Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
File: 1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft (raw, json)
Hash identifier: 3cQnaoZpI+A+K95fXJRKvLQC5SxlLpgxWmqKlveicdE=
Subject key identifier: C4:40:25:DE:F9:BD:C9:15:C0:7C:25:E9:57:FE:67:42:A1:7F:B1:5C
Authority key identifier: D4:8F:0C:2B:2A:D1:9F:8C:06:B4:E1:24:91:D6:12:98:64:47:1C:A8
Certificate issuer: /CN=d48f0c2b2ad19f8c06b4e12491d6129864471ca8
Certificate serial: 0199FAD80B5767EF21BE43A47AAA9B9ABAF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
Manifest number: 8D
Signing time: Sun 19 Oct 2025 05:01:26 +0000
Manifest this update: Sun 19 Oct 2025 05:01:26 +0000
Manifest next update: Mon 20 Oct 2025 05:01:26 +0000
Files and hashes: 1: 1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl (hash: Jbdi8D7IpgTsMXfHOQ/Hw4XMTEKo+VS8C98Vzirfjww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:0b:57:67:ef:21:be:43:a4:7a:aa:9b:9a:ba:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48f0c2b2ad19f8c06b4e12491d6129864471ca8
Validity
Not Before: Oct 19 05:01:26 2025 GMT
Not After : Oct 20 05:01:26 2025 GMT
Subject: CN=c44025def9bdc915c07c25e957fe6742a17fb15c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:02:b5:88:23:e0:ee:63:f5:33:03:22:64:8d:
e3:0a:b9:95:71:2f:ef:8a:84:7e:7a:5f:e2:5a:83:
d4:05:e0:9b:1b:24:ab:79:93:c4:15:49:9d:88:8a:
6a:51:c6:26:3d:2e:d1:d1:ec:92:6c:c1:77:20:58:
ed:ac:25:ee:bc:d2:80:f4:2e:8c:d8:d5:5e:70:e0:
6a:0e:b9:db:db:d7:b9:e6:f2:0e:18:0d:17:66:2e:
40:e2:bb:f6:6f:2e:a7:51:f1:e6:3b:6a:c0:6d:ea:
b3:7c:2e:b9:11:3e:66:c7:33:0d:ad:61:4b:cf:d5:
32:ce:de:14:a5:bf:4b:a6:16:30:c9:38:99:b4:1f:
4a:85:b9:ec:2d:28:9c:4a:8a:4e:25:3f:2d:b2:ec:
85:c2:d4:97:e4:a2:c6:e4:65:8c:8e:84:34:7d:c6:
3e:7f:7d:7d:ee:4a:cc:bd:8a:1e:10:9d:00:a1:d3:
e2:13:81:ce:1b:30:fb:82:d3:a1:70:fe:16:53:c4:
7e:bf:29:1a:f5:db:40:c6:ee:72:26:74:8e:88:00:
48:4a:8c:17:99:84:90:2a:80:24:50:90:cb:13:ac:
f3:65:ab:4e:44:fc:2b:0b:5a:83:1d:1a:db:91:5c:
e1:68:26:8e:d3:b3:db:cc:1e:3e:42:f0:41:96:94:
03:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:40:25:DE:F9:BD:C9:15:C0:7C:25:E9:57:FE:67:42:A1:7F:B1:5C
X509v3 Authority Key Identifier:
keyid:D4:8F:0C:2B:2A:D1:9F:8C:06:B4:E1:24:91:D6:12:98:64:47:1C:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:46:c3:b5:fb:91:c1:c7:99:16:6e:26:65:c5:2e:0b:be:4a:
1c:24:2d:ba:26:52:6e:44:31:80:a8:13:3d:5b:69:c4:1c:0e:
6a:ce:8d:e3:7b:a9:a8:f6:f5:65:79:b3:0b:1e:fb:ee:7e:de:
03:0e:33:80:8d:94:1a:8d:dd:98:19:d7:2a:0e:8c:90:fa:6b:
b8:05:4b:37:83:e2:23:15:55:5a:02:6e:0d:1e:3c:af:db:ca:
da:c7:d1:d4:49:85:b9:6f:47:65:81:8d:78:f5:9b:97:7f:5c:
fc:38:71:ba:d1:c4:ae:b2:0d:62:12:fc:b6:50:99:14:9c:48:
7c:9b:8b:98:d7:b0:2e:a1:6d:c1:61:7b:18:37:e9:de:75:c7:
4f:24:c7:09:11:80:0a:46:5b:cd:e9:b4:c0:bb:18:52:61:73:
35:e7:9d:88:d3:af:ce:e8:ba:68:d2:41:61:3e:5d:e5:29:bc:
77:6c:7e:28:9c:c0:92:d1:46:2c:6f:73:80:44:de:da:06:78:
78:c0:f8:65:32:db:b7:8a:6f:c5:7a:bc:1b:7d:96:59:b0:4c:
b7:17:2f:5f:36:ba:cd:1f:f1:4d:63:be:fd:69:57:ff:ff:a1:
0b:0e:6f:ed:b1:d7:dc:90:8d:29:b4:14:eb:45:fc:7a:16:9f:
39:c3:d7:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:03:52 2025 by rpki-client