Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft (raw, json)
Hash identifier: nh2O2z9sih4O7c95QAP7QS6+ajboPGRULMZPHv6VeTk=
Subject key identifier: 2C:02:DD:0E:F5:26:58:DA:FF:FE:46:D1:73:A6:03:17:70:87:E9:9F
Authority key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
Certificate issuer: /CN=4501e85c0025c4ae29528058e232d737c2f495ce
Certificate serial: 019922C362B440CFE551B6229F4E8681D237
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
Manifest number: 02D3
Signing time: Sun 07 Sep 2025 06:00:54 +0000
Manifest this update: Sun 07 Sep 2025 06:00:54 +0000
Manifest next update: Mon 08 Sep 2025 06:00:54 +0000
Files and hashes: 1: RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl (hash: DBcw72Ib/FgqS+ZHc3uKqPv0KYFeDaV4IA4pzqlmh3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:62:b4:40:cf:e5:51:b6:22:9f:4e:86:81:d2:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4501e85c0025c4ae29528058e232d737c2f495ce
Validity
Not Before: Sep 7 06:00:54 2025 GMT
Not After : Sep 8 06:00:54 2025 GMT
Subject: CN=2c02dd0ef52658dafffe46d173a603177087e99f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:20:fa:3a:be:19:9e:96:b0:49:51:85:e4:a7:
65:1a:04:5c:29:e0:e7:69:d3:2a:7b:e2:b0:d2:74:
45:5d:97:69:b9:ef:8e:d3:c8:82:9d:31:62:50:74:
7b:b0:1c:1a:5a:6d:38:83:0e:0a:4d:67:db:7d:57:
f8:fa:96:75:65:16:d4:82:75:54:30:be:8f:d3:70:
af:3b:86:c2:1b:2d:13:9b:a4:7a:34:4e:4f:2b:de:
36:26:f2:93:0e:13:ee:e6:24:be:ed:37:5b:7f:ee:
99:e9:16:f1:ad:3b:06:3b:3c:bf:f7:69:b5:ec:b3:
5b:af:19:f2:12:a8:49:00:3f:3c:fc:48:ea:e1:e9:
2c:e5:ef:5e:cb:db:7e:1c:19:1d:c0:79:b8:54:df:
98:3e:41:10:f9:18:5c:c5:1b:40:66:10:7a:be:eb:
4e:9b:24:bc:76:9d:9c:24:e1:3f:e0:f5:45:fe:2c:
9e:e1:00:b3:61:f8:d0:f3:93:db:47:53:e1:60:26:
a7:ca:9e:c1:2d:c2:68:1f:a3:1c:07:6a:89:68:ed:
c2:4c:70:73:fd:a2:d8:e2:73:2d:52:4f:a4:5e:d8:
58:4a:92:14:02:ff:39:d4:6f:40:bc:e2:2e:4b:65:
69:1e:f9:be:06:74:29:6b:6c:70:9f:31:8f:b3:ec:
a8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:02:DD:0E:F5:26:58:DA:FF:FE:46:D1:73:A6:03:17:70:87:E9:9F
X509v3 Authority Key Identifier:
keyid:45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:b0:52:b8:ef:6f:4e:20:67:0e:a1:a7:3b:d0:0a:25:f4:5c:
3a:5d:62:cd:8a:f6:a3:02:41:d7:08:b8:cf:88:af:14:82:14:
1d:2a:06:0b:44:fd:b1:8d:1a:7f:f5:8c:87:bf:ea:f0:48:50:
b2:63:64:76:f3:e3:af:d1:10:6d:14:f8:4b:1c:ae:c3:90:fd:
d2:af:e7:fc:00:40:0f:da:55:4b:cc:c1:18:4b:a0:06:d0:26:
35:c1:4f:1b:e5:06:07:d7:b4:62:80:b3:d1:33:75:d9:ab:7b:
23:ef:f7:6c:aa:b4:72:fa:19:2c:7a:21:e3:9c:99:fd:d2:ca:
93:b2:b5:14:62:55:e6:2e:c8:32:9d:2d:e1:79:50:79:7f:6d:
c4:da:5c:de:c2:cf:54:51:ec:d9:bb:65:1b:e0:64:4b:e9:48:
0b:c9:0c:c7:84:99:ef:96:65:96:bf:99:75:2c:33:6d:5f:0a:
ed:57:fb:bb:8f:ca:04:27:2d:da:26:68:d4:66:63:79:26:a4:
4e:51:92:32:5c:b5:ab:bf:8c:4b:80:d2:7d:5b:83:40:94:66:
96:42:74:b6:12:30:5a:7d:bf:e7:73:18:04:71:f8:fe:9e:6e:
81:fe:c2:2c:db:e0:b4:57:c4:ae:b5:f2:54:e6:b9:c2:ea:72:
b5:d5:bf:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:40 2025 by rpki-client