Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
File: 1-qe1orkHCRPTSTKBX-tH42Mf318.mft (raw, json)
Hash identifier: WNZ47tF6WXMoEE6NwJZx6EdF4c8kWDGRyxB9WuFmSeQ=
Subject key identifier: 38:3A:BD:4A:4E:E4:A9:A4:7F:5C:04:50:CB:71:F8:41:4C:E7:9B:54
Authority key identifier: FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
Certificate issuer: /CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Certificate serial: 0198D4E0208B144D61D8E5D04ADB120AB6AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
Manifest number: 1424
Signing time: Sat 23 Aug 2025 03:01:54 +0000
Manifest this update: Sat 23 Aug 2025 03:01:54 +0000
Manifest next update: Sun 24 Aug 2025 03:01:54 +0000
Files and hashes: 1: 1-qe1orkHCRPTSTKBX-tH42Mf318.crl (hash: mphtbG7jnc4u0W2sXgLBQtJTfEWlnpy1Y23M/Rc64KQ=)
2: gHlRquCMx6iwfFhK1AbziJf-SOA.roa (hash: vGvXkm75uZ6w5eWBxSl4fiUVkztcBJ6xWRWL2h8kjfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:20:8b:14:4d:61:d8:e5:d0:4a:db:12:0a:b6:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Validity
Not Before: Aug 23 03:01:54 2025 GMT
Not After : Aug 24 03:01:54 2025 GMT
Subject: CN=383abd4a4ee4a9a47f5c0450cb71f8414ce79b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:17:38:b1:e1:70:00:0b:66:aa:47:ec:10:40:
bc:3c:28:92:1c:0d:9d:6b:29:fa:aa:af:f6:a3:37:
d7:a2:24:df:ea:3e:67:43:fb:f9:bb:34:f6:31:f1:
6c:34:85:7c:ba:19:8a:7f:74:57:4d:2c:ef:a8:99:
cf:c5:0a:23:fe:27:63:03:68:14:1b:37:8f:55:2b:
dc:67:9b:c1:f9:94:9f:d5:d3:58:94:0a:b9:0e:35:
6a:3e:5a:32:ad:fa:81:f4:c6:6b:c2:fc:69:6c:f5:
df:2f:87:e0:6c:ec:60:0a:15:0d:b2:97:cc:20:36:
ec:63:75:0b:79:5e:2a:c7:2d:78:44:48:7c:9d:ee:
01:68:db:59:6d:be:65:86:f4:84:24:4c:13:58:5a:
b8:ec:62:1b:b2:0a:af:53:b6:01:09:d9:e6:0a:77:
36:dd:a6:c8:f3:41:09:bc:33:9b:1e:dc:f4:d0:ab:
b2:75:1f:c6:7a:93:ff:23:d7:36:45:66:76:7a:ae:
18:73:a4:a7:df:58:c2:79:e6:e7:7c:4b:ff:0e:9b:
69:9d:ae:b4:27:4d:c7:46:4c:fe:de:81:16:fd:e5:
a1:41:5d:da:ef:ed:79:60:4a:39:95:d5:1e:85:06:
e9:45:0b:15:e2:c2:23:94:a8:29:3e:b3:91:52:b4:
6b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3A:BD:4A:4E:E4:A9:A4:7F:5C:04:50:CB:71:F8:41:4C:E7:9B:54
X509v3 Authority Key Identifier:
keyid:FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:bd:c1:a1:67:d0:f5:c5:58:e0:62:1a:c2:26:b6:07:15:1f:
f2:fe:76:1b:a7:ee:54:04:a8:73:2f:e4:93:a4:8f:a7:e3:5c:
77:07:f3:1b:d3:66:60:32:58:6e:03:00:4b:3a:8b:e3:ad:32:
f3:3f:86:4e:e0:2c:a4:ba:86:90:fe:26:1a:4c:9b:0e:4f:be:
ca:2d:a4:83:a9:f5:a7:08:67:e0:d9:74:50:c4:ab:f7:26:67:
5f:3e:f3:16:c4:ad:f5:4a:dd:39:70:78:31:96:ae:19:44:5a:
99:10:20:04:7f:ba:c7:06:c7:f4:f5:1b:66:3c:de:af:a7:e9:
ab:f5:2a:24:20:7f:ad:e8:35:94:c7:19:9c:a5:46:ae:cb:ab:
79:f5:3a:6a:6f:b0:8b:65:8f:e4:27:1e:03:9b:da:3b:00:5e:
3c:9f:b9:f6:79:f6:fc:be:be:01:b3:73:a1:60:70:73:17:bc:
a1:7d:97:7c:f0:37:99:d4:c5:f1:f3:e3:da:91:7e:c2:43:7a:
04:db:bd:b3:55:a5:42:a3:53:5e:8e:40:c0:9b:aa:cc:86:ee:
93:cf:4e:4c:30:ba:5d:dd:50:d9:b4:d3:10:fa:3a:55:2f:7f:
b1:eb:56:f5:e0:33:f5:16:f2:05:a1:1a:e0:0e:48:c9:8d:e0:
b6:4a:4b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:39:49 2025 by rpki-client