Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: abYomjfdMciAuLTwOM9MSh6kzlTSZXJ0quraTmKnYK8=
Subject key identifier: 33:14:53:BF:71:0F:4A:E9:EF:07:79:36:55:A4:DF:15:3B:52:EB:FE
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 019A7293EFDF912FF65569289E9FA611D7E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 10E7
Signing time: Tue 11 Nov 2025 11:01:29 +0000
Manifest this update: Tue 11 Nov 2025 11:01:29 +0000
Manifest next update: Wed 12 Nov 2025 11:01:29 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: 13M+1dzTFLenti/jGMQ55i6xLYJ/kjoxIs4JwTN+5NU=)
2: Ut4z4tImR83ncGrwpXNPaCBz4dc.roa (hash: x3Tb8uXmHgRhBdCjWUywrl5EoWV8hOlCverEGcV2UXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:ef:df:91:2f:f6:55:69:28:9e:9f:a6:11:d7:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Nov 11 11:01:29 2025 GMT
Not After : Nov 12 11:01:29 2025 GMT
Subject: CN=331453bf710f4ae9ef07793655a4df153b52ebfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7e:c3:35:1d:ea:46:cc:c1:39:ca:5f:62:cd:
e9:17:fb:ab:31:ba:29:29:a1:e7:2b:2c:3f:a9:8a:
db:70:e6:07:6c:58:a2:8b:d3:26:e1:17:b7:5f:8e:
3d:ad:db:61:65:98:35:55:81:39:bb:f0:b2:ec:9c:
fc:4a:a5:97:77:58:96:e3:e3:69:64:a3:b1:32:f7:
c2:ae:01:73:7d:58:60:4e:a0:d7:ce:72:3e:2b:65:
46:9c:40:4e:9f:94:a9:67:6c:a8:53:fd:bf:35:ab:
4b:a5:f6:48:64:08:a3:1d:72:7b:9f:6c:9b:ad:02:
a6:f4:b0:82:01:2f:9c:4c:eb:2d:a9:5f:28:73:30:
c9:cb:79:02:44:ef:69:56:11:5e:87:27:e3:ea:b5:
a4:47:39:08:b7:b1:7b:1d:e6:ee:82:6d:6b:26:72:
cd:1d:71:e8:02:a4:a2:2a:5a:6a:d2:50:d1:da:51:
e8:eb:fb:cd:08:1a:a7:5c:92:37:f4:8f:85:6e:f9:
d7:6e:33:05:fe:2a:2f:de:ff:30:73:dc:ff:0d:03:
51:ea:c5:8c:36:31:c4:8e:f3:de:88:3a:7b:0a:a8:
39:22:ed:7e:ad:85:39:7e:40:9c:42:7d:01:10:1d:
62:fb:e6:3c:75:66:4d:7f:3a:12:a8:7f:0e:e8:c7:
91:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:14:53:BF:71:0F:4A:E9:EF:07:79:36:55:A4:DF:15:3B:52:EB:FE
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:0b:aa:fb:9e:81:a4:92:4b:f2:a5:61:2c:0f:4f:81:9f:48:
33:5e:29:14:03:a1:7f:38:ed:d1:e9:b4:f7:86:48:a1:9a:3c:
88:82:7d:64:0a:a1:84:12:f1:90:a3:46:25:21:ca:cd:9a:3b:
fa:af:20:df:44:e9:04:6b:38:fe:e3:9c:8e:6b:04:a0:6b:d0:
3b:46:e4:44:0c:ef:c6:fa:79:a5:99:1f:22:55:93:4f:2f:be:
c5:16:ab:62:68:15:98:2f:a6:01:12:20:36:da:eb:eb:14:d9:
d4:59:c4:83:fb:96:b7:02:0b:28:2f:fe:e0:dd:a7:ee:5d:be:
6c:d4:59:93:74:17:c9:b5:5e:bb:9b:fd:f6:2c:39:83:d8:4d:
2d:da:29:d1:79:8d:26:57:9b:c8:3c:ef:a8:b6:12:0c:f0:16:
81:40:51:da:be:04:c8:5b:21:3b:1d:5f:ad:68:6b:01:06:97:
fa:88:17:1f:89:d1:4c:46:fa:1f:a1:a5:61:2f:fa:04:97:1b:
f0:41:c8:96:ff:b3:f6:6b:b2:42:4b:75:61:f7:a1:a8:95:87:
80:8c:4b:fc:f0:f4:56:5c:71:dc:cb:43:10:1d:76:7c:3c:8a:
dd:ed:d8:bc:e4:48:ae:c1:1e:f8:d4:2c:e1:2d:56:47:fc:f7:
95:60:c5:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:04:47 2025 by rpki-client