Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
File: q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft (raw, json)
Hash identifier: a1D0uIRQ1s+yAumoUFK+iCmhdwMvMUzT7azgpBTOTM4=
Subject key identifier: A5:08:F8:3C:CF:7B:8E:60:88:64:1C:F8:5A:E6:1A:89:C0:80:22:9F
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 0198D4E0B0F40F4626D6862DBE7EB9B2B319
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
Manifest number: 0C3C
Signing time: Sat 23 Aug 2025 03:02:31 +0000
Manifest this update: Sat 23 Aug 2025 03:02:31 +0000
Manifest next update: Sun 24 Aug 2025 03:02:31 +0000
Files and hashes: 1: 0SSsSk3JYtZfVKoUdIXep-skUls.roa (hash: lo1rRlcKmSiP/o5fsPXMsNzyze1q/0lfZDjTXaH15HI=)
2: q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl (hash: +pknwZdQ+SNyNEGSusZ3GpFaWeWqpvNB29dodN/9e7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:b0:f4:0f:46:26:d6:86:2d:be:7e:b9:b2:b3:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Aug 23 03:02:31 2025 GMT
Not After : Aug 24 03:02:31 2025 GMT
Subject: CN=a508f83ccf7b8e6088641cf85ae61a89c080229f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d1:ed:91:30:43:28:8c:3b:61:ea:c7:07:02:
94:9c:c0:3f:6e:06:c0:61:9d:42:8c:65:58:e7:d9:
57:89:f2:9a:7a:4a:c1:60:9f:77:43:6f:7c:02:5f:
45:66:62:27:d5:5b:0c:3e:4a:7f:f2:fd:74:14:f2:
1b:ea:18:ce:96:ad:05:fc:a9:77:d4:2b:ff:d4:2a:
15:16:ae:a6:70:3e:9a:58:bf:67:bc:bf:71:a8:6e:
97:c4:3e:72:39:5d:1e:6e:fe:30:02:c8:2f:23:c4:
c0:bf:e5:44:4d:a4:97:3a:c7:a6:9a:bc:56:77:ec:
bf:0e:38:9d:99:e8:17:a0:a2:6b:27:d2:c0:f5:1f:
36:05:26:c3:06:90:ed:4c:d4:77:f6:38:03:fb:eb:
da:d6:f4:49:61:c9:eb:83:2b:30:13:84:7c:68:53:
53:4a:6f:97:88:b6:b9:3c:75:cf:60:ea:24:38:b3:
15:77:51:27:1c:be:5c:15:7e:92:e0:dc:92:e6:87:
75:28:eb:a4:2d:b6:34:35:c9:12:a9:9a:68:47:59:
f6:b2:5e:f7:4b:e6:8f:c2:38:28:5d:b4:4a:af:0f:
54:fb:24:73:50:35:5f:e6:26:91:d6:7f:49:d0:89:
54:b3:fb:c8:56:04:eb:c9:23:bc:fc:1c:a4:68:99:
1f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:08:F8:3C:CF:7B:8E:60:88:64:1C:F8:5A:E6:1A:89:C0:80:22:9F
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:9b:9a:40:5c:83:48:cb:09:d1:ef:b8:5f:68:c9:a0:37:4f:
21:63:3f:ba:4d:ce:49:30:57:b8:46:e5:bf:72:4f:df:c5:70:
19:f7:f3:16:da:f3:ce:53:3c:83:3f:6d:09:c3:4a:d8:b3:89:
49:fc:9f:f7:fb:51:e5:dc:7f:01:45:d6:21:a3:c4:79:ac:a9:
f4:f1:19:37:06:08:e1:21:34:48:34:e3:6c:51:82:e5:99:8e:
8c:f7:a6:23:53:df:1f:85:95:a7:4f:2c:31:25:14:1c:a3:d0:
a9:1e:32:bc:c4:e7:2e:ce:05:15:db:10:b6:b9:c6:31:f3:e5:
7a:45:c5:19:13:16:52:58:e6:d2:da:0d:9e:46:93:42:9f:47:
4b:f4:2c:ab:d1:68:ff:49:7b:0d:e3:1e:6a:ed:25:41:d6:de:
3a:97:23:5c:94:67:b7:3e:cc:78:85:40:3d:40:32:f9:a5:20:
b4:60:62:19:b6:5a:6c:64:cf:e2:0d:ae:f9:13:81:fe:20:94:
53:7d:2d:09:16:b5:93:ab:4f:18:ce:79:8f:06:e0:a2:03:60:
f7:2f:8e:1e:20:3b:97:95:f6:eb:f0:9d:04:cb:39:21:7f:f0:
f9:f8:c3:90:4b:62:c9:1f:a7:d8:91:d9:c8:1b:f6:36:67:3c:
dc:6f:55:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:19 2025 by rpki-client