Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json)
Hash identifier: p0a10/qE+Q5y2NxjDNrKSMsvHkC1GvyL0nwxUy68xII=
Subject key identifier: B6:74:D6:3C:39:16:D0:2D:71:81:52:19:51:56:9B:7D:69:A5:40:3B
Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Certificate serial: 019A003532E9A53A34FC1E3862F0934871C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
Manifest number: 13DD
Signing time: Mon 20 Oct 2025 06:01:17 +0000
Manifest this update: Mon 20 Oct 2025 06:01:17 +0000
Manifest next update: Tue 21 Oct 2025 06:01:17 +0000
Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: KPO/AIFjE9kYM3NKfAI3aIhaqqXFGezFCGKZs3XMRXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 06:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:32:e9:a5:3a:34:fc:1e:38:62:f0:93:48:71:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Validity
Not Before: Oct 20 06:01:17 2025 GMT
Not After : Oct 21 06:01:17 2025 GMT
Subject: CN=b674d63c3916d02d7181521951569b7d69a5403b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:76:15:91:5b:b2:91:1b:05:c2:39:b0:0b:72:
0f:4b:9f:66:9a:77:0c:66:59:8e:0b:f7:79:b7:ac:
62:24:64:b5:9d:88:57:55:a8:b2:e3:b2:81:64:56:
ec:27:b1:a2:b9:e3:46:ae:fb:52:70:2a:cb:f9:93:
9e:d9:57:e1:a9:90:76:28:24:c6:e0:5d:c8:39:d7:
2e:d2:1c:62:ff:17:fe:de:49:7b:0f:03:6e:0f:93:
9d:09:cb:15:8a:07:48:d3:52:72:7e:ef:db:b8:c8:
8d:b7:89:1d:52:23:06:de:65:3b:a0:c8:20:b4:d6:
17:18:f3:89:95:a1:bc:2f:76:65:d3:4e:d2:90:4b:
b6:e8:3b:fc:70:b0:73:7a:f0:41:a4:5d:33:33:c9:
8d:f0:d7:3c:54:a2:52:72:fb:3d:6c:da:f8:db:08:
16:a6:07:63:f2:a5:01:5c:d7:57:c4:d6:c2:b1:71:
b8:f5:b3:41:f8:95:a5:f8:44:5f:82:cc:26:5a:c5:
fb:92:57:dc:ae:c8:f9:d2:fd:d2:95:82:26:99:4d:
d4:64:7c:17:01:4d:70:22:21:6e:1f:db:94:eb:51:
85:9f:0f:63:65:7f:2b:7b:9e:91:11:73:fe:7c:d0:
f7:67:d0:80:1a:a4:f5:19:7e:d8:53:52:81:99:06:
d4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:74:D6:3C:39:16:D0:2D:71:81:52:19:51:56:9B:7D:69:A5:40:3B
X509v3 Authority Key Identifier:
keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:be:26:2c:eb:a0:7a:b6:1d:12:ea:a2:2e:85:49:3e:2e:5b:
59:70:2d:20:6e:0f:19:82:5c:1c:55:be:39:e7:17:7e:84:eb:
8a:74:f8:73:e2:b8:a9:e5:ee:d9:6f:a8:7b:b9:58:ed:37:5f:
0a:6c:21:08:f1:31:ee:21:1b:6e:c7:15:d3:30:8d:ed:17:d0:
89:42:83:91:e7:82:68:9f:6d:26:e0:6a:59:df:ca:97:a9:0a:
ae:80:ae:b2:dc:b3:be:1f:ef:9f:3c:d7:5c:84:17:0b:09:4f:
c6:39:ae:f3:5c:33:b5:4e:66:d9:7b:62:46:2e:01:31:56:e9:
fe:b9:16:b1:c7:17:dc:64:65:93:b7:33:7a:b4:00:e7:59:9a:
67:87:d3:7f:d0:fb:90:3f:aa:cf:38:93:93:c9:fd:0e:4e:41:
de:df:f3:9e:0d:f9:a4:22:f8:a9:a4:67:3c:2a:97:29:2a:9b:
ae:b9:0a:9d:32:0c:9f:ca:6e:56:b6:b5:2f:19:d0:ee:10:8b:
c3:cc:b5:35:eb:85:38:15:91:b1:9b:5a:f5:72:28:dc:5d:2a:
79:62:41:69:59:95:02:e1:11:ef:bb:3c:e7:b8:fe:f1:6d:6d:
c1:b6:97:ec:8a:9c:a9:ee:63:9b:d5:d5:51:67:f0:ab:73:82:
d3:90:18:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:44:56 2025 by rpki-client