Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
File: 8QMX8k1xpRbXUEO-kPWr4_ocklk.mft (raw, json)
Hash identifier: l1Kc2IHaLIEFo3TAUB8EmRmzgqW+VPrLqJkcnOtpVSc=
Subject key identifier: 7C:1F:82:09:19:91:92:74:E8:C8:1B:D8:4C:DB:31:B3:CB:C7:51:90
Authority key identifier: F1:03:17:F2:4D:71:A5:16:D7:50:43:BE:90:F5:AB:E3:FA:1C:92:59
Certificate issuer: /CN=f10317f24d71a516d75043be90f5abe3fa1c9259
Certificate serial: 0199FC590499F7737C0D077D7BFD23366A3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
Manifest number: 1296
Signing time: Sun 19 Oct 2025 12:01:56 +0000
Manifest this update: Sun 19 Oct 2025 12:01:56 +0000
Manifest next update: Mon 20 Oct 2025 12:01:56 +0000
Files and hashes: 1: 8QMX8k1xpRbXUEO-kPWr4_ocklk.crl (hash: 4dad2WkXT+wg+mzGqdQC5LRnOkDxNH8gAwhwEA1IM/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:59:04:99:f7:73:7c:0d:07:7d:7b:fd:23:36:6a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f10317f24d71a516d75043be90f5abe3fa1c9259
Validity
Not Before: Oct 19 12:01:56 2025 GMT
Not After : Oct 20 12:01:56 2025 GMT
Subject: CN=7c1f820919919274e8c81bd84cdb31b3cbc75190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:50:d4:ca:a9:52:3e:0e:37:bb:99:e8:4b:
61:40:20:cd:07:60:18:c1:a4:8a:7d:9a:c6:3d:20:
bb:cf:fb:91:3b:4d:6d:55:95:17:a0:4d:61:cd:07:
ef:fb:d4:0c:62:22:82:74:b1:a0:d0:81:06:71:3c:
a5:2b:df:9a:3e:bb:65:45:d9:67:e6:79:68:8e:e0:
4e:b7:93:43:cc:f2:0d:c0:77:6c:55:b7:28:c9:b1:
21:04:f3:47:bf:67:20:0f:27:74:34:af:f1:bb:6f:
2c:9e:c7:5a:d6:b7:e5:95:03:b2:70:8d:1b:e9:a1:
11:11:36:9a:10:1b:83:d9:ae:b3:56:0d:32:ae:41:
f8:6e:e6:aa:8e:cc:be:90:56:a1:d9:b8:76:06:27:
a2:1b:a9:cb:e5:65:2f:0b:5e:6a:86:30:2d:13:9d:
2f:8c:d8:e0:c0:a9:5b:58:95:9a:dc:3a:34:21:45:
aa:03:87:94:32:55:ad:94:e3:25:89:10:b1:98:5a:
3d:96:b2:6f:cb:1b:19:20:06:9a:e2:06:94:e5:cc:
4d:f6:05:e8:be:f1:b0:26:80:e5:12:be:37:7a:c5:
0c:6a:6e:f6:bf:37:b3:dd:d3:aa:5f:13:2c:26:91:
73:47:0c:29:c5:71:55:59:a5:06:d7:61:34:28:7b:
8d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:1F:82:09:19:91:92:74:E8:C8:1B:D8:4C:DB:31:B3:CB:C7:51:90
X509v3 Authority Key Identifier:
keyid:F1:03:17:F2:4D:71:A5:16:D7:50:43:BE:90:F5:AB:E3:FA:1C:92:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:4c:5c:60:8a:cc:3d:b4:57:c5:a0:cd:e0:d1:bc:4b:b3:94:
0e:f7:92:63:25:96:ef:22:49:b1:54:b6:ee:17:3e:a1:a7:61:
35:8c:55:fd:06:e9:1d:43:0b:04:f8:be:b8:b8:cc:1a:7e:a8:
ba:c2:7b:16:05:fc:36:22:58:17:68:08:38:df:5e:f3:e1:b9:
c0:77:b7:35:b2:4b:cc:fc:bf:27:8c:af:17:84:9a:fa:2d:72:
cc:0f:fe:93:ee:91:3f:2c:08:67:45:46:67:82:2b:e2:32:24:
e2:7e:4c:92:f4:e1:72:e5:5a:61:5e:41:02:31:33:24:ef:ea:
59:ee:ab:31:08:3f:63:d4:65:26:16:47:ae:d2:52:15:d2:2d:
96:74:7e:94:83:10:28:7d:3c:ef:37:aa:b9:50:38:76:b8:dd:
fc:29:f5:fe:5c:37:a1:24:d4:c5:6a:cb:91:77:af:d0:cf:16:
8b:ce:15:3a:84:9a:ba:6d:03:9d:06:17:c5:dd:8f:47:64:71:
03:47:0f:84:70:de:49:92:19:51:08:61:46:21:85:f9:59:88:
bd:16:9d:0e:59:d0:57:dc:44:6d:0a:86:4c:c5:72:a3:8b:04:
64:8e:44:38:dc:8c:63:f8:ef:71:39:b9:9b:99:79:02:56:d4:
18:12:ea:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:27:46 2025 by rpki-client