Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json)
Hash identifier: N9gm/5qpLd7sriRs+wnsoUq9oTPyAtvzP986kT4tFJE=
Subject key identifier: 8A:15:64:18:3F:4E:62:48:7C:F2:BA:1A:CE:5E:74:68:A8:2C:66:DF
Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d
Certificate serial: 0199FB0F58A2C15C12CA8BDFC968F96DB9DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
Manifest number: 099F
Signing time: Sun 19 Oct 2025 06:01:50 +0000
Manifest this update: Sun 19 Oct 2025 06:01:50 +0000
Manifest next update: Mon 20 Oct 2025 06:01:50 +0000
Files and hashes: 1: 1kPYBeHFqZcRahwRlHXvuPvT0zI.roa (hash: qhycFEi6FwqVVERso5+P+dTV24QXX6z3cT56YMpxbXU=)
2: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: KWilXoqY2VoJC7hkD4d/SM6vaAlEM2z9l1MMTXDauKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:58:a2:c1:5c:12:ca:8b:df:c9:68:f9:6d:b9:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d
Validity
Not Before: Oct 19 06:01:50 2025 GMT
Not After : Oct 20 06:01:50 2025 GMT
Subject: CN=8a1564183f4e62487cf2ba1ace5e7468a82c66df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:66:10:f5:a8:99:b0:89:0c:24:df:e4:be:1c:
13:54:fc:9a:47:71:c3:4e:54:bd:50:82:7c:3f:37:
48:23:a4:50:f5:f0:18:c3:e7:4a:0e:c8:eb:27:5f:
da:12:d9:98:95:31:f7:4a:5a:b4:3d:a8:a6:de:54:
c7:b7:3b:b0:24:40:02:b9:23:42:3f:14:f5:ee:e2:
89:1c:77:b6:95:32:66:96:de:27:64:88:ff:f5:e9:
21:88:66:04:df:5d:cc:9c:4f:87:29:d8:c1:65:8f:
6b:9b:29:36:f7:6e:6e:a8:0b:6f:e6:72:f4:72:28:
5c:15:f1:eb:26:70:c5:2a:d9:5d:24:91:34:e8:06:
4e:2e:a0:82:e9:d2:9d:0c:e3:0f:d4:1d:f2:81:51:
5e:20:fb:4b:11:c6:69:47:fd:07:63:f2:4b:da:4c:
68:e5:8a:f4:3c:32:fb:aa:c4:d6:c2:00:2c:05:9c:
e4:65:02:48:c6:1a:86:88:17:e5:e4:fb:34:77:79:
37:a9:5e:d4:ff:55:2d:33:2f:a7:27:f1:6c:1d:3b:
25:32:91:c7:7c:91:ad:6c:d6:bf:2c:f4:b3:5c:61:
ec:99:03:49:76:7a:99:3c:99:ea:1c:ea:25:1b:8f:
a0:43:70:9d:c5:27:97:f6:aa:05:06:26:c6:d9:7a:
bb:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:15:64:18:3F:4E:62:48:7C:F2:BA:1A:CE:5E:74:68:A8:2C:66:DF
X509v3 Authority Key Identifier:
keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:45:45:d7:5c:5a:36:fc:27:4f:92:5c:ec:89:1d:21:eb:b1:
39:81:24:76:29:af:aa:77:91:08:cb:b9:c2:6d:d2:fe:cf:45:
b1:a6:bd:98:79:0a:ff:17:a3:73:bd:57:c7:42:64:34:e7:93:
bc:3c:6d:49:b2:8d:ed:c8:bc:1a:48:26:94:39:01:1c:42:f9:
51:18:d9:6e:be:db:25:f6:d5:da:b3:74:1c:17:ec:82:62:45:
55:c6:3c:95:85:40:8a:4c:f8:81:80:29:cd:f6:69:fb:f8:9d:
44:05:99:27:f3:e9:78:af:40:c5:c1:2f:69:c6:d4:b0:d8:d7:
3a:8e:dd:34:86:f5:4f:6a:14:e4:79:a2:d1:e3:af:55:db:1c:
eb:94:cf:e2:2e:66:d2:1a:4f:2a:47:1e:f0:ad:75:a6:02:a5:
c2:86:ed:16:d5:8a:fa:d5:3b:88:58:43:68:32:21:7d:09:77:
7f:b3:d4:1c:ef:e0:d2:b3:4f:9a:75:c8:71:36:ea:79:37:02:
25:f9:08:de:73:c1:43:68:41:aa:04:b2:e7:2c:b5:ea:c4:8c:
c6:ea:81:db:22:c3:da:c8:89:84:d4:e7:31:ee:2f:b2:34:26:
f5:5a:d7:06:3d:86:a4:2e:eb:69:c3:6b:18:f7:4f:e7:ab:b6:
58:f3:62:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:25:58 2025 by rpki-client