Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
File: gQrwAiUQayCW6bIdmsLyBAaI3qI.mft (raw, json)
Hash identifier: DjOC8siayqHttPGKB3fcPcFQZld6SuI7dqRwQeyi8G0=
Subject key identifier: BC:01:20:DB:BA:41:EA:FD:CC:22:B2:12:8C:4D:68:AA:76:50:94:23
Authority key identifier: 81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2
Certificate issuer: /CN=810af00225106b2096e9b21d9ac2f2040688dea2
Certificate serial: 0198D5F1366DB1FBD63DC6017BF5B1FFA7F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
Manifest number: 0990
Signing time: Sat 23 Aug 2025 08:00:11 +0000
Manifest this update: Sat 23 Aug 2025 08:00:11 +0000
Manifest next update: Sun 24 Aug 2025 08:00:11 +0000
Files and hashes: 1: fvmPK9oBYawf3WrvWH2W-IrLack.roa (hash: jbyIzGoc+3nZMPPaYxP5PgX+7SvKTCObiN1ijSSrLNI=)
2: gQrwAiUQayCW6bIdmsLyBAaI3qI.crl (hash: sbSkIjafUj5k7bvycgLb83IrV4qkbfjqXPT0EW6ZJgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:36:6d:b1:fb:d6:3d:c6:01:7b:f5:b1:ff:a7:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=810af00225106b2096e9b21d9ac2f2040688dea2
Validity
Not Before: Aug 23 08:00:11 2025 GMT
Not After : Aug 24 08:00:11 2025 GMT
Subject: CN=bc0120dbba41eafdcc22b2128c4d68aa76509423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:84:1f:22:10:ab:f4:68:d8:ae:6a:56:5b:a9:
6b:51:09:fd:49:42:7f:9b:ce:4e:f8:87:cc:5c:4c:
52:5c:4e:21:76:28:9b:7b:9a:3a:8d:ad:18:41:a5:
2d:f5:ce:a3:16:35:37:76:9a:3f:69:b2:09:6c:5b:
13:fe:38:21:6a:bd:b7:94:d4:b5:b7:68:69:54:14:
d1:79:fb:f6:76:db:d7:23:a3:73:72:01:44:c0:2c:
d4:62:a3:3e:58:a5:f6:58:f2:76:56:01:8c:41:2e:
e9:a3:fa:bd:3a:5e:5e:2f:2d:c8:e1:19:d3:af:8a:
5c:7d:b3:fe:ed:ea:83:0c:a7:dd:96:c9:71:49:c6:
08:99:6f:8f:40:4d:28:72:16:7c:5d:d5:ee:14:54:
9a:5f:9f:3f:1d:c1:ad:32:f4:19:15:94:eb:3a:dc:
fb:95:d0:82:ea:0a:06:b0:a7:d0:aa:67:9e:73:a3:
4b:9d:f9:d7:d5:7a:5c:d8:94:5d:90:84:66:37:62:
3b:39:3a:c6:80:2f:fa:b8:a9:54:7d:3d:19:c7:6a:
6b:8a:b5:6c:e9:35:e2:75:2d:b4:72:35:b5:c8:98:
3b:52:27:ac:41:fc:db:03:aa:33:c7:5e:68:ee:9f:
85:d8:13:9c:10:06:43:9b:7d:86:36:25:4e:9a:10:
2c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:01:20:DB:BA:41:EA:FD:CC:22:B2:12:8C:4D:68:AA:76:50:94:23
X509v3 Authority Key Identifier:
keyid:81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:6f:f6:50:87:a7:78:2c:cb:92:68:2f:02:0d:2a:68:81:8c:
fd:59:e0:85:f2:17:83:23:f9:4b:99:dc:2e:01:5e:14:d6:52:
5b:48:d3:dc:6a:b8:5a:93:35:67:cf:28:6b:f1:00:d1:47:17:
3b:a7:18:aa:4d:99:13:a6:5f:cc:db:c6:56:7c:0c:6d:f1:a1:
d0:9d:a8:e8:e9:20:c5:58:a2:79:19:f9:77:95:58:4c:39:ee:
76:96:b4:61:4b:5b:f4:3a:41:9e:8e:66:a9:2f:a3:52:2e:b0:
72:60:3a:62:e7:54:0f:32:09:e9:d9:cd:93:4d:23:88:41:62:
17:eb:4a:c7:86:67:41:a7:e0:80:1f:cc:ee:7e:7e:b6:18:49:
db:16:5e:16:84:e9:18:6a:58:75:fd:2a:0e:a7:bd:6a:14:6a:
56:1c:31:66:33:88:bf:09:42:a2:8a:d8:59:fa:c0:00:ee:0e:
f5:3b:13:23:7a:70:ec:93:60:61:d6:dc:19:9d:dd:ad:7b:0b:
25:05:96:93:06:b8:34:27:31:a4:9b:7a:c6:4c:d4:ac:43:51:
17:fc:63:98:b9:dd:b9:06:26:f7:97:89:48:9d:75:43:e1:f5:
ec:08:62:8f:d2:c1:3e:1e:e1:13:6c:86:93:24:5a:74:86:73:
84:dd:59:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:07 2025 by rpki-client