Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
File: 8bmuyqN97cDywE9RvJY_zS5KrMw.mft (raw, json)
Hash identifier: 6aOugDfudFq8qnjZEbjQt5gBD0aTZdiz9+B+l5DXYd4=
Subject key identifier: D4:DF:7B:E3:B6:6C:56:A4:5F:5E:79:81:AB:9F:3A:72:BB:03:CD:C0
Authority key identifier: F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC
Certificate issuer: /CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc
Certificate serial: 0199FBEB579CCFA12006D3B83AE6A000CE46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
Manifest number: 04E3
Signing time: Sun 19 Oct 2025 10:02:08 +0000
Manifest this update: Sun 19 Oct 2025 10:02:08 +0000
Manifest next update: Mon 20 Oct 2025 10:02:08 +0000
Files and hashes: 1: 8bmuyqN97cDywE9RvJY_zS5KrMw.crl (hash: rrTd0lIkNgFw0TYDkEsKQ+8DIIwO/3FSTi743DaGqJY=)
2: wN3I7D42_Scvh3kTX6wbZgc3STg.roa (hash: +5WZ8eZml5reiYd5KuhYrJcZjNCC9ofGPFNFq+2Hrx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:57:9c:cf:a1:20:06:d3:b8:3a:e6:a0:00:ce:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc
Validity
Not Before: Oct 19 10:02:08 2025 GMT
Not After : Oct 20 10:02:08 2025 GMT
Subject: CN=d4df7be3b66c56a45f5e7981ab9f3a72bb03cdc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5a:f3:02:14:c5:c7:ab:aa:a0:02:cf:5f:aa:
53:34:80:8f:48:fc:17:74:ab:09:e4:66:43:1d:90:
35:02:5a:aa:65:45:4a:f8:67:5f:64:f3:54:df:6b:
b9:60:0f:12:a6:2d:75:d6:e9:c7:75:ee:e2:b6:13:
f9:0e:7a:f0:c5:c1:b4:81:ab:c8:ee:b2:86:34:f2:
e7:5b:f5:fe:f8:dd:44:21:72:7c:1e:e6:e7:b2:87:
5f:a3:b7:7e:c9:80:67:cf:a7:b1:a5:b1:75:f8:21:
a2:29:62:23:a9:9b:da:ab:1d:1b:a1:9e:c2:4b:a1:
28:13:08:04:9a:df:ed:97:02:88:64:f8:aa:88:76:
c0:98:e4:96:c2:e7:07:07:a3:fd:c0:33:64:1e:e6:
58:96:d5:7e:46:38:e7:a5:6e:45:89:e4:50:fe:7d:
f6:95:08:12:bb:5a:10:7f:89:3d:76:68:23:2c:f3:
38:e5:19:70:4e:8e:65:f1:8c:d9:a1:8c:0b:40:2a:
ce:7f:cc:16:ec:11:7b:69:ba:91:bd:2b:aa:91:01:
fb:fd:4b:1b:4b:43:99:e7:c5:35:9e:2c:2a:51:80:
45:92:c9:12:b5:8d:2b:af:06:f1:46:ec:97:70:32:
a4:f3:f1:27:8c:16:8c:83:9e:44:9e:d2:4c:cb:7d:
61:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DF:7B:E3:B6:6C:56:A4:5F:5E:79:81:AB:9F:3A:72:BB:03:CD:C0
X509v3 Authority Key Identifier:
keyid:F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:85:b0:3c:50:66:22:11:3d:f3:f9:aa:6b:66:d0:5e:18:f2:
9c:3d:eb:a8:64:e1:14:bf:66:bc:b9:ea:e9:24:0d:e6:2e:88:
7e:8e:cd:fb:14:a6:c2:a8:b7:f4:78:f7:7d:9a:6e:4e:28:a9:
81:28:73:e3:f5:e2:07:05:ba:72:15:71:3c:da:89:c5:bc:a3:
dc:b3:89:cb:a0:5b:39:7b:94:47:ca:83:3b:4f:81:6e:02:7b:
41:c1:eb:10:06:ab:c5:ec:82:1b:ac:c2:5d:51:8c:db:a7:b1:
c7:d0:ad:a9:65:67:3f:c1:79:ae:b8:fb:2c:c2:8a:39:e1:62:
84:cf:6f:6a:66:1f:5e:bf:c4:9d:31:79:1a:93:1f:ec:42:45:
f9:cb:e4:8c:eb:09:b8:25:2f:27:d0:1e:99:24:bb:dc:3a:95:
23:df:b1:b6:22:9d:aa:9f:f5:c5:b4:e5:08:c5:96:0c:fa:6c:
67:ba:c5:50:e5:b6:1d:e5:bf:05:6e:06:ba:09:7a:b1:f1:ad:
01:c5:62:1b:1b:05:29:72:9e:aa:81:b2:1f:7b:28:f8:30:c8:
71:ab:6c:1a:13:53:80:6f:3f:43:6a:5b:3a:c5:3c:f9:4d:9a:
ba:4f:3e:c5:40:75:ad:d5:b6:e2:88:40:a7:51:11:9b:eb:65:
88:3a:d9:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:38 2025 by rpki-client