Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
File: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft (raw, json)
Hash identifier: VVqpcSsChaD3J1gJZ4Sh3hPsNY77gLOKkSJcrmCsLUA=
Subject key identifier: 80:6D:E4:87:3C:86:9F:CC:9E:A1:1C:4C:A8:07:BF:BF:C2:9D:84:22
Authority key identifier: 43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
Certificate issuer: /CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Certificate serial: 019A522C38B931B190DF2E1B95E4B72E1B41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
Manifest number: 143A
Signing time: Wed 05 Nov 2025 04:00:21 +0000
Manifest this update: Wed 05 Nov 2025 04:00:21 +0000
Manifest next update: Thu 06 Nov 2025 04:00:21 +0000
Files and hashes: 1: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl (hash: vLVXfY8Hjlqzu2zs2YciUYkALVelOGF4r+ZzcKcZmsM=)
2: rz-RdiM9IWT3IB5wGzMs1ZBSN0Y.roa (hash: o6qyEqxDzSGkgBN+te6/IqxauC6oKPYhjWorkJVF6Cw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:38:b9:31:b1:90:df:2e:1b:95:e4:b7:2e:1b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Validity
Not Before: Nov 5 04:00:21 2025 GMT
Not After : Nov 6 04:00:21 2025 GMT
Subject: CN=806de4873c869fcc9ea11c4ca807bfbfc29d8422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5e:d8:d6:f0:39:05:14:09:ff:8c:fa:db:7b:
6e:8d:6b:4c:df:09:f5:8c:cf:59:3c:b5:e4:aa:c3:
c7:ca:4c:28:97:a1:01:80:3b:75:73:06:cf:8e:ce:
29:c6:6a:76:ab:62:97:46:53:3b:4e:c7:c0:e5:0d:
2d:8b:8c:6f:e7:77:2b:5c:34:1c:db:94:a5:19:d7:
24:5f:98:48:2c:d9:0d:47:45:e8:06:8e:c6:b5:de:
e8:bd:08:12:17:e3:45:a0:4d:a0:de:ed:29:12:9d:
20:26:81:5e:d9:cc:b6:67:21:1d:2c:6f:03:db:fe:
a2:94:a3:e9:af:d7:81:41:40:78:14:70:4c:19:c9:
ce:d1:ad:32:da:92:f6:17:ee:33:f6:74:0a:6c:3f:
ae:8e:86:4d:d6:a0:e2:47:40:68:41:f0:b2:df:ea:
08:25:b8:9d:69:ea:1b:82:39:2b:b1:d3:66:81:da:
e2:81:ff:dd:c0:a5:19:67:99:f4:ff:a2:5d:c2:3a:
2a:1b:66:01:9a:24:34:b9:53:3c:6a:a7:b6:b1:6e:
3b:40:0a:49:71:c6:d4:1a:c9:40:e7:52:84:0c:12:
3c:8f:84:2e:10:61:4e:94:96:f8:7c:d6:2b:56:03:
95:34:a1:ee:98:2b:a5:ba:b5:93:b0:fa:d3:c2:c5:
a2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:6D:E4:87:3C:86:9F:CC:9E:A1:1C:4C:A8:07:BF:BF:C2:9D:84:22
X509v3 Authority Key Identifier:
keyid:43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:0d:c9:3c:0d:43:04:db:c4:5f:b9:a3:eb:39:d4:13:e2:a0:
e9:02:61:c6:23:17:e1:a4:c4:87:41:4a:62:92:1b:40:54:16:
5e:69:48:bf:3d:30:b6:e7:5d:08:ac:e7:3d:50:c0:93:4e:e9:
a6:7b:0e:93:c4:9e:21:13:98:88:cb:fc:71:fe:82:c9:64:3f:
4e:e4:e9:b4:82:6d:ec:27:4d:7e:44:2b:9d:b5:0c:df:f0:67:
94:a5:41:80:07:76:64:6d:e7:a7:5c:bf:b0:97:6d:60:b7:e9:
dc:28:2f:75:90:67:99:4c:14:4f:9a:de:39:21:83:49:bd:6f:
36:4b:6e:46:b9:0f:3a:05:25:bf:06:a6:29:15:a2:68:ac:0b:
b0:89:71:dc:59:4d:5e:a0:34:92:e1:db:63:f4:ad:d8:b8:3c:
12:68:65:23:aa:43:7e:d9:15:0f:ff:74:af:cb:55:a2:f9:a2:
94:e9:36:f6:ce:dd:81:12:9f:52:a8:55:27:bd:d4:1c:14:e6:
84:2b:9a:b7:43:f0:7a:11:38:a9:ca:c5:7a:ed:d5:3c:64:26:
19:45:b9:2f:16:93:f3:f2:ca:36:f9:cd:03:02:25:db:31:1b:
41:fb:f8:ee:a1:d3:e1:c7:a8:35:64:9d:09:6a:5f:09:18:54:
47:1a:4e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:45:18 2025 by rpki-client