Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
File: Q7iP8e37ZyBmAwJncaquyEuLHrg.mft (raw, json)
Hash identifier: Kdt4rqfwm/DoCrQDu/rZ1eeK+cz8GpTTLiOyIIh2siY=
Subject key identifier: CE:3B:EE:5F:20:2C:DC:4C:A8:81:A0:41:7D:3E:79:81:49:E1:54:6E
Authority key identifier: 43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
Certificate issuer: /CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Certificate serial: 0198D73B4A6E1545A2410D7826F5F8BCE6D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
Manifest number: 0DFA
Signing time: Sat 23 Aug 2025 14:00:43 +0000
Manifest this update: Sat 23 Aug 2025 14:00:43 +0000
Manifest next update: Sun 24 Aug 2025 14:00:43 +0000
Files and hashes: 1: Q7iP8e37ZyBmAwJncaquyEuLHrg.crl (hash: kEdmc4Fh4IaHYwesWXP79LhCZKVJZDZ21NJ6MSK+Oig=)
2: gg-emnwJIGdBmpEHYh5OFvjnfmc.roa (hash: f0YF0XqFky78qYjbpn5730w15nHy84AldxyEdZxgOEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:4a:6e:15:45:a2:41:0d:78:26:f5:f8:bc:e6:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Validity
Not Before: Aug 23 14:00:43 2025 GMT
Not After : Aug 24 14:00:43 2025 GMT
Subject: CN=ce3bee5f202cdc4ca881a0417d3e798149e1546e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bb:b0:1b:c6:13:08:e0:ea:fc:5e:7e:89:af:
20:14:61:cd:6e:3e:f2:4e:9e:25:aa:85:22:c6:02:
01:09:8c:aa:5b:49:f4:5a:bc:40:21:37:23:ba:e0:
2f:86:f7:47:61:27:74:16:99:bf:53:f9:f1:c0:2a:
47:4a:cd:9c:b6:bb:4b:85:9b:3e:d0:a4:aa:74:fb:
6d:cf:dd:38:d0:04:db:b7:c0:d5:e5:19:18:1c:c6:
5d:5e:5f:00:1c:87:3b:ad:f3:12:48:95:43:9f:11:
8e:16:a5:ee:fd:9e:f1:1a:02:0d:a4:23:6e:04:05:
f6:4e:63:30:a8:53:9b:93:78:35:36:46:e7:d4:50:
ba:b4:a2:c5:33:23:cf:dd:1d:73:10:6c:64:ac:13:
bf:ed:63:f9:a5:57:83:b3:3c:cc:57:2e:ac:c9:cc:
f0:00:38:71:e1:c2:0c:ab:39:44:8d:62:7d:fe:87:
f7:fe:e8:19:54:8a:3a:83:33:95:35:7b:55:ab:33:
7f:e6:be:6e:76:66:d7:4b:d0:8c:ab:a2:b3:5e:ba:
37:c0:4c:8e:50:21:11:71:82:35:75:4b:ed:7a:1b:
c9:4c:b3:86:1c:11:74:c4:a3:05:2e:06:e6:ce:36:
2c:5f:ac:87:32:e1:ef:df:f4:a0:6d:33:a8:c2:19:
56:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3B:EE:5F:20:2C:DC:4C:A8:81:A0:41:7D:3E:79:81:49:E1:54:6E
X509v3 Authority Key Identifier:
keyid:43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:3e:48:9a:05:3d:24:6c:71:7f:dd:a2:db:61:66:78:dc:2e:
92:60:cb:85:46:8a:82:6f:1a:21:b7:3e:5d:27:e8:5f:19:77:
06:15:85:fb:9e:d8:87:0e:c3:3f:f1:83:d3:b6:9a:6c:a0:14:
cc:7f:0f:7a:d1:e6:17:eb:9f:f7:56:e4:ae:67:b5:a5:39:b9:
41:49:db:e9:0b:14:d9:d1:59:78:a0:1b:cb:98:eb:5e:4d:4a:
d9:c6:76:07:9b:0c:bd:35:bd:11:f8:1b:79:ca:e6:48:de:be:
1b:7e:0d:bf:e3:5d:72:79:a1:41:98:73:7e:ce:34:e9:60:ae:
f6:40:cc:2c:30:dd:10:c2:91:a4:b3:e2:b1:b5:6e:22:35:32:
9d:14:d8:51:3a:39:a8:77:13:f4:37:d9:80:fa:9c:19:35:35:
d2:14:0f:cd:7f:70:10:85:26:f5:9f:83:ef:db:ba:5f:8d:a7:
e3:5f:2a:76:fa:64:75:a7:86:d5:e2:2c:d9:18:b8:bb:66:2a:
63:7e:ab:5c:16:f4:86:03:81:84:6b:7e:ca:f2:d5:5b:64:91:
9e:2d:d0:9e:24:1b:04:82:16:ff:63:71:1e:7d:f8:dc:c8:af:
8a:c2:23:95:b4:05:03:3c:60:cf:83:0a:cc:2a:8e:56:9d:b1:
8c:5b:e9:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:14:43 2025 by rpki-client