Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
File: 8zXtZqwB15F1zk149nKh_kcgN4A.mft (raw, json)
Hash identifier: WliQQW2suour1XRezudLtOcTbM0Il26B2RGE5WmgKQQ=
Subject key identifier: 99:D3:0E:60:3C:1C:F3:3B:F8:85:51:E8:24:11:9B:7A:04:80:1D:61
Authority key identifier: F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
Certificate issuer: /CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Certificate serial: 0198D4A85804249C930D7847F26B777AC0A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
Manifest number: 0E
Signing time: Sat 23 Aug 2025 02:00:58 +0000
Manifest this update: Sat 23 Aug 2025 02:00:58 +0000
Manifest next update: Sun 24 Aug 2025 02:00:58 +0000
Files and hashes: 1: 8zXtZqwB15F1zk149nKh_kcgN4A.crl (hash: NfsvnJKZu9TZ2Udo7JmalUzVhRs1zmKc8pJynJo3Vco=)
2: Gc7bIWg_002hRPQXdkZu34Nt1hk.roa (hash: rYe2LH24NobxlRDRXW8nW9SeQn4FShUkG8Kt27Qhtsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:58:04:24:9c:93:0d:78:47:f2:6b:77:7a:c0:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Validity
Not Before: Aug 23 02:00:58 2025 GMT
Not After : Aug 24 02:00:58 2025 GMT
Subject: CN=99d30e603c1cf33bf88551e824119b7a04801d61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:15:e9:cc:40:e9:20:ae:a8:46:2b:9b:8b:bc:
38:87:14:22:39:4f:c9:34:fb:e7:66:59:c4:79:d5:
5a:50:43:f9:42:cd:7b:65:88:7a:09:1d:37:65:92:
16:e6:bb:dd:1a:88:b9:59:c8:9d:22:da:bd:5a:5f:
61:f0:9e:9b:3e:0c:0f:e6:a1:16:a1:92:8d:69:ce:
db:9f:1b:32:9d:07:b0:73:20:a0:e2:d6:5e:ac:2d:
97:cb:92:b3:7a:81:9a:91:f3:28:f3:aa:07:aa:5d:
52:4c:62:5e:23:d2:4c:ab:5b:56:4e:81:a0:74:bb:
c3:1e:86:7a:2a:ad:a8:ac:6c:8e:e9:0e:76:62:1c:
e0:ee:0b:bf:24:91:a4:08:a4:86:4a:75:8d:ae:01:
f0:4e:a6:00:44:2e:cf:ab:d3:f4:c2:00:9b:21:e9:
c6:44:f1:f2:50:12:f3:6c:ff:89:48:e9:b8:8f:97:
46:d3:c8:c3:ec:fb:0d:dc:c3:9b:94:11:19:7f:cc:
51:cf:a1:4a:6b:68:3f:bf:e5:51:f3:45:db:da:0d:
ab:13:16:94:37:d0:6f:ae:ac:41:db:be:e4:85:c3:
1a:45:f4:04:a9:24:00:9b:09:4a:10:2a:32:87:30:
95:e9:15:6c:c8:a3:78:bb:44:47:b4:aa:93:82:28:
b5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D3:0E:60:3C:1C:F3:3B:F8:85:51:E8:24:11:9B:7A:04:80:1D:61
X509v3 Authority Key Identifier:
keyid:F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:4a:d9:33:fb:47:19:bf:bc:dd:b6:0f:d5:b2:ec:0f:5e:79:
f0:1f:06:33:2c:af:7d:1a:e5:6c:63:b1:8b:6e:c0:01:d9:d5:
73:07:73:f3:31:e9:01:bb:a4:a3:7d:45:c5:bc:67:72:7b:84:
02:d6:89:d7:05:af:ec:87:30:22:6e:13:84:4b:17:4e:59:5a:
d5:9d:75:ea:e4:10:d2:41:27:bb:ec:c4:7a:b9:9e:82:74:68:
53:9c:2d:87:1d:87:59:52:ee:f3:a9:84:b4:7f:7a:d1:ef:f6:
f5:fd:fc:e9:bc:f8:ed:e0:6c:4d:28:44:a7:e6:b2:9d:b0:50:
5c:e8:77:c1:10:00:fd:ac:3f:7c:14:05:cb:04:a0:cd:ba:c9:
53:b9:a8:b8:fc:1a:26:d9:58:4e:81:ab:66:51:a8:df:15:4a:
e5:1c:48:7a:e7:7a:98:0a:90:fa:24:5f:92:f8:e6:5a:dd:97:
a4:d7:fa:c2:5c:cf:89:a2:72:ea:54:e3:d3:c0:3a:9f:2c:54:
8f:09:87:cb:1d:b3:f3:78:63:1a:7f:ef:05:70:c2:c8:01:30:
50:33:78:3d:01:37:3d:07:96:2d:e9:ed:84:4b:dd:1f:8f:15:
ac:fa:cd:21:9c:bb:36:7a:ce:f1:f8:da:fc:de:cd:47:dd:74:
3f:a7:1c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:45:39 2025 by rpki-client