Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: msZSJB/jnEl5WQQbHFT7J8PmIyHNbUgqLLDWy4FTBmk=
Subject key identifier: 13:6A:10:9E:36:47:3E:EE:58:9F:E1:E0:AF:91:E5:71:CD:9F:B8:3D
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 019A003536D1FCF9280CEB1A70E4BB9B6338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 1045
Signing time: Mon 20 Oct 2025 06:01:18 +0000
Manifest this update: Mon 20 Oct 2025 06:01:18 +0000
Manifest next update: Tue 21 Oct 2025 06:01:18 +0000
Files and hashes: 1: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: 2ojtnVrpFiqQgVbwBiu85fklDdCA3L/KNuPlrhGXtGA=)
2: Wb0clcxCuCcUH9RDxENV44_1l9w.roa (hash: IOO34gWbQwbQwVQDhS544nKGrCLE+a+zuAW9waRkyRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 06:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:36:d1:fc:f9:28:0c:eb:1a:70:e4:bb:9b:63:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: Oct 20 06:01:18 2025 GMT
Not After : Oct 21 06:01:18 2025 GMT
Subject: CN=136a109e36473eee589fe1e0af91e571cd9fb83d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2b:c6:36:db:9c:56:14:d5:52:a3:70:66:46:
d9:e9:d9:9f:1b:82:65:33:54:cb:07:61:22:98:20:
28:6c:bb:89:fe:f0:bf:e9:8f:4f:c3:81:65:6c:93:
61:10:a2:d6:88:ba:f6:b9:f1:1a:97:7a:2a:4f:44:
57:f6:a6:b4:6c:05:3c:af:1e:30:52:05:5e:04:46:
cc:1f:8d:f8:89:16:b8:78:54:d7:eb:e6:e7:cf:38:
c7:c8:4a:92:5d:34:d2:f5:2d:e7:f1:43:e1:40:f0:
f3:7a:bd:71:26:d1:3c:55:69:e8:8e:b5:b7:af:bd:
9a:fc:c1:e2:96:de:e2:4d:d1:8c:58:cc:80:d0:97:
c0:04:be:dd:56:a5:ea:45:eb:60:ee:cf:9f:00:62:
1c:45:5f:dd:9c:d4:80:5c:c8:e2:05:73:75:ac:d1:
f3:de:0f:34:27:03:cc:79:95:a4:3a:19:7a:8a:ab:
4d:db:22:d3:92:1f:1c:86:b8:ab:cc:e2:93:74:49:
1b:c7:67:31:0e:67:40:22:b3:e8:91:83:79:37:e6:
b7:8b:eb:92:a1:81:df:28:1f:cb:76:5f:8a:21:38:
aa:3f:fa:24:c5:bd:5d:dc:c4:37:42:6b:42:eb:77:
7c:29:3d:d1:02:55:12:fa:f8:a0:e7:bd:ee:d3:75:
02:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:6A:10:9E:36:47:3E:EE:58:9F:E1:E0:AF:91:E5:71:CD:9F:B8:3D
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
eb:88:dc:cb:ef:45:10:22:00:84:89:b6:2b:1d:08:69:f6:72:
1d:1b:66:70:77:df:ec:7d:73:f3:d1:02:01:10:61:2c:56:93:
24:8e:b5:09:d3:7d:57:36:64:5c:7b:06:f6:8d:16:71:34:dd:
78:a8:c2:ef:28:b9:7e:06:98:06:e0:d1:9a:25:7d:95:93:7e:
cb:47:49:37:05:0b:88:4d:7f:f4:33:46:ac:1f:c9:d8:ea:6f:
9a:34:8e:c2:56:66:51:1b:1b:bb:e6:9b:20:0d:82:a8:e4:b6:
7c:4c:7f:12:03:fd:04:7e:fb:98:1a:b7:80:5a:3d:73:fa:dd:
6c:2b:29:3f:0f:e3:a5:a4:e4:fd:e6:7d:04:32:ee:93:77:6c:
11:52:16:4a:6e:59:8a:cc:c6:91:d1:b0:9a:dd:6c:36:65:ca:
90:87:39:ea:66:83:6a:4e:b7:f0:37:51:27:1e:e5:a9:3d:71:
cb:8e:4b:73:0a:c9:5c:06:79:b9:da:95:f3:66:a6:d2:0a:bd:
5a:fa:61:93:59:5e:73:34:01:17:d9:df:71:93:24:41:1f:47:
66:c9:65:83:26:4a:76:8b:d0:36:3e:43:ca:39:8a:de:7b:f1:
8e:5b:9a:9e:85:72:e7:98:ee:e2:35:f9:a3:5b:fd:de:ad:0f:
c3:b2:ba:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 11:30:37 2025 by rpki-client