Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
File: Ac8qcbLHv1QcbMBBUc0CB402mSY.mft (raw, json)
Hash identifier: 3NTOJGmNwNKbWbVeHlQnjSPMCTNwWAU+ZODvwUA5Qs0=
Subject key identifier: 44:7B:4D:CB:CD:8E:0E:48:B2:6A:9E:ED:4E:CB:76:81:FE:16:85:EF
Authority key identifier: 01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26
Certificate issuer: /CN=01cf2a71b2c7bf541c6cc04151cd02078d369926
Certificate serial: 01993424EB40049B78EA255DF31F09E8EF68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
Manifest number: 0381
Signing time: Wed 10 Sep 2025 15:00:58 +0000
Manifest this update: Wed 10 Sep 2025 15:00:58 +0000
Manifest next update: Thu 11 Sep 2025 15:00:58 +0000
Files and hashes: 1: Ac8qcbLHv1QcbMBBUc0CB402mSY.crl (hash: yPze8QkPydNZQCAePnLReEoZfdfHBYejU1/9RvTJVTI=)
2: rygZTFCBNWEkh81f14PWqNNI1kI.roa (hash: Nw/ZIl2uHVeZMov8V5+Nv9xGTV5/WVlGxw5x2u+Et/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:24:eb:40:04:9b:78:ea:25:5d:f3:1f:09:e8:ef:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01cf2a71b2c7bf541c6cc04151cd02078d369926
Validity
Not Before: Sep 10 15:00:58 2025 GMT
Not After : Sep 11 15:00:58 2025 GMT
Subject: CN=447b4dcbcd8e0e48b26a9eed4ecb7681fe1685ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8e:db:9a:56:42:e7:98:8e:32:d9:e5:d6:d6:
fb:b0:58:81:fb:a6:22:2b:92:9d:d1:0e:fe:1f:74:
10:67:a5:7f:3a:a0:e2:f8:e4:76:86:ef:f1:0d:56:
f9:b1:f9:39:24:a9:58:c8:7c:de:d1:b7:3f:68:b9:
84:82:af:76:c1:a3:be:a7:c3:a5:48:d2:28:e7:b2:
a4:73:43:a4:bd:fd:f1:08:bd:fb:02:50:d5:c2:3f:
fa:6c:33:0c:77:71:d2:fb:9c:a6:09:72:cf:14:af:
6f:91:5a:59:1e:67:43:9b:7f:41:bb:d0:09:b6:a5:
69:00:80:2b:66:e4:ef:3a:4f:8b:cd:1e:96:fc:ca:
b2:ed:fc:6a:4e:28:23:db:10:89:2f:45:b5:b0:2c:
6a:77:95:df:34:d5:cb:f0:12:1f:69:c4:09:f2:1f:
cd:e7:bd:2b:30:1d:83:89:12:7a:01:73:d1:db:08:
38:08:ef:a7:a0:5a:56:8a:eb:1d:5c:cb:11:b7:a0:
54:9f:8f:f7:01:26:07:82:ff:62:18:21:6a:5c:74:
af:fe:b5:d8:2f:bb:ac:9c:78:5e:5c:27:40:a6:45:
dd:cc:72:8c:91:8d:39:84:d6:d0:74:a0:d0:89:a6:
4e:06:33:5f:dc:7e:38:d7:d4:4d:b0:08:36:5f:6a:
16:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7B:4D:CB:CD:8E:0E:48:B2:6A:9E:ED:4E:CB:76:81:FE:16:85:EF
X509v3 Authority Key Identifier:
keyid:01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:2c:a9:9b:a8:af:ea:4c:44:49:98:6f:a8:b7:a7:3e:04:ca:
0c:06:e1:3b:63:1e:c2:6f:72:23:d4:5e:79:97:74:6a:19:05:
14:1b:0e:25:31:b8:4b:39:e2:7e:1b:23:14:87:75:47:10:af:
5b:fe:14:a3:d2:e8:a4:87:a6:39:94:c5:49:33:5c:84:15:b9:
0d:6e:a7:98:13:64:2e:c8:4e:2e:76:08:4f:f6:38:38:8b:23:
48:90:0b:2e:49:e0:a3:67:c2:7c:31:3f:b1:03:42:a8:9e:ea:
fd:d0:c9:c6:40:da:c3:c5:ea:b8:a0:fa:65:d6:a7:5a:4a:9a:
71:53:9a:34:ad:80:f5:a0:58:01:40:37:0d:b5:51:7c:35:39:
c9:e5:c8:82:5f:18:21:4c:7c:dc:67:80:0a:10:ea:29:9d:b2:
2c:d0:ac:54:3e:c0:23:eb:cf:08:b6:57:ea:aa:5b:df:5b:95:
57:1d:a2:22:62:12:fa:e4:7c:0e:8b:09:83:94:38:54:b1:55:
ef:3c:e5:d9:89:33:ac:2e:92:0e:4a:2a:0b:74:cf:3b:bf:72:
fe:32:ce:b7:9f:4b:7e:4f:7f:9b:7f:45:a1:00:8b:a9:09:5e:
77:da:a2:72:a9:fa:99:59:0a:0a:ac:8e:53:6c:23:79:9a:9b:
37:88:d9:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 21:05:24 2025 by rpki-client