Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: 9sIYPRwXi/qQsjyRI/+4WNgwNkn0DWbAomTzDRE9r2g=
Subject key identifier: 65:89:23:E6:DA:96:DA:92:B1:DD:95:EB:8F:E2:90:42:24:7F:40:97
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 01984A09C9485EF52327B3F5D86A02576FDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 0DF5
Signing time: Sun 27 Jul 2025 04:00:12 +0000
Manifest this update: Sun 27 Jul 2025 04:00:12 +0000
Manifest next update: Mon 28 Jul 2025 04:00:12 +0000
Files and hashes: 1: FBn1v2zB1JVjcRcZbhGPjhIQq-4.roa (hash: mVYwRlVF+pwgFuj92Y5wG2kGfxiuhyd+s7VwHmVtegc=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: bDGxBiWUq4T3vNCqijluxPLNixaXuYDfEcX8fTHHFCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:09:c9:48:5e:f5:23:27:b3:f5:d8:6a:02:57:6f:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Jul 27 04:00:12 2025 GMT
Not After : Jul 28 04:00:12 2025 GMT
Subject: CN=658923e6da96da92b1dd95eb8fe29042247f4097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cb:53:68:d8:85:ac:3b:b9:36:76:c8:dd:dc:
67:94:0c:cf:7b:bf:fd:99:4d:96:37:a8:b5:e9:0e:
21:2e:36:31:15:97:4d:de:5d:86:1a:14:5b:7f:0e:
52:67:1d:49:39:96:66:ff:60:2b:2f:3e:11:08:45:
e2:2e:da:4b:80:4a:25:f3:51:fc:47:be:98:22:15:
c8:56:54:dc:a0:99:ff:8c:11:3d:e8:9d:36:d5:7e:
79:71:5b:a6:b6:a0:2d:4f:75:1c:43:74:c8:66:64:
95:f3:52:cb:c5:d2:73:00:af:8b:d2:f4:b9:8e:a4:
df:81:39:92:37:a6:30:3c:d6:d4:f1:bc:fa:20:72:
5c:47:fa:e5:3d:4f:d2:1b:17:14:ed:e0:06:7d:b9:
d7:88:c2:d6:1b:0d:0c:01:a1:36:bb:03:df:c6:45:
2a:46:b7:40:55:ac:d3:f8:3b:bd:d1:d5:65:d4:db:
ae:98:6b:af:02:75:5c:ec:80:cd:97:cc:a3:28:b1:
0b:3d:10:e3:12:52:8b:76:b9:2e:33:67:07:9c:42:
09:5a:04:f5:ce:38:90:9a:46:83:5c:77:b8:f2:4d:
31:e7:95:d5:f2:b8:77:2a:f5:1d:b5:9a:8c:b7:e9:
fc:4f:1c:7f:f1:05:2d:c5:6c:46:db:83:0d:3a:73:
9b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:89:23:E6:DA:96:DA:92:B1:DD:95:EB:8F:E2:90:42:24:7F:40:97
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ca:68:b1:70:05:43:4e:8d:18:ce:0e:9d:f2:7e:a7:87:bc:
73:0d:fc:ee:01:67:19:22:54:5d:fb:5c:aa:69:fb:4e:6a:33:
1b:f4:55:18:30:1e:e2:ad:f3:97:d9:2d:0f:5f:55:e6:b8:f0:
1f:af:03:62:04:88:95:62:c1:a9:8c:dd:9f:2a:c7:46:48:8c:
98:fa:c7:18:c7:7c:3f:b2:bc:ab:97:42:68:f7:5d:b4:50:a2:
51:d1:10:a9:cd:62:2a:44:2d:07:78:11:0d:cd:f9:56:48:ff:
50:29:cf:ec:19:c7:cd:9b:0a:05:80:18:e4:3e:f5:89:7d:57:
65:67:80:e6:78:9c:6f:19:fd:35:6c:2a:6a:dc:56:57:38:f8:
9e:88:56:68:e7:5f:01:ac:f8:fe:d1:a6:a0:8a:43:84:e0:61:
bf:14:1e:0c:8d:51:14:8c:a2:bb:33:7d:38:93:82:a8:72:6f:
cf:19:dc:88:ec:c4:05:eb:1d:8e:93:ef:fd:35:de:5a:dd:fe:
67:b7:2a:4e:43:ae:dc:c3:33:9c:eb:51:1d:c9:3c:e8:5c:7f:
a5:86:88:0a:ef:db:21:b9:e3:dc:3b:f9:dd:a1:f0:71:be:39:
38:4e:1d:c3:9b:41:2f:2c:49:b6:72:d3:79:80:27:4b:8d:4f:
9e:67:bc:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 06:17:13 2025 by rpki-client