Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
File: 0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft (raw, json)
Hash identifier: jmxbuFR4CS+9ZlFOKx9oQu9SzbA3vuxv19FYxFlVvg4=
Subject key identifier: EC:61:CD:6C:3F:F0:CF:39:E8:68:A5:9E:22:51:ED:11:7D:9F:D0:EE
Authority key identifier: D1:0C:88:D8:2D:2F:AC:82:20:3D:42:A2:42:D6:EB:76:3D:13:BB:F8
Certificate issuer: /CN=d10c88d82d2fac82203d42a242d6eb763d13bbf8
Certificate serial: 0199176479670532839855F653FB2FA100D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
Manifest number: 166C
Signing time: Fri 05 Sep 2025 01:01:24 +0000
Manifest this update: Fri 05 Sep 2025 01:01:24 +0000
Manifest next update: Sat 06 Sep 2025 01:01:24 +0000
Files and hashes: 1: 0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl (hash: sE5CFfqZ0sf5yJ4MJLN9UM5P/BuqUMgOi9GF4aCKb6I=)
2: OCcJDhB4OQ1X-MIeEHbwYqPSbys.roa (hash: bYb4Alf329H7/hgxf3+yXtwxwALKiQ1xJi7nvHZupTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:64:79:67:05:32:83:98:55:f6:53:fb:2f:a1:00:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10c88d82d2fac82203d42a242d6eb763d13bbf8
Validity
Not Before: Sep 5 01:01:24 2025 GMT
Not After : Sep 6 01:01:24 2025 GMT
Subject: CN=ec61cd6c3ff0cf39e868a59e2251ed117d9fd0ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8d:23:1d:41:1b:97:ee:8a:63:98:40:d3:17:
36:ca:ba:b6:f4:79:51:53:3b:f5:c0:20:2e:e9:2a:
b0:a9:e2:32:af:b2:01:39:fa:91:68:2d:50:3a:1c:
2a:84:0c:53:74:0b:a6:8d:ff:b4:83:97:19:52:2c:
d5:c3:4c:12:9a:c1:56:da:54:63:4a:08:21:aa:c6:
d2:8b:e4:7d:b3:42:08:3d:31:71:de:df:96:d0:98:
ac:7d:a6:4f:54:7c:90:ec:9c:5a:bd:54:e0:17:cb:
09:56:cb:43:1c:9e:5c:7a:b0:72:b4:fb:b7:f3:5c:
c8:67:58:5c:ce:f3:b4:5a:51:b9:a1:3a:ac:aa:7c:
3a:c4:54:97:15:a9:4d:e4:f8:78:ab:66:70:a8:41:
22:59:f5:24:e8:f0:4b:04:64:df:7b:20:49:3c:0e:
fd:9a:cb:eb:f4:14:29:d3:44:ee:cf:e9:85:2b:c8:
3f:e1:67:ea:e8:3f:d3:a9:47:95:9b:e7:99:58:cd:
2e:2d:c3:5e:ec:72:82:07:0d:06:bb:d6:1f:fe:fb:
4f:2c:04:e5:4c:c6:5e:9f:3a:10:54:81:07:ab:6a:
d1:4a:d0:61:2b:94:87:c4:bb:66:bc:f4:19:27:46:
13:91:de:68:4b:12:a4:ef:0f:53:1f:b2:a6:ba:91:
78:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:61:CD:6C:3F:F0:CF:39:E8:68:A5:9E:22:51:ED:11:7D:9F:D0:EE
X509v3 Authority Key Identifier:
keyid:D1:0C:88:D8:2D:2F:AC:82:20:3D:42:A2:42:D6:EB:76:3D:13:BB:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:31:e7:42:39:87:e6:43:0e:c9:80:61:67:d2:45:ce:37:da:
a4:0c:d4:54:10:6b:8c:d0:c6:62:3e:02:08:be:db:36:d5:0d:
1b:d8:00:73:57:5a:8b:a1:4a:d7:9d:f1:63:d2:46:fc:45:bb:
c6:df:ec:55:2e:4e:5b:e2:fd:f3:40:ce:08:aa:95:0f:61:e9:
6b:c5:b8:1e:70:66:01:92:75:c4:b3:35:f1:92:6f:38:cb:a9:
9d:c4:8b:3a:ce:b9:30:d5:a4:07:03:71:6a:f3:b1:91:1a:38:
81:e0:a1:e7:03:6e:ea:e7:6a:de:dd:fb:45:4a:e5:5b:98:59:
04:03:78:b5:c0:c7:77:c7:9c:10:8c:76:00:6f:53:3f:51:bd:
20:4d:67:a4:54:dd:68:b9:22:e9:55:a1:55:17:a0:d8:66:84:
f4:c0:59:28:9d:12:3a:cb:47:04:8c:b9:c8:3d:db:6e:15:fa:
99:a9:7f:07:c5:0f:8d:01:d0:b1:88:d8:99:94:2a:c6:c6:7c:
fb:d1:8b:96:32:90:f9:d2:94:9d:3b:04:bd:d2:53:f3:df:45:
19:fa:37:99:b4:18:61:99:3e:7a:5a:14:1d:93:56:1f:d5:7d:
cb:07:cf:1b:74:1b:65:9e:15:1b:42:14:3a:3b:a7:2e:36:88:
c3:23:2a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:06:10 2025 by rpki-client