Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
File: Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft (raw, json)
Hash identifier: I57AyGdki8a1IWQTZT8XCABemSAXVjMnfqP+AWdPzf4=
Subject key identifier: 4B:CE:08:19:16:EC:02:E2:EB:95:FD:CF:87:FF:A0:CA:FE:93:DF:E4
Authority key identifier: 43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB
Certificate issuer: /CN=4367547d851e3cd776cd33290b2454acc0e851bb
Certificate serial: 01988168D09328A1436E6CA5D06C14D9FAD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
Manifest number: 02A5
Signing time: Wed 06 Aug 2025 22:03:06 +0000
Manifest this update: Wed 06 Aug 2025 22:03:06 +0000
Manifest next update: Thu 07 Aug 2025 22:03:06 +0000
Files and hashes: 1: FQG0ejLSzUt4iA-ikpx0cAR2OKU.roa (hash: kXmpv8tYACCxfjQibnimCHCR1m+/Ufm2bbWZrvhXv8Y=)
2: Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl (hash: Om12AFNxinmXmqG54LwhwuUlvBn7PmPy3SWxyIFbtQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:68:d0:93:28:a1:43:6e:6c:a5:d0:6c:14:d9:fa:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4367547d851e3cd776cd33290b2454acc0e851bb
Validity
Not Before: Aug 6 22:03:06 2025 GMT
Not After : Aug 7 22:03:06 2025 GMT
Subject: CN=4bce081916ec02e2eb95fdcf87ffa0cafe93dfe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ba:2c:49:d0:e9:55:fd:d6:18:79:d5:69:c9:
12:1d:78:21:8e:6e:aa:33:43:c0:be:81:88:af:75:
51:39:ce:85:c8:a7:cb:99:57:7b:37:97:3e:e4:72:
5d:0e:31:ad:fe:57:cd:f9:f7:cc:d4:10:ba:7e:40:
19:0e:39:12:b4:0c:c5:b5:c0:f2:dd:ae:7a:ec:58:
ae:ec:58:0a:22:ee:ce:ac:0d:63:59:ab:88:f4:30:
c4:a6:fc:85:5e:f5:2c:00:1d:29:d9:f3:34:43:14:
59:1a:17:c0:51:21:c6:a3:ab:8b:f9:cb:eb:74:f7:
11:91:cd:86:81:35:b6:e6:92:af:2b:f8:90:8a:8a:
1a:a4:8b:d2:5a:c4:1d:f9:22:ab:32:07:88:90:e0:
9b:c0:33:aa:f7:41:5f:3f:a6:eb:53:b7:cf:e1:e1:
4a:80:b4:d0:ae:61:46:ac:62:2c:50:e6:1c:6a:05:
0b:53:2c:8d:f6:fb:e3:69:26:75:23:d5:a8:97:66:
dd:7e:d3:5b:05:20:40:d7:6b:3d:f1:ed:8d:fa:aa:
22:af:af:ef:36:96:80:52:44:9b:fd:9f:33:a6:bb:
19:4c:f8:d6:67:34:69:ce:70:f1:e5:21:7e:8b:33:
aa:81:bf:d6:2e:b6:12:fd:f9:5a:8f:7a:f1:42:40:
6e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CE:08:19:16:EC:02:E2:EB:95:FD:CF:87:FF:A0:CA:FE:93:DF:E4
X509v3 Authority Key Identifier:
keyid:43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:0d:b1:56:93:ff:30:33:3b:c4:53:dc:cf:71:25:06:ec:4e:
42:76:39:3b:1d:69:81:d0:14:fa:2a:4b:ec:f6:a2:45:7b:35:
44:39:c7:99:75:4d:3b:04:4e:04:8c:39:15:d8:05:e8:6e:a5:
bc:e5:e9:50:a9:59:91:a4:97:e4:25:75:16:e8:01:c6:98:fa:
6d:d2:41:1b:ea:2f:f4:9d:d3:d5:bb:56:bf:0d:78:ed:29:68:
b3:0e:82:94:e0:58:e2:0d:d6:63:f6:19:87:59:b9:94:6a:24:
2e:d4:1b:ab:5a:5e:96:e2:f2:ac:14:d6:1e:0d:c6:9b:f0:2b:
d4:03:64:58:79:ca:59:7f:28:a4:0e:cb:6f:fb:58:45:36:60:
0b:c7:1c:be:bd:00:fb:27:e6:94:5a:c3:3c:96:6f:de:5b:c8:
73:ab:46:59:96:69:a0:8b:a5:d6:f8:cc:b5:0d:0a:4e:e5:c6:
24:bb:18:f9:c7:14:64:75:f4:a7:d1:97:6e:55:f2:f7:20:c1:
99:d2:02:bf:09:37:e8:23:50:0a:7c:af:f3:85:3f:9d:07:5b:
0a:50:82:0d:02:75:61:96:d3:54:57:44:32:c4:75:65:63:9b:
5f:88:82:b9:cc:4e:93:33:8f:c0:3d:2e:ea:02:df:f9:ea:c0:
eb:d3:d2:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:03:22 2025 by rpki-client