:50:22 2025 by rpki-client