Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
File: 8KEScQQ06Frl_m-_Qedr3fk4GM8.mft (raw, json)
Hash identifier: hV3Rl1p2iWFcLFXrsaBs6AhBSsx6nF9cFbeI9+8/Noc=
Subject key identifier: 5E:DE:98:37:02:E3:FA:11:DB:39:7C:60:D7:85:58:88:75:52:D2:0D
Authority key identifier: F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
Certificate issuer: /CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Certificate serial: 019872CFF40A4E0F240D9D1B8C1B5981DB4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
Manifest number: 048F
Signing time: Mon 04 Aug 2025 02:01:27 +0000
Manifest this update: Mon 04 Aug 2025 02:01:27 +0000
Manifest next update: Tue 05 Aug 2025 02:01:27 +0000
Files and hashes: 1: 8KEScQQ06Frl_m-_Qedr3fk4GM8.crl (hash: fTxJPEaWskRjajwCoW6qV68a8hZkZ8FJnHyhdtBDCNw=)
2: QxzsJBZ0KnjdWggXNkiPE3mxTiE.roa (hash: wp71B9vMq7Np21xWaUokwt4Wn7Ga2Zz2FhWmCQz4Lj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:f4:0a:4e:0f:24:0d:9d:1b:8c:1b:59:81:db:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Validity
Not Before: Aug 4 02:01:27 2025 GMT
Not After : Aug 5 02:01:27 2025 GMT
Subject: CN=5ede983702e3fa11db397c60d78558887552d20d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4b:83:e6:c0:56:85:7a:bd:31:26:44:d1:27:
15:12:d1:63:40:40:67:0b:3b:7e:22:85:24:17:a8:
28:e1:c3:69:95:b2:03:cd:f5:d2:e7:14:7d:79:0f:
62:c2:02:57:90:dd:2a:36:17:55:73:d1:7e:23:b1:
34:51:fa:8c:d6:e1:2a:3d:bc:5e:06:a8:b3:09:1d:
8c:02:aa:0e:52:54:0b:91:92:68:27:4f:4d:b9:3f:
e8:f9:00:bb:0f:bd:2e:4d:00:84:05:b6:8b:97:2e:
06:97:cc:a7:dd:fa:ff:ff:76:a8:ae:61:93:f9:af:
7f:6c:12:41:95:03:49:45:4a:dd:15:2e:a0:d4:08:
f6:b8:4d:71:22:1b:d5:47:7e:e9:59:5b:69:08:7e:
11:81:69:0f:d8:29:23:4c:75:d1:85:28:71:88:23:
a6:bb:f9:e1:a7:80:69:4d:e0:2b:d7:d5:c4:9b:5f:
cc:11:79:e8:77:7b:fc:4d:b4:46:3b:fc:fa:ad:e2:
27:e4:4d:23:0c:7e:14:0d:ea:da:64:f3:2e:c7:03:
db:20:ee:8c:bd:6d:b1:b7:60:28:06:2f:ad:c3:42:
22:99:2a:41:84:ca:ce:15:6d:87:e3:54:36:81:9d:
9f:fa:c7:27:f6:aa:ed:37:4f:92:e8:b6:38:d4:6c:
60:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:DE:98:37:02:E3:FA:11:DB:39:7C:60:D7:85:58:88:75:52:D2:0D
X509v3 Authority Key Identifier:
keyid:F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:a5:5a:73:7f:13:6a:62:b6:db:0f:c9:59:38:e8:d7:57:16:
25:ae:90:e5:63:c4:50:6f:3b:f7:aa:3b:27:e6:08:6b:bd:da:
50:ad:b1:3d:d2:a2:bf:de:48:85:a5:0d:f7:fb:39:88:70:cc:
f1:45:1f:f4:ec:87:00:f8:8f:71:9a:46:a4:bc:ac:94:83:9b:
e3:a7:e2:e1:51:81:29:43:3b:5f:6f:a9:53:d2:2c:f8:07:b1:
d6:04:0b:2a:0c:57:86:ea:04:20:f8:16:91:d0:07:cd:10:6a:
46:54:d9:45:09:d2:d8:08:3e:cb:f0:5d:fd:92:17:c2:01:6f:
4d:b0:51:33:6f:2f:5e:f0:19:0d:f0:32:ee:04:46:46:7f:b6:
c3:a2:4a:11:b0:d8:92:13:38:eb:c6:08:e8:4d:75:92:e1:32:
18:33:1b:ef:f3:d5:ae:59:8c:ef:0a:fb:7a:a9:79:b1:5b:52:
7a:11:10:0d:9c:b1:11:90:fd:bd:b0:6c:d5:51:1e:4e:8b:34:
92:99:9e:70:d3:ae:33:12:59:ca:ef:7b:56:59:84:64:cd:22:
f1:31:6e:ee:d9:ef:c9:e8:29:7d:2d:f0:b8:a5:67:92:5b:1c:
47:2b:77:b7:46:b5:17:43:92:53:86:27:e8:26:bd:45:da:87:
a2:6a:b6:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:33 2025 by rpki-client