Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
File: lQ8oTPXDnybd0jUufyrfeo3GD44.mft (raw, json)
Hash identifier: jS6dL91Qh3b31ZTo9Mz8ntU9DgVTxDG/Sfqnlqeok9Y=
Subject key identifier: E4:5B:33:CD:1D:03:F4:14:56:79:CF:91:EF:7A:4A:4D:D9:3E:A2:87
Authority key identifier: 95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
Certificate issuer: /CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Certificate serial: 0198D5BB8665C5B578603466C55789BE5437
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
Manifest number: 0C45
Signing time: Sat 23 Aug 2025 07:01:33 +0000
Manifest this update: Sat 23 Aug 2025 07:01:33 +0000
Manifest next update: Sun 24 Aug 2025 07:01:33 +0000
Files and hashes: 1: CIXcSM8wlZUJc9_olM2z-Sxe_fI.roa (hash: mDiY7MPNQSCh1DaHA5s1SG/E+/9GUkWw11IjIEdP7WU=)
2: lQ8oTPXDnybd0jUufyrfeo3GD44.crl (hash: o1IjJKRIcvI6lsG0VW2Tg4/h8NYOmtNTC5FOZOaupWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:86:65:c5:b5:78:60:34:66:c5:57:89:be:54:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Validity
Not Before: Aug 23 07:01:33 2025 GMT
Not After : Aug 24 07:01:33 2025 GMT
Subject: CN=e45b33cd1d03f4145679cf91ef7a4a4dd93ea287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:82:e7:8c:85:a6:dc:5d:65:a2:54:c2:b2:9a:
60:11:83:10:a3:ec:62:15:70:fe:6d:15:5c:42:d5:
42:d9:24:26:54:84:23:bf:de:3b:e2:10:06:03:d5:
a5:be:ce:d0:f8:c8:39:e3:4b:b3:35:3c:d2:94:00:
49:85:3f:9a:d1:c0:73:c3:ec:01:fb:61:c4:b6:81:
18:be:11:4b:f3:a9:44:9d:a3:55:6f:66:29:53:9c:
d9:66:9a:8c:98:f4:e6:6f:3d:90:8d:86:7d:a8:25:
a8:c8:32:08:06:91:c0:59:ba:06:e9:65:1b:c9:17:
12:89:35:c9:a2:d0:41:95:59:71:b6:97:57:92:dc:
04:69:b3:fd:8a:cf:0a:5f:30:f4:de:d0:ce:c8:66:
5c:6d:ac:08:e4:e5:dd:f7:fc:70:8a:ae:54:8e:90:
3c:33:ec:3b:e4:10:b8:a0:fe:18:06:e8:cb:53:e0:
f4:f7:1e:b0:9a:e3:66:40:42:e3:a5:27:0f:d3:68:
c9:ae:22:a8:8c:9b:7f:56:cf:6c:0b:d3:df:a4:4c:
d4:2f:84:1c:19:b4:01:0c:9b:c4:6a:08:31:7d:2b:
d6:e3:b2:75:8d:7e:bb:8e:b1:34:4c:c6:10:f9:d7:
95:97:85:1b:73:be:fa:7f:c8:a3:02:ce:2f:b0:98:
53:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5B:33:CD:1D:03:F4:14:56:79:CF:91:EF:7A:4A:4D:D9:3E:A2:87
X509v3 Authority Key Identifier:
keyid:95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:21:9b:9b:9d:57:31:37:ac:e4:8c:6c:c8:99:91:35:4d:a6:
88:d5:9a:44:38:80:fd:1f:ce:36:f3:57:88:70:7d:bf:44:19:
05:4c:b2:fe:35:35:36:a8:15:49:9b:cd:39:7e:ed:eb:99:26:
c1:61:09:36:e0:b8:eb:01:f5:6f:f3:89:37:74:e6:25:72:e0:
24:09:96:a5:f3:0c:a4:1b:69:d2:50:08:62:f9:90:d8:bd:ea:
99:60:13:c3:fe:29:f0:a6:b5:28:f0:07:32:78:1a:f4:e0:c3:
38:39:c0:d2:71:62:2b:33:48:f7:06:79:bb:e4:b1:d3:ac:b2:
9e:43:2a:a0:8a:ac:7d:81:00:eb:d1:1e:9e:14:46:87:d7:49:
2a:3a:63:5a:96:10:bd:3a:13:81:37:1b:04:e7:dd:0b:83:76:
38:28:67:9b:eb:9b:c1:66:e8:0e:7e:f6:57:01:9f:43:cd:8b:
f9:6b:33:29:5d:ee:9d:19:4f:3d:54:42:31:a2:c0:e5:a1:a3:
47:e2:d9:68:fa:0e:c9:6d:c0:03:08:51:31:90:ed:ad:9a:ca:
a4:36:1b:12:aa:ae:be:f5:cf:b9:3d:77:17:c5:1f:94:66:a6:
84:e3:8d:76:36:6e:7c:eb:e5:e3:04:ea:23:3b:89:0f:6b:5f:
9d:d5:9a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:27:30 2025 by rpki-client