Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: 3KFGImbnuAESFOwi9noZU7a85dK7T+cBwMF9KxHXR0M=
Subject key identifier: 8A:01:B1:1B:3F:B6:61:83:EB:8D:2B:5B:2D:4D:B0:58:82:65:BF:9F
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 0199FD34888F724C8ED15A183ECB3987188A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 0862
Signing time: Sun 19 Oct 2025 16:01:42 +0000
Manifest this update: Sun 19 Oct 2025 16:01:42 +0000
Manifest next update: Mon 20 Oct 2025 16:01:42 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: b4KlneGlm5x6XYtHQUpb+kzEwiDaFl5CAeRkzR7GUVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:88:8f:72:4c:8e:d1:5a:18:3e:cb:39:87:18:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Oct 19 16:01:42 2025 GMT
Not After : Oct 20 16:01:42 2025 GMT
Subject: CN=8a01b11b3fb66183eb8d2b5b2d4db0588265bf9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:29:24:6d:a2:73:4a:ee:e3:4f:dd:4f:f3:c4:
65:3d:83:99:e2:44:d7:e0:6a:28:2e:e4:59:46:91:
75:4d:b1:16:4a:43:ce:40:18:6b:5a:5d:58:93:61:
32:9d:e4:a1:18:66:8f:38:bf:0f:75:4e:be:78:95:
3d:13:a3:89:b3:e3:46:de:b6:ae:cf:0e:8a:55:34:
c2:83:75:61:4a:7d:ef:d4:c4:77:64:c1:86:1e:ce:
20:fb:de:6a:c3:70:74:54:ef:4c:b9:da:dc:90:eb:
97:e9:28:f3:51:80:c2:71:ee:fd:67:88:dc:bf:27:
bf:c7:9d:c4:a4:75:97:4e:13:36:3b:d0:ff:50:fc:
be:a2:cd:09:ae:45:55:41:7c:14:b2:7e:73:38:ac:
46:fa:26:97:5b:bc:a8:62:80:e2:cd:fa:d4:44:d8:
41:f5:cc:dc:99:ce:fc:ec:58:74:59:0c:bb:7b:c8:
c6:dd:51:d7:94:10:5a:57:ab:06:0c:69:82:27:2b:
b4:6a:14:01:b1:83:80:2b:10:98:43:98:a1:38:5c:
b6:c9:d7:d6:7c:4f:f8:3c:25:bf:23:a2:3d:27:d6:
4c:f1:18:43:44:93:29:fc:a8:5f:ec:ff:5b:87:2b:
c5:42:0d:da:b5:2b:76:f0:21:32:ce:e2:d0:c5:2d:
57:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:01:B1:1B:3F:B6:61:83:EB:8D:2B:5B:2D:4D:B0:58:82:65:BF:9F
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:1c:31:fc:0d:93:3f:91:e6:58:0d:35:7b:d7:f1:ef:bb:6c:
7b:db:db:ee:80:78:12:7a:13:cc:c9:24:20:9e:05:13:b9:1f:
28:99:da:fa:47:b7:ae:85:bd:07:f6:6b:b5:90:8b:29:31:c2:
31:8f:1b:b5:e5:c3:e8:a8:bc:32:d1:32:dd:2f:ad:fe:3b:7e:
90:5b:64:f6:57:f0:e9:35:1f:d3:b6:65:e6:e4:39:a3:95:42:
9a:c8:7c:58:4b:30:6e:35:92:76:dd:91:c2:78:91:a7:34:f9:
f7:12:e9:98:66:2b:7f:fe:ae:a3:f6:e5:2b:2a:51:e9:94:62:
d9:bf:0a:f2:88:97:6b:6a:b9:5b:ea:6f:6d:84:b5:8e:9f:1e:
12:30:37:ab:70:b1:b4:84:af:35:4d:bf:b8:05:5e:b8:20:0b:
0f:7e:19:05:3f:b7:b5:45:c6:97:2d:b2:b0:dd:ff:c4:40:23:
2e:58:d4:b5:18:f7:3b:5d:c9:95:68:64:bf:de:7f:53:59:5f:
0c:5f:cb:49:ec:71:67:36:52:67:46:44:5c:22:b8:7d:19:52:
cc:75:e9:7b:dd:47:25:ff:35:58:05:59:64:0e:c2:63:f7:af:
ab:83:0f:2d:e9:6f:46:d8:da:ea:8d:47:52:73:11:7f:8c:ee:
c5:61:ad:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:38:05 2025 by rpki-client