Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: m75RTYALJ1rqNZhTl/VMzyQfE0ainB10v+rA0rium/E=
Subject key identifier: B8:34:05:7D:FB:3E:D3:CD:8A:9C:C5:10:3B:3C:C4:C4:4C:82:29:18
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 0198D54E074D4C222D7FF186BDE221D2FCCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 1011
Signing time: Sat 23 Aug 2025 05:01:57 +0000
Manifest this update: Sat 23 Aug 2025 05:01:57 +0000
Manifest next update: Sun 24 Aug 2025 05:01:57 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: A+iF+pUWFnjnCKIfq8PAlhl4Nk4muXgnMuQ6OF4OF9Q=)
2: Ut4z4tImR83ncGrwpXNPaCBz4dc.roa (hash: x3Tb8uXmHgRhBdCjWUywrl5EoWV8hOlCverEGcV2UXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:07:4d:4c:22:2d:7f:f1:86:bd:e2:21:d2:fc:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Aug 23 05:01:57 2025 GMT
Not After : Aug 24 05:01:57 2025 GMT
Subject: CN=b834057dfb3ed3cd8a9cc5103b3cc4c44c822918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4e:75:2c:69:5b:52:8c:0a:02:bb:53:aa:4f:
4e:de:35:f6:5d:57:87:0d:02:5f:b7:2a:26:76:af:
1f:95:ae:68:21:71:d1:b8:67:79:0e:65:80:46:1c:
c5:cd:8e:d0:1c:4d:b2:41:5d:b7:b9:2d:8f:9e:24:
65:f3:25:87:79:9b:68:32:9d:20:10:75:be:26:db:
73:33:d7:75:5c:78:ec:35:a2:ce:28:bd:57:89:c7:
7b:04:c7:37:14:73:d2:8d:de:4d:4b:8c:68:13:42:
6b:a8:e4:32:70:91:b7:82:59:a5:52:8a:db:78:77:
b6:2f:66:0d:a3:2e:5c:b1:a8:86:24:f9:fa:05:e1:
50:a0:ff:7c:0c:d0:52:80:a7:21:0f:dc:7b:f2:0f:
5b:3b:8e:34:bb:f6:14:70:07:02:79:a7:34:24:07:
b0:78:e9:15:8b:34:43:08:7c:9e:6f:bd:de:1a:41:
95:aa:ac:ac:96:8a:fa:7e:12:5e:05:28:c1:d7:d0:
be:26:2c:eb:6d:78:52:a5:d7:26:32:17:ca:db:1a:
dd:d5:71:3f:75:9a:29:04:9c:7b:64:4b:d3:e4:95:
78:5b:c8:23:4f:30:34:27:14:fb:da:5a:de:b2:b3:
d7:cc:f1:20:a0:93:c3:27:bd:10:f8:e8:04:48:13:
c9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:34:05:7D:FB:3E:D3:CD:8A:9C:C5:10:3B:3C:C4:C4:4C:82:29:18
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:51:5d:3a:28:e0:a9:29:07:fb:1e:94:73:74:f0:07:5b:75:
0b:29:7f:c8:63:b1:20:64:c5:bc:7c:8f:9e:33:65:08:88:be:
2b:51:38:19:1f:22:7b:6c:85:fb:58:d8:78:61:c4:d6:9c:16:
9c:43:c2:54:ce:75:05:00:68:ba:47:71:18:d5:d0:1d:04:ff:
03:45:41:f2:97:9d:53:00:18:e8:77:16:fc:fc:77:ef:2c:f8:
83:c3:f1:78:e0:0d:80:ef:5e:85:f4:a7:94:0b:25:1c:d2:60:
79:e7:6a:f9:6d:da:bc:c9:8d:6b:12:9c:62:e4:f5:4a:45:59:
1f:6b:9c:d2:c4:16:b2:39:19:f2:35:a9:cb:12:c2:62:60:44:
4d:47:1d:64:3d:13:64:4e:c3:4a:80:0c:96:91:ae:dc:b5:23:
aa:8c:db:90:92:27:53:43:d0:52:45:50:b2:1a:78:a8:8f:20:
82:b7:54:1d:aa:91:3a:4f:a0:d0:f5:c0:45:c1:91:57:63:19:
74:2d:09:9a:c0:84:c4:9e:76:36:85:ae:59:ad:c1:bf:17:4f:
c8:49:a4:c4:1d:dd:cc:5b:4f:a0:ac:72:5c:45:cc:d2:50:59:
d2:b4:98:fc:3e:9a:70:50:ad:ec:75:7e:86:1c:be:95:91:95:
30:da:7b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:17:48 2025 by rpki-client