Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
File: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft (raw, json)
Hash identifier: rItXT86pf0+T0x/xwDl8wtHMKbayb9J+S4355cBFIdQ=
Subject key identifier: 71:6A:35:CA:27:68:A5:68:06:0B:F5:E1:5F:86:5D:1A:1E:4C:62:E7
Authority key identifier: B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
Certificate issuer: /CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Certificate serial: 019921E75D09FA31F18D44053C485868BF92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
Manifest number: 0441
Signing time: Sun 07 Sep 2025 02:00:34 +0000
Manifest this update: Sun 07 Sep 2025 02:00:34 +0000
Manifest next update: Mon 08 Sep 2025 02:00:34 +0000
Files and hashes: 1: Ol4H0Ofe0seTJhjp23zwbv14mcA.roa (hash: h0M7hTbR8JXwLU22tU4Fw/p8crplmJ6JisUg1rjxv0k=)
2: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl (hash: L/dKOU1zOJkwvDc4UzKs2JeS28sJr0tXbSJDoiK+7cU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:5d:09:fa:31:f1:8d:44:05:3c:48:58:68:bf:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Validity
Not Before: Sep 7 02:00:34 2025 GMT
Not After : Sep 8 02:00:34 2025 GMT
Subject: CN=716a35ca2768a568060bf5e15f865d1a1e4c62e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:df:94:4e:0f:61:f8:99:1c:c5:1e:0d:6a:cd:
79:0c:ff:85:ff:7c:fa:b4:d6:80:11:8e:37:5a:3e:
fc:45:ab:a7:dc:b4:ee:8b:14:b6:b3:97:f5:c8:f5:
63:52:d7:3f:87:55:ab:e2:44:be:04:63:c8:02:b9:
6c:2b:d5:28:00:35:c3:ca:c3:c7:35:3d:24:71:f3:
f6:52:0b:52:be:69:2f:23:50:23:62:14:a9:24:c2:
a0:9c:09:be:45:e9:21:5b:7e:ef:e7:b0:4b:a3:c6:
f7:d7:46:72:9c:18:d8:6b:f6:ea:ec:f6:23:ab:9f:
d5:30:33:0e:74:f2:82:61:6b:ae:d4:82:0d:6d:96:
5e:86:3b:f3:de:77:e5:cb:f7:80:69:60:82:3d:f1:
ab:20:a8:2a:3c:2e:65:2f:06:42:d7:33:92:5f:92:
0d:bd:59:d7:53:25:06:40:a7:24:be:f0:37:5b:6c:
5d:f5:75:83:50:29:fe:63:ff:3a:92:79:2a:e7:df:
b1:10:a5:8b:10:84:20:6e:cf:39:75:60:3b:9b:02:
18:ac:82:28:07:d1:95:84:af:75:cb:50:58:3e:f5:
15:66:2c:e1:8e:7f:d5:cd:75:86:a7:6f:e4:09:0b:
61:1c:62:e2:ff:c2:b3:de:2f:3d:5f:fb:27:b6:0a:
ec:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:6A:35:CA:27:68:A5:68:06:0B:F5:E1:5F:86:5D:1A:1E:4C:62:E7
X509v3 Authority Key Identifier:
keyid:B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:08:2e:16:31:c0:22:f6:35:e3:19:89:05:c6:9c:e7:95:ba:
27:fe:c9:0c:80:3b:76:41:08:7d:89:e4:b0:ed:10:d5:d8:94:
9e:17:55:42:07:2b:20:eb:b6:c0:aa:dd:90:01:f0:d0:24:48:
f1:20:75:ea:92:d3:ce:17:8f:e9:a7:02:af:dd:da:d5:27:2e:
68:ac:46:9d:ff:ac:09:7e:74:88:6a:a3:29:d5:d3:86:16:c1:
d6:b2:a7:4c:78:a7:60:e9:7b:a5:31:92:09:51:2b:99:cc:f1:
7b:72:2d:d0:1f:51:46:3c:fb:a4:2d:12:47:9c:0b:3e:a2:3a:
d9:2d:64:af:01:26:e4:b8:ad:35:e1:b6:a1:af:4c:5f:88:98:
ec:8a:94:0b:5a:44:63:a0:00:24:10:94:a6:6c:7d:d6:bf:65:
74:78:ad:a1:b3:44:01:a9:75:ad:5f:4a:4b:da:e8:ec:8c:47:
b0:26:58:91:8d:fb:4c:99:16:af:cc:b1:2c:90:6e:7e:39:ba:
87:89:a8:c5:c4:10:73:bc:d6:2e:ab:e1:2e:5a:2f:36:32:f6:
80:c1:c0:d5:c6:08:c4:e8:d8:e7:b7:ae:95:5c:d1:b0:c0:ef:
dd:f7:28:89:b8:6e:12:9d:26:6e:3f:de:82:5d:fc:4c:7e:2c:
5b:97:f4:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:57:05 2025 by rpki-client