Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
File: Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft (raw, json)
Hash identifier: shcajSJKFDR5eAtnRocOOvZcwLI/i00X9Jyeglp9osA=
Subject key identifier: 2A:0E:B1:14:DD:D0:8C:77:52:8C:72:6B:E5:C4:64:B3:9E:EC:B9:44
Authority key identifier: 43:8F:8E:D1:21:BA:30:81:CF:B2:15:FA:AB:50:AE:14:5B:59:0D:D2
Certificate issuer: /CN=438f8ed121ba3081cfb215faab50ae145b590dd2
Certificate serial: 019A4EF4BA335E7545B1E142805BFA380452
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
Manifest number: 0FF4
Signing time: Tue 04 Nov 2025 13:00:52 +0000
Manifest this update: Tue 04 Nov 2025 13:00:52 +0000
Manifest next update: Wed 05 Nov 2025 13:00:52 +0000
Files and hashes: 1: Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl (hash: 1+jOxVI1bv1jaV9dPHKer36GB/t++64+c7Qnq97Y9Eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:ba:33:5e:75:45:b1:e1:42:80:5b:fa:38:04:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=438f8ed121ba3081cfb215faab50ae145b590dd2
Validity
Not Before: Nov 4 13:00:52 2025 GMT
Not After : Nov 5 13:00:52 2025 GMT
Subject: CN=2a0eb114ddd08c77528c726be5c464b39eecb944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ec:00:20:1b:ab:12:cf:c7:28:9f:10:ff:8f:
ac:34:4e:76:ee:34:62:7f:7a:64:04:34:9a:a6:e3:
6d:45:11:ff:45:8c:17:31:97:7e:88:8a:4c:66:0f:
51:c0:12:31:f5:7a:3a:80:eb:c0:ca:86:f0:33:10:
dd:72:4b:67:de:ad:a2:b2:1b:bc:c0:f1:6e:35:2f:
0e:97:3a:24:8f:b9:10:4c:90:4d:08:c0:a8:69:3f:
30:41:ae:ea:39:17:a7:89:00:60:d2:ee:66:2e:5b:
7f:81:0f:b3:53:27:38:57:13:74:39:f0:3e:96:4a:
30:d9:65:34:3d:58:0e:97:be:6f:8b:f4:5a:a3:e6:
e3:f1:b5:f4:be:b2:a0:18:0f:20:4d:52:91:10:e2:
63:9e:bc:0e:d3:f1:61:54:2d:1b:76:bb:74:48:49:
dd:00:57:09:ff:50:ac:37:ef:de:02:73:cf:9d:ae:
b0:d6:6c:d7:56:1e:93:3a:5b:14:a8:c2:e4:03:63:
25:42:8e:d1:3f:89:20:49:49:e9:27:e9:cc:5a:75:
27:53:95:e5:b5:0b:26:a9:4b:fc:c7:2b:3f:17:76:
29:81:f0:36:0b:3a:c7:03:b1:c6:47:8a:01:9b:21:
36:b7:fe:1f:b7:ba:09:1c:ea:82:9a:81:d1:4a:11:
40:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0E:B1:14:DD:D0:8C:77:52:8C:72:6B:E5:C4:64:B3:9E:EC:B9:44
X509v3 Authority Key Identifier:
keyid:43:8F:8E:D1:21:BA:30:81:CF:B2:15:FA:AB:50:AE:14:5B:59:0D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:b9:a8:dc:c0:a9:0f:79:17:2c:02:d1:99:f4:7f:96:d0:36:
5d:6b:b2:df:bf:27:12:32:d3:62:2c:36:d9:a8:4e:44:d5:d0:
2e:e9:6c:58:f3:aa:77:f0:87:8c:ee:2e:15:75:0c:dd:46:db:
d2:68:5c:6f:55:40:9e:1f:c0:92:86:a6:e3:9e:1d:5a:99:91:
6b:65:17:3c:91:f0:7c:62:37:51:1e:dc:53:20:23:5a:2c:ee:
3e:ff:44:d7:17:5e:c4:93:a7:49:68:a2:ce:5c:56:c6:07:57:
7e:6f:c8:0d:df:71:22:b7:9e:4c:ec:d3:ee:18:b6:64:54:f2:
50:02:3a:62:6e:c2:53:b9:14:d4:c8:cd:06:ba:ee:7c:5f:53:
43:02:d2:2c:28:f3:1f:72:af:df:ed:1c:37:48:4a:cf:3e:2c:
fa:30:c6:73:2d:7c:21:0b:bf:6d:ea:da:09:0e:a3:01:34:cb:
a8:7f:c5:b6:ab:6e:da:bc:71:f0:c3:05:2a:7f:68:77:0a:53:
bb:e1:89:ba:c6:55:a4:8b:73:cb:ab:6f:b3:42:ca:e4:b3:b1:
e6:a2:c2:5e:24:ed:0e:21:08:9b:30:1b:10:b4:97:97:dd:83:
76:c3:7c:b6:42:84:37:15:50:0a:10:af:56:23:b4:35:3d:97:
f4:c8:e6:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:09:59 2025 by rpki-client