Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: 3IDJWRqZX07AXEqD5xb9Lh3mPZ37rJ+zn+JpPcC63Qk=
Subject key identifier: E1:9C:5A:3C:80:67:07:36:60:07:2E:B6:D1:56:57:50:E8:EB:FB:7E
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 0199FEEB8105998AF582DBB77AB979CB1E18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 16B2
Signing time: Mon 20 Oct 2025 00:01:10 +0000
Manifest this update: Mon 20 Oct 2025 00:01:10 +0000
Manifest next update: Tue 21 Oct 2025 00:01:10 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: YrFKuP3pY8ECSg/89ogX1p82JE8AXoj3sEOydnyxL8o=)
2: LSDLxpYG9vUS-ynb5NuKXC0hxwk.roa (hash: iU/GAJxLreLcqJkb0jyy5NFNWuEEVZB548A5w51V+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:81:05:99:8a:f5:82:db:b7:7a:b9:79:cb:1e:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: Oct 20 00:01:10 2025 GMT
Not After : Oct 21 00:01:10 2025 GMT
Subject: CN=e19c5a3c8067073660072eb6d1565750e8ebfb7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a4:0b:e0:1c:40:8d:0d:b6:98:23:9f:5b:ae:
83:81:31:49:9f:62:d8:db:6e:2c:92:17:28:ea:f3:
61:da:8e:83:0a:21:8d:30:3c:57:30:1e:ab:1e:a4:
4e:81:50:6d:95:30:56:06:35:1a:bd:f6:5d:23:c9:
cc:75:af:a8:fe:5c:90:68:bb:01:78:79:0a:f9:e5:
2a:a8:c5:bc:8f:8a:d1:88:98:b8:4c:ab:2d:06:3e:
35:74:6f:33:9b:0d:18:e8:09:16:f8:ca:39:bb:d4:
42:b2:7e:a5:c1:d3:44:1b:6c:cc:69:57:63:40:2d:
99:0e:75:00:0b:fd:fe:38:82:98:36:f2:64:18:27:
6c:ad:dc:a3:ca:61:1e:73:3a:75:ca:9e:7b:38:e2:
17:e0:e1:62:5c:a2:31:5f:99:ac:5d:99:66:19:80:
5e:cb:9f:c5:5c:4e:ed:ee:db:4c:9e:c3:89:c9:93:
da:c1:6c:f9:c7:08:2c:dc:3a:1a:01:b6:f2:25:39:
c5:45:7b:dc:6d:44:3b:79:92:84:97:aa:18:34:99:
0b:b7:99:8c:37:c1:26:32:e3:08:26:d0:91:cc:a7:
e0:40:2a:b8:c2:b3:36:b4:c3:ec:88:ad:2a:e4:fd:
84:de:cc:f0:76:55:71:18:d3:46:57:b3:c9:0a:c6:
06:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:9C:5A:3C:80:67:07:36:60:07:2E:B6:D1:56:57:50:E8:EB:FB:7E
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:68:0a:60:c2:78:cd:7a:76:59:4e:7d:b5:e1:20:81:fc:d7:
da:40:bf:c7:29:1b:de:b0:4a:3e:a5:2c:80:c6:7f:83:2d:a2:
c7:44:d9:3c:f3:34:06:a2:da:9f:3d:dd:41:82:9c:e2:96:43:
7b:f4:a7:1c:59:ce:06:4a:05:69:e0:38:78:54:3d:22:e2:36:
10:d7:fe:fb:88:7b:27:04:8e:bc:ae:90:5d:96:74:0f:8c:aa:
15:07:cf:3a:77:ad:2c:32:59:6e:63:fa:91:4b:d5:c4:f7:2d:
e2:fa:4e:7e:f9:13:3d:9c:09:a9:a4:93:6d:71:30:41:05:4c:
b7:97:95:7d:af:2d:2b:87:c5:6e:75:86:66:f4:ee:8a:e1:ff:
d3:f2:e3:ca:09:b7:00:72:72:92:4e:86:70:fe:54:bf:15:c2:
68:55:76:6e:2f:1e:8f:a2:ed:37:cd:ca:93:1e:64:d8:4b:31:
ac:f7:50:0e:ac:e6:65:5f:a5:39:50:a1:00:d2:3f:fc:90:10:
1c:d2:48:fc:50:8a:10:21:7e:7b:fc:f0:1c:da:73:53:dd:6f:
46:57:52:82:6c:d6:88:0e:63:1f:56:32:8b:94:89:b2:2a:35:
0b:1a:27:86:e3:b1:bf:33:4a:2d:e1:fa:d9:a0:5b:c0:fb:83:
ec:9e:f4:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:48:35 2025 by rpki-client