Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
File: SujQiQnRha9B0KDDvl6ijDUvAiY.mft (raw, json)
Hash identifier: kFjIwSSY9F34khf58/hS0+pYHU95OTEfNRCALOpxrXQ=
Subject key identifier: 09:D1:BF:BA:E5:55:B3:D1:6A:F8:86:C9:41:86:D9:63:3C:FB:D9:D4
Authority key identifier: 4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
Certificate issuer: /CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Certificate serial: 01989592157730647D6399E1859E45EDD2E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
Manifest number: 14A7
Signing time: Sun 10 Aug 2025 20:00:35 +0000
Manifest this update: Sun 10 Aug 2025 20:00:35 +0000
Manifest next update: Mon 11 Aug 2025 20:00:35 +0000
Files and hashes: 1: SujQiQnRha9B0KDDvl6ijDUvAiY.crl (hash: ZQ+PsnDNA8DG/rhTg3xcHRiX5xquMd3e0yU8Eh6HDJc=)
2: nP21AC5prEFloL4b-rvpds4zVIk.roa (hash: uwmza4+iHSYo9L5fLNkaMpr9S0IJA2DNF48xVtFHmFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 20:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:92:15:77:30:64:7d:63:99:e1:85:9e:45:ed:d2:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Validity
Not Before: Aug 10 20:00:35 2025 GMT
Not After : Aug 11 20:00:35 2025 GMT
Subject: CN=09d1bfbae555b3d16af886c94186d9633cfbd9d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:48:ac:cf:1d:8d:f3:a0:3b:66:3e:02:de:5e:
d0:cf:32:84:8a:19:57:a7:bf:6f:59:38:ab:96:87:
04:83:d2:24:8c:6c:a1:4f:aa:98:99:4e:59:b5:9c:
73:ab:77:8f:28:d8:f8:26:14:16:9c:77:a7:22:8a:
01:3f:99:e0:4f:aa:fd:d5:ab:a7:77:89:0c:ac:99:
a5:17:7f:00:01:96:c4:a6:e8:97:83:e6:66:e0:ad:
9a:ec:05:32:7a:be:5a:e9:d3:8f:aa:88:04:d6:c7:
0e:9c:7a:50:bb:00:57:a7:83:24:82:88:c8:5f:38:
78:4e:5e:c9:ce:57:67:a7:59:b1:09:f7:48:eb:93:
0f:f5:b0:fc:e6:1e:ec:ef:a8:fc:4d:cc:67:42:42:
f7:65:4b:18:60:42:c8:ff:e9:e5:2e:67:d1:6f:ff:
fd:93:6c:85:b1:83:81:80:49:4b:76:57:b4:43:fa:
56:55:cd:a4:37:be:6e:ba:5a:05:2e:cd:a5:6a:22:
24:55:ed:ea:98:ab:cd:f7:4f:91:d8:ab:72:36:84:
60:a0:83:93:5e:7f:21:30:a4:49:63:bf:10:39:71:
51:31:b5:5b:b0:0f:61:1a:92:d6:c3:d6:6a:74:ea:
f8:39:bf:38:dd:eb:fe:77:bf:c4:31:26:3e:6e:cb:
96:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:D1:BF:BA:E5:55:B3:D1:6A:F8:86:C9:41:86:D9:63:3C:FB:D9:D4
X509v3 Authority Key Identifier:
keyid:4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:6a:1a:21:ea:5d:28:b5:d7:ee:a6:f8:ef:5e:40:7a:77:d1:
8c:78:cc:91:dc:b9:0e:ff:2d:e3:47:04:c8:0e:fc:a9:26:aa:
9d:e4:80:5c:8a:21:dd:a3:f1:7a:39:c9:26:a9:23:81:91:a4:
5b:cd:ab:70:71:37:ab:e8:9d:cb:f0:29:25:2e:8e:49:d6:b8:
d2:7d:ed:98:ad:f1:c4:ba:4a:8f:51:15:38:eb:f7:75:87:ea:
d4:fd:56:0e:b3:e6:61:92:1a:7d:08:52:38:05:9c:51:3d:8c:
f6:1e:fd:fd:c1:90:78:e0:99:29:23:2c:25:af:63:c8:28:6c:
5c:e6:ce:99:76:ae:20:ef:3f:2d:1c:d7:99:cb:64:97:c5:7a:
f3:c7:0b:07:3f:69:bb:f2:1e:94:21:23:6e:55:65:73:e2:2d:
8e:0b:d0:76:4f:ed:36:6e:c0:6e:85:07:b7:be:65:05:7d:16:
ab:e0:8f:88:af:64:43:9d:95:a6:ed:eb:a5:3f:05:01:5e:92:
f7:7f:de:cb:b2:eb:82:f1:53:cc:2d:49:93:ce:85:30:b7:78:
02:61:46:2a:57:86:b9:91:4c:81:97:f1:b1:62:a6:8a:c5:af:
7a:97:00:76:e1:7c:ed:be:d4:2a:3c:8c:51:ec:1e:67:b6:f1:
2b:b2:42:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:54:30 2025 by rpki-client