Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
File: 8KEScQQ06Frl_m-_Qedr3fk4GM8.mft (raw, json)
Hash identifier: Xxe/e6lgNDYxhAT+phJcVqgvog/CtzhF1f9JtF3dIJw=
Subject key identifier: 8E:8A:3C:E6:DF:9C:B1:43:D9:90:0C:F8:23:5D:22:A5:F2:79:8A:EA
Authority key identifier: F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
Certificate issuer: /CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Certificate serial: 0199FAD8405BCFBCA169BBADFF69FB22B0CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
Manifest number: 055A
Signing time: Sun 19 Oct 2025 05:01:40 +0000
Manifest this update: Sun 19 Oct 2025 05:01:40 +0000
Manifest next update: Mon 20 Oct 2025 05:01:40 +0000
Files and hashes: 1: 8KEScQQ06Frl_m-_Qedr3fk4GM8.crl (hash: AH6ZBiSzT+RC9RstISfVVusFkzsiON7RPsj4sh7xtXs=)
2: QxzsJBZ0KnjdWggXNkiPE3mxTiE.roa (hash: wp71B9vMq7Np21xWaUokwt4Wn7Ga2Zz2FhWmCQz4Lj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:40:5b:cf:bc:a1:69:bb:ad:ff:69:fb:22:b0:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Validity
Not Before: Oct 19 05:01:40 2025 GMT
Not After : Oct 20 05:01:40 2025 GMT
Subject: CN=8e8a3ce6df9cb143d9900cf8235d22a5f2798aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:32:0d:a4:ba:b0:6e:79:0d:57:c4:c2:e4:92:
f0:a7:f8:71:f0:1a:46:9b:16:ee:0d:f2:51:1a:de:
99:b6:3c:4e:f2:ad:eb:80:2f:ac:1b:e5:62:fa:c7:
a7:6c:70:c2:92:a2:d7:45:e4:ba:4e:0b:8a:e9:4d:
c9:6a:bc:59:0b:99:54:ca:3c:00:74:bf:45:00:71:
19:c0:ef:c1:eb:7b:09:9f:ba:9f:d3:6b:48:08:99:
3c:17:3f:a8:39:e5:a9:ff:3c:41:69:9e:df:70:66:
ae:32:90:e0:c0:df:75:b8:76:f6:1c:95:db:ec:27:
ad:27:6e:81:1f:7a:d4:ed:51:0b:24:d0:02:45:b1:
6e:5a:e9:2f:85:26:d6:b8:7f:ee:92:ed:2c:5e:36:
eb:2f:15:86:76:44:52:b9:62:56:0d:37:47:d8:22:
6f:5d:80:a8:f5:ce:45:65:e3:c9:95:d1:bb:4f:60:
81:c4:3d:db:04:e7:d3:e9:8a:0d:1c:ca:e4:f2:22:
fb:b5:45:1d:e7:da:20:33:dc:e9:9b:9d:38:80:95:
4a:3c:a6:3e:af:6e:ac:73:f2:5e:f6:86:57:af:f7:
52:c6:2c:ce:f5:b0:5e:16:97:d2:71:48:cf:1b:64:
48:a4:3a:6e:1d:1e:56:f7:88:25:ff:fa:66:81:16:
60:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:8A:3C:E6:DF:9C:B1:43:D9:90:0C:F8:23:5D:22:A5:F2:79:8A:EA
X509v3 Authority Key Identifier:
keyid:F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:04:14:72:2c:cb:de:47:7d:35:63:98:45:b3:f6:fc:1d:6e:
3d:6d:ed:c2:0a:14:5e:29:28:56:fc:c5:b4:4e:39:8f:9f:6d:
77:2d:ec:48:52:a4:50:2a:90:d7:5a:e1:b7:00:e8:2a:07:58:
39:b6:31:02:2c:16:01:05:45:3c:8c:bb:bf:fc:35:17:eb:17:
1a:f2:e5:b7:71:0c:38:64:b3:9d:1d:cb:65:96:5d:65:e0:5b:
56:9a:83:9b:26:32:c6:82:69:5c:21:33:47:95:b4:b7:e7:db:
14:5f:5f:f7:f8:86:3f:09:77:f4:e3:50:52:f1:cc:6f:5f:e1:
22:b1:58:99:07:00:71:ae:cc:82:ec:f5:3e:ad:93:8a:e9:72:
6b:2a:df:4b:97:e9:38:f7:8e:79:1c:56:73:be:57:45:29:f4:
d8:af:e7:86:bd:71:09:89:df:6a:83:ef:b7:a3:f8:70:09:12:
81:ec:51:21:48:31:7f:a0:1d:17:79:c3:8e:9e:23:17:f3:a3:
5b:b4:a9:c9:a0:fb:07:91:92:1f:26:66:d4:13:0c:f7:fb:6d:
b3:69:f6:a0:74:c7:69:37:37:87:d0:97:db:bd:19:80:bf:e6:
0f:08:e7:c1:10:22:ea:3d:68:5c:12:be:91:af:c7:09:f6:b7:
6c:a1:f0:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:08:03 2025 by rpki-client