Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
File: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft (raw, json)
Hash identifier: ZKgBFGQ2K2XoI2ko20PeAr8ZYg0BJI+sTQZ0p7TYtUg=
Subject key identifier: 00:4C:5C:67:F8:FD:EA:54:48:42:DD:C9:2D:78:D1:A5:BF:02:FC:9E
Authority key identifier: 43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
Certificate issuer: /CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Certificate serial: 0198733D178F63FA5DE9158DEE1CCC7C2BEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
Manifest number: 1342
Signing time: Mon 04 Aug 2025 04:00:40 +0000
Manifest this update: Mon 04 Aug 2025 04:00:40 +0000
Manifest next update: Tue 05 Aug 2025 04:00:40 +0000
Files and hashes: 1: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl (hash: 2/8cma81q70fQQu7KYgrfnEY15AwO2VoSMWtUuXc3W8=)
2: rz-RdiM9IWT3IB5wGzMs1ZBSN0Y.roa (hash: o6qyEqxDzSGkgBN+te6/IqxauC6oKPYhjWorkJVF6Cw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:17:8f:63:fa:5d:e9:15:8d:ee:1c:cc:7c:2b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Validity
Not Before: Aug 4 04:00:40 2025 GMT
Not After : Aug 5 04:00:40 2025 GMT
Subject: CN=004c5c67f8fdea544842ddc92d78d1a5bf02fc9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c2:2e:14:fc:e4:a5:df:51:ef:fe:e9:2f:fb:
8f:15:1c:4d:98:5c:1e:2a:30:d8:50:d7:f1:12:45:
db:a3:12:44:5f:36:1c:34:fd:76:f0:43:21:fa:14:
21:17:17:ea:4e:f5:29:2a:e8:f8:0a:15:75:c3:bb:
f6:03:fd:54:12:a3:a8:fe:fb:db:e0:0d:ec:f4:c9:
96:d7:9a:0b:23:fa:da:a0:eb:d1:0a:08:99:d4:7c:
46:97:b9:20:54:51:69:9d:69:f7:5a:95:04:5f:ca:
6e:48:5c:df:41:7e:c7:a7:ce:f3:8c:fb:97:a7:3b:
5a:78:d0:bc:ed:d1:01:f9:bd:ec:33:c3:25:be:e9:
29:17:2d:c1:91:61:8e:36:1b:92:64:25:bd:31:af:
16:bc:e9:ed:0d:5e:8b:ab:6a:f6:0a:ac:7d:4b:8b:
94:59:82:03:ba:1d:b9:0c:7d:0f:5d:82:3d:cc:c6:
80:b5:2b:2d:ed:34:d7:8e:ef:37:2e:d0:58:f4:ee:
05:f8:d5:66:a2:1b:16:2b:ee:00:71:78:3f:61:09:
e3:b5:22:de:90:19:65:35:c5:87:46:ef:4b:0f:6c:
e4:a3:45:ea:2d:d3:88:b4:fa:a8:31:eb:66:fa:0f:
53:39:3c:81:e2:a0:bd:04:47:6e:ee:21:0f:5b:5f:
65:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4C:5C:67:F8:FD:EA:54:48:42:DD:C9:2D:78:D1:A5:BF:02:FC:9E
X509v3 Authority Key Identifier:
keyid:43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:d4:c0:b2:73:f3:ae:54:74:06:be:cb:72:1d:52:89:e8:45:
5f:65:81:59:bd:ea:47:44:5e:c6:f3:25:d6:53:54:c4:ba:19:
a1:f3:c4:14:af:79:45:fc:f2:c1:90:4a:d2:a1:76:e8:04:0e:
d5:97:8d:98:7e:9f:60:10:bb:35:51:a2:6e:58:57:f7:97:3a:
d5:2d:32:c2:13:01:d3:6f:dc:86:92:4d:01:5c:30:ad:39:3f:
9c:a3:9a:b0:71:4c:59:b6:83:60:b0:c4:df:34:fa:3e:6b:2a:
a3:39:51:cf:ec:44:49:01:35:1d:c4:3c:9e:75:3b:25:11:43:
bd:be:ba:de:60:2d:de:d3:1b:42:46:e8:71:7a:8f:a7:91:fb:
4b:ec:41:81:bc:d7:c7:86:56:6a:31:15:52:8d:d8:76:d4:a0:
63:e6:78:35:98:3f:fe:ba:c3:8d:a3:ac:cd:aa:41:7c:70:1b:
8c:4a:f7:35:30:00:1f:32:49:0f:a1:90:3f:05:df:bb:85:1d:
d7:0b:d6:07:63:6f:ca:dc:3e:88:f6:0f:10:57:6a:cc:de:fa:
de:87:a5:ab:00:7a:e8:20:ee:42:c2:95:5b:b3:36:f8:41:41:
8d:c4:5f:4f:f3:66:fd:e3:c5:8c:d3:77:2b:3b:94:31:2e:0f:
00:4a:07:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:21:19 2025 by rpki-client