Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
File: id8L4W7M0-twbmQXlLyQ1PfWeMk.mft (raw, json)
Hash identifier: oEWOAre68uYZi87PPYYi1mGN5rk/m9wmuPOeP1hUlxc=
Subject key identifier: 89:54:DB:FF:1B:FC:B3:71:AD:DA:F1:F5:A4:4F:2D:D6:EB:05:47:00
Authority key identifier: 89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
Certificate issuer: /CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Certificate serial: 0199FCC62B67B0CAE32CA37A6BE241EB38EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
Manifest number: 16DE
Signing time: Sun 19 Oct 2025 14:01:09 +0000
Manifest this update: Sun 19 Oct 2025 14:01:09 +0000
Manifest next update: Mon 20 Oct 2025 14:01:09 +0000
Files and hashes: 1: id8L4W7M0-twbmQXlLyQ1PfWeMk.crl (hash: PUo9aR56uGzGFC6wJ3v3B4sOzbUqLHvFlXmVtW7o8YU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:2b:67:b0:ca:e3:2c:a3:7a:6b:e2:41:eb:38:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Validity
Not Before: Oct 19 14:01:09 2025 GMT
Not After : Oct 20 14:01:09 2025 GMT
Subject: CN=8954dbff1bfcb371addaf1f5a44f2dd6eb054700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:84:74:7e:94:2f:9b:8b:19:06:05:aa:ab:31:
f2:39:33:23:c7:52:de:6f:b9:6c:e5:08:8e:42:b5:
1d:59:2e:db:46:18:b3:44:65:64:c3:71:65:3e:98:
10:cb:66:a4:41:b0:e5:a2:ee:13:41:5a:63:c4:f5:
b2:10:d2:f8:d9:66:18:ab:f1:b1:e4:62:51:0f:c2:
ed:44:ed:73:18:1b:70:63:3a:da:9e:cb:f9:35:34:
49:30:c0:87:95:a0:0b:39:55:ec:d2:8d:67:df:49:
61:5c:fe:f9:c4:1e:d4:76:ec:ac:3a:0f:ac:e9:ea:
3e:3d:ac:92:af:b9:f0:1b:0a:0e:6d:26:e4:19:05:
84:27:af:bc:d0:ab:00:da:43:2c:bb:5b:1a:05:d8:
6a:3f:68:c2:61:08:69:d2:15:5c:0f:97:16:d2:d7:
a6:0d:63:50:23:42:f7:97:38:49:13:1f:e1:89:95:
bb:cc:aa:a5:7a:3d:0f:85:ea:07:4e:33:17:c0:48:
bc:e2:b2:05:39:4c:98:92:09:75:93:e1:38:32:22:
6c:19:57:85:7a:cb:41:2e:0f:b7:93:9a:2c:dd:36:
45:1f:1b:f1:69:2a:5d:57:45:13:6a:17:45:fb:3c:
01:6c:6b:1b:83:0b:ee:4a:5e:15:76:82:0c:81:17:
f9:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:54:DB:FF:1B:FC:B3:71:AD:DA:F1:F5:A4:4F:2D:D6:EB:05:47:00
X509v3 Authority Key Identifier:
keyid:89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:5b:85:6d:e9:3e:cf:b8:6d:ea:36:54:6e:39:11:d9:a7:db:
61:30:9c:7a:af:0d:96:fd:e9:e8:53:96:f8:82:24:10:fc:21:
0b:15:33:58:16:46:a3:14:89:42:30:33:66:31:e6:8b:94:46:
3f:65:c2:eb:64:f5:33:09:77:bc:ee:d0:a3:f3:ce:1d:bf:91:
1a:7c:8c:95:21:52:0c:0a:a2:71:d1:4c:fc:1c:e5:b9:ca:d0:
43:99:12:44:3c:b0:1c:19:b8:90:37:99:dd:18:f1:5e:6d:d7:
d4:c2:3c:45:a4:75:d3:7f:19:b3:df:27:c3:0d:0b:bf:ae:a7:
9a:17:c3:68:6e:2f:b6:ae:83:fd:7e:2b:3d:95:7e:76:81:30:
3b:84:2e:bb:da:8b:3d:2b:63:41:f9:ee:66:5b:18:75:e8:f5:
bc:17:6a:5a:0f:94:72:36:a9:63:fc:c0:f8:86:53:4c:ae:b7:
21:b1:d8:8d:ac:ec:6d:e8:ca:36:0b:a5:a5:ce:eb:1d:3c:6e:
bb:8a:4d:24:f8:6f:cb:1b:ff:57:8f:35:bb:cc:bb:ce:1c:b2:
8d:48:92:dc:2d:b3:31:1c:31:ad:ba:37:eb:47:fa:a7:4c:aa:
5b:8b:95:04:aa:29:22:cc:61:c6:01:24:f9:35:fd:15:93:e5:
83:44:84:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:15 2025 by rpki-client