Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
File: 0RIqXLBkP3NsfseWGAmiWThmjw4.mft (raw, json)
Hash identifier: Am6+vw5NGMK9r6DNuV/eQjWi1+bNAnOqjCG7JjK0fx4=
Subject key identifier: 03:57:47:08:44:1B:A2:B4:9C:A7:6F:85:A7:DB:54:7C:3F:94:0B:00
Authority key identifier: D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
Certificate issuer: /CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Certificate serial: 0198CACA33A134C5C0E646B19F1AE933075F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
Manifest number: 1644
Signing time: Thu 21 Aug 2025 04:01:45 +0000
Manifest this update: Thu 21 Aug 2025 04:01:45 +0000
Manifest next update: Fri 22 Aug 2025 04:01:45 +0000
Files and hashes: 1: 0RIqXLBkP3NsfseWGAmiWThmjw4.crl (hash: M9I3BP1U1q22Xt5xOo/tiriKVR6SN1oNx9BROrE/EBs=)
2: zKQIfOeURvANDMREU7yI_nE_KFw.roa (hash: rsODojes6psnJwHqpB6iZWFEwYShL6Rps2nkmwoPbsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 23:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:ca:ca:33:a1:34:c5:c0:e6:46:b1:9f:1a:e9:33:07:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Validity
Not Before: Aug 21 04:01:45 2025 GMT
Not After : Aug 22 04:01:45 2025 GMT
Subject: CN=03574708441ba2b49ca76f85a7db547c3f940b00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:75:6f:59:0e:b2:8f:f1:d9:e9:9b:c4:a8:ea:
6e:a3:30:d5:41:af:fa:52:81:cf:7a:87:e7:a1:84:
09:b8:f1:f4:9f:de:04:8c:83:73:ba:57:8b:c8:ef:
57:bb:94:e3:d1:a8:bb:fb:b8:9e:d8:b4:a6:fe:98:
af:31:cb:68:b6:94:fe:d3:f6:d5:d2:e2:70:6f:80:
b1:17:87:f2:95:7c:86:8f:ed:4a:16:7d:51:29:f2:
32:9f:45:1f:f4:9d:6c:11:21:45:65:8c:08:db:64:
59:a9:6f:04:a1:d1:bc:22:57:b4:72:36:3a:53:cc:
25:aa:6b:5a:fc:89:5e:51:a3:24:46:86:0d:40:54:
86:0f:a7:34:9d:8c:a6:f2:e0:82:64:b5:73:15:07:
b3:5e:c6:f2:a5:12:32:37:28:c5:91:d3:01:4d:82:
18:1c:d5:2e:79:c5:b9:7a:3b:8a:7b:88:41:e3:6b:
84:01:94:cd:75:d6:85:b8:43:16:f3:f1:45:18:7a:
eb:1b:18:b3:ef:c5:1a:25:28:f2:dc:d6:04:06:bb:
67:ee:bd:f2:15:6b:c6:4d:ec:4e:34:d8:ef:25:5e:
65:66:68:ac:c3:ff:ba:82:a9:2f:cc:6e:47:7f:42:
60:3d:cb:62:b8:d7:03:64:67:a5:eb:ab:45:82:74:
fb:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:57:47:08:44:1B:A2:B4:9C:A7:6F:85:A7:DB:54:7C:3F:94:0B:00
X509v3 Authority Key Identifier:
keyid:D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:e5:9f:c6:69:80:80:03:5c:af:62:f6:cd:16:e3:f1:ad:06:
9d:00:a2:ae:44:c7:5f:ae:9c:83:b3:f9:b2:54:6d:62:27:3a:
e7:3d:ff:eb:64:81:cb:e4:7d:a8:20:78:bf:79:9f:21:19:da:
e5:ac:6b:e5:0f:91:e4:6a:b9:c9:fd:7e:15:36:0e:5a:31:be:
2b:5f:98:38:80:3b:36:06:c6:fa:f1:b4:6b:5e:2a:93:46:13:
4e:d1:a7:12:77:cb:98:bb:9a:b8:59:af:24:59:48:9f:7d:35:
a4:ff:ec:24:06:42:54:46:2b:8b:34:b5:d5:0d:47:cd:a8:bf:
7b:c8:0d:e8:e1:41:80:62:6b:9e:71:f2:0d:12:06:fa:a9:af:
11:a2:5d:2e:ec:4f:ba:ee:2d:5b:b0:be:dd:fc:0b:2b:7e:5c:
68:1b:5d:8f:06:61:87:20:0c:a9:91:4e:32:d6:5e:d3:4b:84:
f0:32:52:e0:f3:35:6e:36:5d:d4:b7:40:a4:d1:01:23:cd:ce:
6e:f4:17:2e:13:fb:55:84:73:6a:9f:9d:a0:a0:98:40:b3:14:
fe:84:44:70:e4:e1:c2:f8:d7:0e:8d:30:95:3c:d5:36:55:1b:
e0:2e:4e:0f:a0:7e:0d:8a:f2:33:a2:93:3e:8d:76:a3:a5:b0:
9e:49:af:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 09:14:51 2025 by rpki-client