
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
File: qoXGfyIwng2EwwtUJSlyUyhgUVE.mft (raw, json)
Hash identifier: 4DnD9s4lBYjXRw5U5Q1Jgm9hP6eqlRPYG5ON8hpcxuk=
Subject key identifier: F8:A5:28:30:36:22:34:34:91:C6:0E:EB:82:1A:89:83:38:F6:5C:F0
Authority key identifier: AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
Certificate issuer: /CN=aa85c67f22309e0d84c30b542529725328605151
Certificate serial: 019873E23DC34599E5DB3F5DA08777B94CE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
Manifest number: 0C98
Signing time: Mon 04 Aug 2025 07:01:03 +0000
Manifest this update: Mon 04 Aug 2025 07:01:03 +0000
Manifest next update: Tue 05 Aug 2025 07:01:03 +0000
Files and hashes: 1: U6h0E3CpWcLE4IcpdPD5N0_flWE.roa (hash: /MeOIU5IzJfeECJ9wAs+zMCbOflzuiKPgRuM31+tyrU=)
2: qoXGfyIwng2EwwtUJSlyUyhgUVE.crl (hash: GVi/fWOFCvY7ewe9qkFiwDo8rqVIaLORrTUuqz3/PYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:3d:c3:45:99:e5:db:3f:5d:a0:87:77:b9:4c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa85c67f22309e0d84c30b542529725328605151
Validity
Not Before: Aug 4 07:01:03 2025 GMT
Not After : Aug 5 07:01:03 2025 GMT
Subject: CN=f8a528303622343491c60eeb821a898338f65cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:2b:63:af:c3:6c:bf:81:ed:07:3e:0b:1d:a8:
7b:c8:9e:1d:ef:10:d3:e9:04:e8:99:25:ab:79:55:
49:ab:a6:b8:74:23:e1:f8:84:0c:0f:bd:5a:ff:7e:
a6:d4:69:31:8b:be:2a:ed:01:d2:0d:11:2e:69:b5:
d2:8a:46:b1:40:00:78:b3:19:ad:53:fb:0d:f2:cc:
cd:f3:85:72:7b:21:88:23:30:20:08:2a:ff:3a:5d:
03:7e:63:df:f7:81:de:1e:b2:d9:bf:b2:d6:28:f9:
fd:ac:24:58:a9:67:df:cb:46:c6:d4:5b:fd:bc:8b:
ef:a1:49:28:df:3e:57:9b:17:5a:04:a0:da:01:87:
3f:45:00:2a:56:3c:6a:59:7a:dc:d4:95:f4:d0:d9:
18:3a:f5:54:27:09:bb:96:89:22:d9:63:1f:0c:18:
be:0d:41:8e:d6:6b:4c:2c:16:95:5e:5d:94:bf:71:
20:19:20:a7:00:ca:fc:ec:21:04:40:77:92:a8:5b:
5e:ab:01:e8:fb:13:4b:da:1f:ed:f0:88:a4:4d:88:
b0:85:c6:e5:96:3f:95:13:1e:a7:25:05:01:4f:9a:
8c:4d:30:7a:aa:fb:60:82:b3:a7:ba:de:88:e3:47:
55:42:a8:2c:b4:c4:5c:c6:fe:13:05:c4:17:f9:70:
9f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A5:28:30:36:22:34:34:91:C6:0E:EB:82:1A:89:83:38:F6:5C:F0
X509v3 Authority Key Identifier:
keyid:AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:46:36:98:8b:93:ab:cb:90:1b:16:25:5b:74:42:94:30:d1:
f5:64:91:19:23:10:f8:63:31:29:f5:bb:35:68:cb:80:2f:42:
1d:2a:dd:f0:64:22:23:cb:6c:eb:7c:7f:7c:0c:43:a9:9b:61:
e9:ff:d0:50:a8:e1:6f:ae:25:5b:c9:b2:05:9f:67:84:bc:7d:
39:db:02:4a:4a:51:ff:a0:a0:c1:04:5d:7c:64:e2:45:b9:84:
85:b5:be:e3:61:f7:84:80:e3:07:15:5f:44:fe:ee:b5:43:ba:
f0:7f:0a:c5:fd:1c:57:4d:ba:33:bd:57:b4:a5:0f:d1:1d:d6:
e9:9e:79:18:0a:91:ff:a3:72:eb:ef:6d:8a:87:a6:58:e5:de:
c8:8c:6e:22:0f:62:a4:a0:88:7f:96:94:59:ee:6c:8a:5d:0e:
33:be:6a:3e:27:c8:18:98:d6:82:5d:ea:d9:f8:80:ce:6a:32:
66:a7:69:93:cd:51:be:d5:e6:e9:27:ab:1f:02:e6:2d:5b:9a:
e2:7e:b6:dc:72:ea:32:5c:5f:3a:bc:7f:64:02:08:9a:51:dc:
bd:64:ec:98:21:c9:a2:cc:4d:6a:49:e8:05:6f:c8:d9:fd:23:
77:e0:0f:74:40:66:76:8c:50:ab:29:b9:08:93:7c:e8:11:d9:
d6:60:d5:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:06:20 2025 by rpki-client