Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
File: 1-qWsXSKtkHinLhNplihyR-nx4TE.mft (raw, json)
Hash identifier: 9H05RBe7Az4Wpwd2HoOsZnUqTF26rjgSUeg9smf97Y8=
Subject key identifier: 80:38:10:3B:98:64:44:0C:11:E6:A3:B3:86:5C:D8:11:B8:8A:E3:1E
Authority key identifier: FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
Certificate issuer: /CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Certificate serial: 01992330FB2344D942FCA33C142AF8CD3FEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
Manifest number: 119F
Signing time: Sun 07 Sep 2025 08:00:36 +0000
Manifest this update: Sun 07 Sep 2025 08:00:36 +0000
Manifest next update: Mon 08 Sep 2025 08:00:36 +0000
Files and hashes: 1: 1-qWsXSKtkHinLhNplihyR-nx4TE.crl (hash: jMwCcPXsTDDhgd6OHSF5KnrUyBGyENgvMpXiPf0iYy8=)
2: NhnMYjAslLVa-AUlcKz__rn95zo.roa (hash: tZEX0EAU3kMvQjAQCJnIAbh87GSUNy8524Ozv2q7nvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:fb:23:44:d9:42:fc:a3:3c:14:2a:f8:cd:3f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Validity
Not Before: Sep 7 08:00:36 2025 GMT
Not After : Sep 8 08:00:36 2025 GMT
Subject: CN=8038103b9864440c11e6a3b3865cd811b88ae31e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6d:79:e4:67:43:dd:8e:4b:ba:72:02:11:d2:
c2:dd:b4:dc:ca:c4:36:6e:29:2b:71:d7:2c:86:0b:
00:69:04:56:18:a9:81:91:90:47:40:03:9f:1e:91:
f3:80:01:99:0f:65:46:1c:78:f6:71:f3:f3:6e:ab:
ae:fb:db:d6:f0:fd:9f:e1:46:2c:5b:2c:8f:4b:9e:
b9:a1:93:a6:80:41:11:66:3b:26:7d:88:d8:f9:44:
ae:3c:0e:e7:bc:1c:7d:02:ce:0a:9e:4f:70:ef:38:
97:f9:f2:84:8f:fe:31:67:06:54:77:3d:46:12:fb:
dc:15:c1:c4:81:ef:7b:af:2d:8c:01:c4:ab:9a:41:
25:e4:82:30:18:c2:60:cd:ba:9e:d0:32:ff:cc:75:
f6:f6:cc:4a:d2:0a:f3:0c:64:19:15:f4:f3:bb:1d:
22:b0:3a:d0:37:0b:9e:17:ef:9a:49:cc:35:6d:4c:
56:37:2b:39:a9:d0:dc:77:4a:62:46:df:29:96:b8:
5a:af:a7:61:55:b5:cd:ba:48:61:fe:a6:58:03:2e:
ab:13:bd:2b:73:50:92:07:54:bf:47:fb:ed:b7:37:
04:bb:ea:5d:57:cd:06:cc:29:5a:b2:4e:ca:6f:2a:
af:5b:ef:b3:8f:6e:f8:1a:1d:ec:55:bb:1e:76:9f:
c7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:38:10:3B:98:64:44:0C:11:E6:A3:B3:86:5C:D8:11:B8:8A:E3:1E
X509v3 Authority Key Identifier:
keyid:FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:0a:2f:95:13:bc:11:bd:6b:56:28:35:9a:fc:09:f2:8a:48:
51:03:1e:7d:3a:64:44:32:1c:17:b7:d2:50:d3:b7:83:24:0c:
9d:1d:12:ca:2f:32:96:52:0e:3c:59:70:71:1d:c2:f3:69:d2:
cd:ab:2f:cc:6c:eb:45:34:28:ec:9a:b1:2c:7d:b2:6e:19:7e:
44:fc:e6:3e:57:f0:71:bb:d0:01:f8:a9:f0:e7:80:34:fc:b7:
8c:06:ff:9e:8f:74:f5:2c:5e:23:b3:b4:b4:d4:b4:56:75:4f:
bf:59:ab:ad:5a:dd:54:ae:8d:72:a5:9f:c4:e8:9e:ca:62:53:
21:7e:c6:5b:1f:62:2b:06:d2:e9:7b:06:0d:af:14:7a:14:56:
46:b6:17:cc:f3:cd:ce:73:05:5b:9c:d4:8c:74:b7:fa:56:ae:
b7:1d:15:9f:1b:9b:4e:82:4b:7d:1a:ba:bb:7b:0a:c8:93:fc:
00:fe:53:b1:63:47:d9:d9:80:73:9f:58:f2:1c:c3:2c:99:a1:
76:36:b3:26:03:fa:d7:0b:f7:68:30:71:ec:f4:1a:65:77:a0:
6d:7d:17:6f:24:60:3d:9f:16:b0:c7:a1:89:65:53:01:3b:53:
09:05:ba:6c:4f:fb:96:d3:44:d7:7d:37:87:df:0f:06:1b:b4:
11:9b:22:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:57:01 2025 by rpki-client