Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
File: mq5G4hNZMNomjAZNzlrbtjoM7DY.mft (raw, json)
Hash identifier: 1usC41T0wRkSDlOJvZ9FiOLx89w95aN+Wcc9fq+sABE=
Subject key identifier: EE:3D:9E:EF:F1:4F:E5:16:59:A3:FE:AD:89:B9:75:9E:84:91:96:3F
Authority key identifier: 9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
Certificate issuer: /CN=9aae46e2135930da268c064dce5adbb63a0cec36
Certificate serial: 019921B0A25B871AE65C12E2F4429F819FEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
Manifest number: 103C
Signing time: Sun 07 Sep 2025 01:00:47 +0000
Manifest this update: Sun 07 Sep 2025 01:00:47 +0000
Manifest next update: Mon 08 Sep 2025 01:00:47 +0000
Files and hashes: 1: STbkSsaZ4h0iV7Ywpice3xeLm7Q.roa (hash: OYYfvGM7goZ9gxelNf2ly9w5B8haX1abcCwOvQfYiPk=)
2: mq5G4hNZMNomjAZNzlrbtjoM7DY.crl (hash: udYmiDx/DAbuUPUF0BkG5iCqpmnPel4s0vZBP/5brLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:a2:5b:87:1a:e6:5c:12:e2:f4:42:9f:81:9f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aae46e2135930da268c064dce5adbb63a0cec36
Validity
Not Before: Sep 7 01:00:47 2025 GMT
Not After : Sep 8 01:00:47 2025 GMT
Subject: CN=ee3d9eeff14fe51659a3fead89b9759e8491963f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1c:a9:87:55:d2:60:09:50:5e:bf:63:62:de:
c8:cb:c2:33:02:e9:45:98:f8:84:38:da:22:7b:45:
bd:df:53:ad:3c:c3:80:31:f0:99:32:01:34:66:1b:
7e:dd:13:59:83:03:6f:ad:83:55:c0:56:4c:c7:2d:
ca:9c:4c:14:27:fc:22:50:d2:0c:e2:50:a2:b2:86:
53:86:b6:01:6e:cd:c6:89:b5:c8:2f:02:f2:9f:8c:
bd:86:86:b9:a7:ad:78:37:dd:c8:c7:5c:50:10:62:
cc:1b:fb:90:86:15:cb:7e:e9:3b:73:f8:1a:9f:a3:
07:44:d5:04:18:3f:21:ee:70:d0:a6:2f:c3:52:27:
62:60:02:a4:2e:93:8f:be:7e:e0:6c:7c:a0:a7:f9:
53:7a:48:72:c7:53:3a:9a:38:ad:d1:5d:c5:9b:1a:
3a:fa:46:46:db:97:d7:01:11:4f:b0:31:cf:5f:83:
42:2d:d4:e1:12:24:c7:f7:d9:bb:6c:87:58:bf:27:
ff:25:12:61:6d:58:b0:46:c4:4b:d0:9b:b6:19:62:
31:14:60:79:46:ea:31:37:7c:05:30:8f:e1:07:60:
d6:e2:a3:b3:33:90:6a:e4:5f:af:e3:10:c3:57:76:
9e:fd:e5:a7:9c:88:0e:ba:97:93:56:cb:9e:82:d7:
25:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:3D:9E:EF:F1:4F:E5:16:59:A3:FE:AD:89:B9:75:9E:84:91:96:3F
X509v3 Authority Key Identifier:
keyid:9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:0d:bc:99:97:96:c5:19:76:3d:19:1d:d0:9c:62:58:9d:17:
a0:40:07:c4:6d:7a:f6:8a:e2:f4:87:ba:49:80:0f:1b:a4:8c:
6d:93:80:d4:f5:ce:1c:9e:f5:8f:96:eb:ba:8e:ea:60:5f:92:
f6:51:e9:89:aa:fa:6a:85:a4:db:7d:60:5a:4d:cb:b5:5e:18:
c9:15:02:b3:18:d8:fd:58:b1:6f:54:ce:f6:c1:fa:9b:21:50:
04:7f:4c:00:11:c1:7f:7c:07:f6:ca:10:30:92:86:06:da:3c:
67:e6:3c:7a:20:f6:c1:43:06:8e:c5:9c:9f:37:6b:dd:ad:4e:
4c:89:e8:ce:f9:0e:7a:23:c5:dc:52:d6:f5:f5:3e:b0:e9:1c:
cc:23:79:f7:c2:30:21:47:43:11:0e:7b:08:f3:10:21:ff:90:
77:1a:8e:c8:a7:9d:0c:5c:46:c6:b6:2e:b8:33:16:20:c5:8f:
53:d7:0f:b1:53:a4:df:21:31:2b:97:a0:dc:f4:cc:5b:db:e5:
4b:ed:a2:a3:c6:cf:73:42:4b:82:bb:99:d3:26:71:88:ae:69:
0a:97:1a:fe:aa:94:37:ba:7a:77:a6:5c:a0:61:87:48:55:1a:
dd:2c:5a:1e:67:a8:c9:48:10:b8:e5:af:d4:d3:af:45:d4:72:
6f:2f:cd:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:37 2025 by rpki-client