Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
File: 0xQt8vZwlAzPWksnoNDJh-zIhlY.mft (raw, json)
Hash identifier: yjCV8I11Jd8d/9OFn4Zkxpvs5IRQrq9xavSG50PzYqk=
Subject key identifier: 8A:59:8A:87:82:B9:42:A8:9F:7F:B3:A8:38:F7:8E:82:A3:84:1D:02
Authority key identifier: D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56
Certificate issuer: /CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656
Certificate serial: 01987298F5E1CE30393B54406B85DFB330DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
Manifest number: 0327
Signing time: Mon 04 Aug 2025 01:01:23 +0000
Manifest this update: Mon 04 Aug 2025 01:01:23 +0000
Manifest next update: Tue 05 Aug 2025 01:01:23 +0000
Files and hashes: 1: 0xQt8vZwlAzPWksnoNDJh-zIhlY.crl (hash: F6gtxxySkMnZYJXctCr2xjHy+J+0fj/EnHXqSDP+QaE=)
2: DxWkaJkNeo1GnfX8PTB6m_7NDo8.roa (hash: 1C13Qsc+uAlJmXy/kak788lVFXMyWIaA+AZiv7RcjGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:f5:e1:ce:30:39:3b:54:40:6b:85:df:b3:30:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656
Validity
Not Before: Aug 4 01:01:23 2025 GMT
Not After : Aug 5 01:01:23 2025 GMT
Subject: CN=8a598a8782b942a89f7fb3a838f78e82a3841d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:37:fb:0f:d9:ca:40:c1:64:ec:75:a7:4e:d3:
eb:f2:82:18:58:3f:b6:e1:5e:c9:fd:e2:ea:d9:6d:
ef:e5:80:e9:70:36:4b:49:9f:21:86:02:14:4b:aa:
63:33:08:62:c2:c2:04:d6:af:60:e9:db:c8:33:a4:
9f:47:b2:e2:05:51:ad:a9:bf:5f:91:59:ce:cc:23:
15:8e:a6:c5:eb:48:3a:e1:d8:93:ba:75:d3:fc:67:
56:f2:3a:a8:26:59:cc:70:16:3f:53:5a:e1:f0:4d:
c5:af:2a:37:9e:96:95:40:a9:af:b4:4f:0b:85:fa:
63:77:ea:d7:ba:fd:49:e1:25:52:d2:b6:59:09:f7:
a8:49:a7:c7:95:6d:03:ac:ee:26:7e:58:c0:21:ec:
ac:9e:40:e1:a7:54:50:e4:4c:dd:f1:70:83:04:d9:
5c:62:39:35:3a:1b:d1:42:d8:95:06:8a:90:c4:45:
cd:0d:ec:77:f1:fb:7f:61:f2:10:15:b0:26:96:4b:
63:12:51:e9:9e:f5:75:f1:24:b9:5f:ab:c2:0d:23:
bc:bf:f3:e7:07:66:50:1d:6f:08:00:fd:af:8f:0f:
5c:74:ca:63:ab:fe:81:8d:3a:4e:a1:e6:b5:41:a1:
7e:0b:9d:c6:95:b4:3c:ac:f7:ec:c9:35:3d:d9:79:
09:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:59:8A:87:82:B9:42:A8:9F:7F:B3:A8:38:F7:8E:82:A3:84:1D:02
X509v3 Authority Key Identifier:
keyid:D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:2f:59:af:a5:16:d5:4d:08:d8:05:47:65:ed:4d:2d:62:13:
aa:ed:22:14:0d:31:08:d5:1f:d6:35:a6:7a:48:bb:97:b8:11:
52:2e:b5:e0:4e:2d:b3:95:10:63:63:c4:f9:4a:2a:7b:af:f3:
8b:b4:01:eb:66:bb:00:03:fc:81:f3:46:52:31:32:46:02:34:
97:04:69:48:a3:09:1e:e0:ff:e7:89:4b:cc:06:cb:2d:11:ab:
15:45:77:ba:19:39:7e:f6:84:bd:49:66:fa:85:f0:17:b1:7f:
2b:b5:b7:62:fd:c0:b6:b1:31:47:30:e4:82:3a:37:4e:01:3b:
35:44:5d:9a:23:56:38:92:be:ce:5a:7f:4c:a1:94:d8:85:b6:
13:9d:d1:07:b1:29:26:81:17:87:8f:46:df:43:8e:cc:1d:e7:
89:6c:77:cf:87:6f:1e:fc:fd:6b:56:0f:62:fd:77:49:7d:89:
a8:7f:ce:df:4f:1e:fb:77:8c:0d:16:7b:d7:1c:f9:52:9e:c4:
ec:2b:13:46:a9:58:79:6c:e1:e6:a2:31:80:61:4b:65:3f:9c:
e6:ba:1a:ae:9f:75:83:0f:1d:6d:76:0a:d8:fd:8e:85:23:52:
83:81:4d:7f:e7:fa:7b:ed:d1:88:21:24:97:d6:36:06:6c:5e:
99:49:0f:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:24:26 2025 by rpki-client