Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft
File: pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft (raw, json)
Hash identifier: o0IBhuQLUkNBWBOtcvvQvXCTk7HOhX11rPgMPxh2E+I=
Subject key identifier: E8:B6:FE:FE:BD:A6:9D:9E:CD:4D:0A:1E:C2:E3:D4:61:8D:48:9D:2A
Authority key identifier: A5:03:B1:DD:41:00:70:AD:62:E4:A2:FC:66:A1:3B:4E:B6:13:68:F4
Certificate issuer: /CN=a503b1dd410070ad62e4a2fc66a13b4eb61368f4
Certificate serial: 0199221E863452E3F914C8840C25240BDA44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft
Manifest number: 0B24
Signing time: Sun 07 Sep 2025 03:00:49 +0000
Manifest this update: Sun 07 Sep 2025 03:00:49 +0000
Manifest next update: Mon 08 Sep 2025 03:00:49 +0000
Files and hashes: 1: 6jOAX6ZKooyhgzG3-RXUavHtejc.roa (hash: zAiUnOceYAANogRzQmsXCXZI4dk5OulIUSwMR15rFvs=)
2: pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.crl (hash: KS0I/L7lQ9sxF9MEVLBatfi+zvQ63rwM7BzktTMhY/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:86:34:52:e3:f9:14:c8:84:0c:25:24:0b:da:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a503b1dd410070ad62e4a2fc66a13b4eb61368f4
Validity
Not Before: Sep 7 03:00:49 2025 GMT
Not After : Sep 8 03:00:49 2025 GMT
Subject: CN=e8b6fefebda69d9ecd4d0a1ec2e3d4618d489d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b8:e4:97:08:75:5c:93:4b:8a:f6:da:43:42:
19:44:63:f7:28:e8:3b:e2:05:e5:27:b0:40:14:c0:
c9:a6:e2:9e:77:d6:94:9b:9d:26:57:c4:38:f9:f7:
47:d9:a0:98:d7:a3:fe:be:41:ab:01:00:3f:ec:ca:
d9:ce:8f:b4:c1:6a:26:10:c5:f7:19:71:c2:c0:ed:
49:64:d0:9c:7f:ca:57:a6:57:29:fc:50:d4:63:a4:
8c:ac:9a:63:aa:f5:25:e6:2c:a2:58:f9:55:4f:c6:
88:aa:20:6f:99:9f:af:52:32:69:9d:bd:d1:59:52:
df:b2:b6:30:1c:25:9d:6d:e1:23:d3:61:bd:5c:b7:
f9:fe:e5:32:f1:54:28:41:d4:44:13:72:5f:d7:ae:
09:86:7c:4d:4a:7b:c3:a8:e8:49:72:d1:98:2b:24:
d0:6b:83:c6:ee:7e:e4:8a:53:7f:85:b2:0c:a9:ea:
85:4b:05:4d:84:da:de:f6:ef:15:39:ee:1e:73:15:
0b:10:f5:bc:4f:d8:6f:65:a1:0e:04:c0:6c:eb:26:
74:4c:7f:eb:e5:fc:92:fc:4c:98:dc:0d:ad:bf:eb:
bd:f1:ab:27:d2:95:88:c0:46:7c:4d:25:e4:f6:bd:
15:c2:63:f9:0b:d4:7e:a3:19:f3:f4:8f:a7:f7:47:
80:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B6:FE:FE:BD:A6:9D:9E:CD:4D:0A:1E:C2:E3:D4:61:8D:48:9D:2A
X509v3 Authority Key Identifier:
keyid:A5:03:B1:DD:41:00:70:AD:62:E4:A2:FC:66:A1:3B:4E:B6:13:68:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:7c:e6:aa:9f:4b:07:3e:76:f0:f3:0e:7c:8e:84:96:f9:5d:
00:84:4c:40:a7:ad:57:7b:c3:5f:e6:fc:22:df:46:23:53:4f:
84:bc:00:23:a7:6f:2f:e1:e1:21:3b:00:38:84:17:29:53:36:
de:09:6b:6a:d4:51:f5:ba:a2:b2:91:9c:39:a3:8d:66:db:c7:
e0:64:de:fc:fc:7d:82:20:b7:ca:24:2a:25:1e:b3:1e:91:0c:
fb:e5:d0:2e:b3:94:b4:1b:19:93:41:31:10:a2:05:df:c2:d2:
71:e0:4e:08:ea:b1:94:90:ab:e1:0e:f0:cb:ba:c3:8e:0f:65:
78:28:8e:d6:d8:87:73:44:e2:af:ea:79:2a:2f:50:31:36:cd:
22:16:a2:8c:05:5e:51:da:6d:41:43:1b:88:16:27:41:fa:78:
29:4b:e6:1d:2e:48:f7:b2:c7:92:4b:b9:d7:1d:0f:7d:07:0f:
28:6e:4d:15:9d:4d:45:a5:8c:cc:e8:a8:5a:54:9a:96:bb:42:
3c:e0:01:c5:11:eb:20:99:e2:45:4c:c2:59:bf:5b:8e:12:e9:
0e:94:f8:f6:bb:26:37:39:cc:a2:e5:4e:60:70:95:d0:29:92:
ba:1b:f0:92:fd:b2:79:ea:2a:e1:fd:19:c8:db:a2:56:7d:b0:
e8:52:86:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:29 2025 by rpki-client