Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: d35zN+ErVU71CT6Zd+O/EyZsgGOaWxxx9kMpI7mc/O0=
Subject key identifier: DE:7B:C3:A2:CA:CB:2E:2A:CF:50:6B:E7:0B:A8:77:83:29:F2:CF:87
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 0199FE0FCABAB408C4D4C25B80DFAC07DD30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 20:01:11 +0000
Manifest this update: Sun 19 Oct 2025 20:01:11 +0000
Manifest next update: Mon 20 Oct 2025 20:01:11 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: pawQQeL6Fnj3CDWn9Hl4wKuWd+KdPu9GUd/5EQNEiM4=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:0f:ca:ba:b4:08:c4:d4:c2:5b:80:df:ac:07:dd:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Oct 19 20:01:11 2025 GMT
Not After : Oct 20 20:01:11 2025 GMT
Subject: CN=de7bc3a2cacb2e2acf506be70ba8778329f2cf87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:74:7f:f9:35:76:f8:4e:82:3e:3a:42:41:ee:
94:c2:04:77:0e:ed:cf:6f:db:a5:6c:02:49:5b:b9:
b4:92:34:03:b0:7c:40:c8:a9:7b:9e:fa:b2:36:05:
d5:2d:ca:f6:d5:c1:17:ec:15:66:a2:f8:4f:a0:23:
88:47:ef:19:0f:ff:92:39:8e:15:64:94:cf:42:b7:
f8:f3:5f:ce:cc:2d:25:49:67:b5:1a:36:10:79:70:
89:1b:d2:33:7c:10:bf:dc:31:16:ab:ea:e1:44:ed:
5d:11:ea:b1:73:b8:f3:9f:bc:a8:59:0e:01:b2:ef:
ff:c1:e7:ed:e7:f1:50:ac:b3:93:1d:0b:a8:94:ed:
2c:fb:fa:ed:2c:1f:77:97:c7:07:92:74:4b:fe:83:
13:9f:7d:9b:1e:00:00:fc:f9:99:0f:5a:b3:ec:05:
c8:7b:36:59:63:90:38:8f:90:43:f0:6e:d2:b1:80:
20:65:80:07:4e:3d:56:2b:78:1d:59:02:c2:f6:50:
56:37:d4:94:e7:5d:eb:f7:b0:26:9c:64:d9:90:14:
a6:1f:2f:5f:82:79:ed:0e:3a:34:af:ab:53:42:d9:
ba:1f:5f:9c:f4:e0:6c:a8:ef:55:43:84:79:06:29:
57:31:c7:d6:81:9b:47:c9:f5:da:e9:2f:04:e4:3d:
3d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:7B:C3:A2:CA:CB:2E:2A:CF:50:6B:E7:0B:A8:77:83:29:F2:CF:87
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:1c:77:e3:4d:04:9d:93:82:61:e2:4a:76:d8:e0:18:5e:f9:
a3:c1:d9:b6:0a:21:86:be:de:eb:70:af:4d:99:ae:83:c6:4a:
a5:93:62:eb:78:b8:55:af:d1:fe:ed:3b:9f:d5:c7:c5:5b:41:
6a:fc:62:35:e6:6b:5b:e0:80:96:e1:31:b5:a9:37:26:53:51:
73:62:40:fe:75:8d:0d:39:78:17:95:43:ae:01:08:08:a6:dc:
ae:a4:fb:53:b6:08:c5:26:50:f0:a1:85:2d:60:10:dc:aa:d1:
df:a2:a1:b5:21:f3:9c:36:ff:a0:a6:b5:2f:e1:9f:18:a9:13:
90:f2:d4:e3:de:77:85:7e:c3:29:fa:bb:41:2d:90:6b:32:4f:
f7:c4:66:b1:22:7b:a3:17:6f:dc:fa:24:64:02:67:73:c2:55:
00:63:eb:07:93:d9:ea:9f:14:8f:61:c7:63:86:1a:28:a5:b2:
05:04:e0:10:92:46:bb:c7:66:3d:bd:72:ec:97:6b:45:aa:8e:
f4:26:45:55:ee:d0:df:ab:82:a8:dd:c9:6c:d2:a8:89:de:2b:
85:5e:35:f6:dc:9a:75:86:be:25:99:5b:49:0d:bc:b5:c3:91:
80:99:e4:f1:21:52:a5:61:a1:fa:42:86:d8:fc:1c:37:03:d4:
04:76:2f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:31:07 2025 by rpki-client