Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: DTLAfVKxdsOIiG+SASTqCipcVi1j4BZTlje5o0hOkkQ=
Subject key identifier: B8:AC:21:BF:9A:36:B6:4B:23:91:8C:FE:B4:E8:0C:4B:21:94:E4:55
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 01991808AF246ADF93D79940ED47477E4310
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 07CF
Signing time: Fri 05 Sep 2025 04:00:46 +0000
Manifest this update: Fri 05 Sep 2025 04:00:46 +0000
Manifest next update: Sat 06 Sep 2025 04:00:46 +0000
Files and hashes: 1: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: w3W2fpHuusGCya5ztdZYoSBy36dNEtSRoGC8uWVdfQk=)
2: wcWtJWZdHtQ3MB-JGGb4XgtvRZY.roa (hash: uBYBylJRjDgsdsAh3Gf2WJ38oblmNaRqlj9rvalMb+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:08:af:24:6a:df:93:d7:99:40:ed:47:47:7e:43:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: Sep 5 04:00:46 2025 GMT
Not After : Sep 6 04:00:46 2025 GMT
Subject: CN=b8ac21bf9a36b64b23918cfeb4e80c4b2194e455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c8:6f:be:b2:da:1a:70:91:6d:c7:e7:49:63:
e1:a1:be:f6:aa:bc:f9:24:56:a6:9f:b0:5b:37:56:
af:ea:ef:a8:5a:b6:ca:01:19:4b:46:b9:9b:05:bd:
92:86:fb:9b:f7:fe:13:09:31:92:98:b1:eb:1f:e4:
f8:73:c5:42:5c:3f:1c:42:df:76:54:1a:25:2d:67:
e0:5e:dd:47:a7:b6:a2:c7:8e:78:c7:74:20:62:18:
0c:e6:a7:14:41:18:84:9c:06:69:8e:f9:02:2f:0b:
84:96:de:86:b2:2b:54:d4:52:63:90:a6:38:39:38:
2c:a2:0d:cb:52:11:5c:0c:7b:39:04:3b:e5:7e:ba:
d6:28:8e:04:b5:83:aa:c9:26:8f:0a:9a:61:a1:03:
25:d2:07:1a:fe:c4:48:b1:8c:9a:89:59:bb:14:11:
a6:63:cd:05:7a:ab:91:47:d0:63:ab:f8:b0:b6:bf:
7c:54:30:9c:8a:81:fd:3b:ff:ab:8e:7b:1f:a5:d0:
d7:d0:f7:98:01:9d:0f:45:4c:c4:a6:ce:80:c7:8b:
57:c6:e0:8c:d3:f9:6b:fc:bb:30:a4:2d:4a:93:f7:
82:9b:25:09:2d:27:56:9e:5b:5c:b1:05:f7:08:2b:
3a:09:99:24:61:91:a2:6a:03:53:6b:ac:d3:91:c0:
2d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AC:21:BF:9A:36:B6:4B:23:91:8C:FE:B4:E8:0C:4B:21:94:E4:55
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:5b:9b:06:b0:bf:c7:61:72:d6:63:59:68:28:1c:56:cd:86:
d8:70:21:c9:cc:ac:14:64:e0:97:e5:4c:c0:10:60:8e:41:7a:
b2:07:9d:8b:ba:87:ac:3d:67:a6:bb:d8:0d:bc:24:34:02:37:
06:4d:36:5a:a9:25:e8:13:70:7b:26:6a:e5:eb:4c:b6:23:b8:
54:01:b3:97:67:77:52:63:72:52:95:31:22:bd:6e:f6:41:9f:
1a:c0:07:6c:ae:47:ae:50:f9:10:bb:0c:ef:69:12:ec:5d:03:
33:55:2e:47:be:33:0e:be:23:e2:10:56:08:21:d4:1c:97:f5:
22:f0:66:27:bc:90:3a:64:0e:b9:01:15:2d:4c:d7:f0:ce:ca:
5a:41:e1:dc:e5:cd:17:8e:46:ad:27:11:f4:b9:ae:cd:2c:a8:
de:ce:5a:4a:1f:bd:de:7a:58:ba:eb:c6:88:ed:dd:5b:ad:35:
ee:44:27:7d:db:cc:0f:ca:40:94:f3:f4:96:81:76:c1:6e:4f:
1e:10:f8:94:09:43:3c:a9:ca:02:8f:53:60:55:a0:22:08:c4:
b5:08:87:d3:a1:8c:94:db:92:4d:bc:95:e9:91:80:92:41:c1:
d0:4e:a7:5c:24:77:30:ba:8a:c9:57:e9:f1:4a:da:2d:a8:d3:
f7:02:45:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:36:23 2025 by rpki-client