Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
File: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft (raw, json)
Hash identifier: p3NyH/8daLNUWxSUsbM/1tNHQb5hzh0VIl1ZPU0MKJY=
Subject key identifier: 5E:8F:35:7A:8E:C2:3D:D3:BB:EF:5F:B4:0A:2C:3E:58:36:F1:11:83
Authority key identifier: 46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32
Certificate issuer: /CN=46aa60676c130c6438e45b5a607210e9566b6832
Certificate serial: 0199FC589D74CB0B395712532C7F376B9AA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
Manifest number: 03FB
Signing time: Sun 19 Oct 2025 12:01:29 +0000
Manifest this update: Sun 19 Oct 2025 12:01:29 +0000
Manifest next update: Mon 20 Oct 2025 12:01:29 +0000
Files and hashes: 1: 4pIrmmCZWAO8NuTmun2AQKQETQo.roa (hash: Pf6nhAI8L5UL8XOlhvccLv1CzKTIGW/DapLLMv9479I=)
2: RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl (hash: 9JfSejQcKpRR0ygBBahdhoqjpsusEvbRQqQ989+/d6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:9d:74:cb:0b:39:57:12:53:2c:7f:37:6b:9a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46aa60676c130c6438e45b5a607210e9566b6832
Validity
Not Before: Oct 19 12:01:29 2025 GMT
Not After : Oct 20 12:01:29 2025 GMT
Subject: CN=5e8f357a8ec23dd3bbef5fb40a2c3e5836f11183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a1:25:90:88:f3:12:65:59:a9:d6:26:1b:25:
ce:b8:0a:94:35:8c:c8:7e:4a:dc:d2:50:3a:c6:e5:
9d:d5:b9:0f:cf:24:48:c2:ba:65:95:54:c2:66:f0:
99:7d:b3:de:a6:69:1b:72:2e:6d:64:75:40:04:4e:
9d:af:80:00:41:61:76:cb:84:d1:f0:a2:29:7f:c8:
de:9d:2c:a3:dc:72:ec:7d:90:82:39:e3:bc:d2:9d:
9b:ff:83:1a:f4:e3:95:25:b0:18:eb:b5:78:cd:c5:
65:bf:cc:97:68:e6:cc:58:db:8b:4b:c6:55:54:f0:
6d:4d:4b:f2:2f:87:fc:6c:4f:3e:4e:0a:9e:f0:84:
99:42:e7:27:72:d8:97:b3:d5:ec:11:b9:79:5d:25:
a1:f8:14:53:b1:42:97:b6:10:3f:e7:59:93:f0:32:
7c:ba:cc:90:3b:68:b6:dc:9a:8c:eb:09:0e:59:46:
a2:40:40:2a:87:97:4c:3a:d9:d3:94:82:a5:25:38:
e3:e1:a1:f9:6b:2b:83:69:00:a9:1d:50:90:11:0e:
79:09:45:d0:d0:60:6f:93:75:e4:1c:15:53:27:f5:
70:74:79:a4:df:02:dd:01:9b:82:5c:a3:27:4d:63:
92:73:de:d1:fa:27:1b:74:46:c2:05:10:2c:57:6d:
f7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8F:35:7A:8E:C2:3D:D3:BB:EF:5F:B4:0A:2C:3E:58:36:F1:11:83
X509v3 Authority Key Identifier:
keyid:46:AA:60:67:6C:13:0C:64:38:E4:5B:5A:60:72:10:E9:56:6B:68:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1721d8-aa46-4faa-ae15-c5e32c8272d7/1/RqpgZ2wTDGQ45FtaYHIQ6VZraDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:e3:3a:fc:7f:95:e5:8d:17:7a:22:d1:eb:5e:3d:da:fa:43:
51:5d:0c:d0:c5:6b:8b:bb:b5:f7:06:e6:1f:f0:fe:a9:8b:20:
0c:0f:77:46:c7:6e:13:a8:fd:cc:7d:75:77:b5:35:16:8d:99:
65:b2:1a:3e:96:e7:c0:9b:54:55:7e:84:6c:05:b4:c0:72:30:
98:a7:e6:18:42:b7:39:b9:76:94:69:9f:67:23:87:2f:e4:7d:
0f:77:16:1d:90:a5:38:79:51:f9:fe:ba:bd:77:e8:f8:1d:de:
b2:e2:d1:d2:d3:bf:ee:c1:a0:51:55:96:2b:e4:63:36:ac:6a:
f1:45:5a:7c:c2:73:1f:51:ab:82:df:b9:26:d4:75:4b:b3:af:
4a:fe:ba:08:7e:8b:b8:93:13:ed:9a:43:8f:1f:00:4e:32:ed:
fa:9c:97:0f:17:56:0a:52:bf:a6:a6:8b:e0:36:a6:99:58:b4:
30:51:4e:00:c9:e0:fc:ad:fd:e7:5e:1e:36:4c:a6:ea:68:33:
6c:e8:ac:9b:2e:09:7b:93:11:1b:82:85:92:2a:f6:ef:fb:32:
ff:71:c5:5e:d7:36:90:86:2c:70:5a:ec:c5:d3:81:6a:bc:da:
7a:4d:fe:06:7c:71:d1:32:03:83:70:ab:cf:18:65:8f:bf:34:
a0:58:e8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:49 2025 by rpki-client