Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
File: WqKpJUebz8vBloipUqJDAfTnaDk.mft (raw, json)
Hash identifier: dENLvE7TD3cTEY/OaqUIQ6rI+azoZes7cZ/xwyL0KnM=
Subject key identifier: 0B:B0:48:D9:2C:1A:E0:8B:9E:4F:14:52:08:47:FB:64:BC:36:B6:8B
Authority key identifier: 5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
Certificate issuer: /CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Certificate serial: 0198D7A9078C32370EED205BB78B5CBF762C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
Manifest number: 07A2
Signing time: Sat 23 Aug 2025 16:00:35 +0000
Manifest this update: Sat 23 Aug 2025 16:00:35 +0000
Manifest next update: Sun 24 Aug 2025 16:00:35 +0000
Files and hashes: 1: WqKpJUebz8vBloipUqJDAfTnaDk.crl (hash: EK2KDf6Uh2ZHqct40UOvtzsOOH+LIU0V9Dggb6fxD0Y=)
2: jYQY-U25B3NSBy3Axt-DvgoJjdQ.roa (hash: zP4WnXpWxsW1++MaE9e5/n5ALBQb36qRJjvWEAaaUiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:07:8c:32:37:0e:ed:20:5b:b7:8b:5c:bf:76:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Validity
Not Before: Aug 23 16:00:35 2025 GMT
Not After : Aug 24 16:00:35 2025 GMT
Subject: CN=0bb048d92c1ae08b9e4f14520847fb64bc36b68b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:96:ab:5d:f9:63:d5:78:12:0c:0e:ac:cd:3a:
67:16:20:cc:16:19:b4:46:6e:fe:88:d9:77:60:50:
a0:54:11:a8:48:1a:69:f2:3e:e9:9b:b7:17:4a:ab:
da:ba:d2:1c:f0:a3:2a:80:4d:4b:d0:3b:07:19:ca:
11:90:e7:82:d5:69:b8:e7:9f:54:8a:fc:53:c2:0e:
0c:0d:06:96:0c:39:46:7a:61:2e:87:92:8e:d0:93:
ea:ef:97:dd:09:6b:08:fd:c2:ad:c0:89:36:ef:53:
81:d8:a9:78:04:01:79:78:53:0d:0c:6a:98:1b:b6:
ed:cd:14:9f:a6:f1:16:7a:4a:f7:24:de:ba:58:e1:
52:41:ab:36:ed:a2:5d:06:23:71:45:ac:2b:82:b6:
b1:31:8a:4e:32:52:b3:d1:0b:61:31:31:b6:37:47:
64:15:a0:bd:00:33:9d:bb:f0:7f:01:3d:65:5f:40:
c4:51:c1:63:29:66:60:46:df:64:3c:13:bd:68:73:
e9:4c:1a:f7:42:77:1e:ec:47:ec:9d:10:84:03:ee:
df:f3:5f:b0:9b:1f:a7:a8:68:7b:fd:b1:b8:88:2a:
f4:83:c8:6e:ef:0d:15:43:7a:1d:f8:21:cf:5c:b2:
2e:1c:19:7d:21:21:b5:cb:ed:fd:7d:18:a2:7d:22:
80:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B0:48:D9:2C:1A:E0:8B:9E:4F:14:52:08:47:FB:64:BC:36:B6:8B
X509v3 Authority Key Identifier:
keyid:5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:50:66:ad:0e:92:f2:82:61:85:d1:41:e7:7a:84:54:c7:c2:
d3:16:84:c6:70:c0:f5:5c:15:05:af:4f:e6:b7:db:38:a5:3e:
30:08:a5:eb:70:ec:4f:2b:18:5b:14:fc:91:b2:cf:48:1e:40:
11:9f:3c:60:34:4e:eb:b8:36:0d:ec:45:13:6f:07:0b:bc:60:
24:02:6b:f6:0c:b3:c0:4a:3e:87:57:48:e6:ca:85:ae:55:ce:
03:ff:ae:66:77:44:e2:7a:d4:04:fb:a4:5d:cd:7d:07:90:46:
5a:f6:34:f6:68:44:ec:db:c8:dd:58:50:65:e7:95:68:65:9e:
ac:33:18:be:ea:b0:52:02:74:f5:c8:78:00:6f:55:82:74:3e:
3c:ad:29:7a:5e:70:06:a0:64:66:e0:9e:22:d5:1f:b9:5f:60:
e5:22:a9:91:dc:e0:9c:10:f0:56:56:4a:18:d1:48:d0:a5:4c:
18:14:82:db:7b:e3:0d:d4:c1:9f:2d:39:75:65:a3:c3:bc:a0:
ba:75:7c:6a:0a:54:d5:97:fe:ff:f6:1e:06:61:6f:4d:89:61:
70:5f:af:37:4a:7c:80:59:37:85:40:9d:0d:7f:7c:19:5f:4a:
48:a1:b7:87:0e:6e:5d:90:6c:5f:0e:68:63:44:e4:32:ae:99:
12:7f:bd:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:50:14 2025 by rpki-client