Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
File: h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft (raw, json)
Hash identifier: xphYHEi81K+QXzdCg8beiLxWV4QedifQn7wFW4Qk05w=
Subject key identifier: E6:A5:EF:D1:5B:DA:EC:F8:C3:6D:78:71:2B:65:E8:B5:65:F4:73:0F
Authority key identifier: 87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
Certificate issuer: /CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Certificate serial: 0198D73BAC00411E1A4FE8EC350459013552
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
Manifest number: 0A1E
Signing time: Sat 23 Aug 2025 14:01:08 +0000
Manifest this update: Sat 23 Aug 2025 14:01:08 +0000
Manifest next update: Sun 24 Aug 2025 14:01:08 +0000
Files and hashes: 1: h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl (hash: 6aYJbXdUibP/eBoHkUc6nV2+jCi5JhLIx5n3J25lYbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:ac:00:41:1e:1a:4f:e8:ec:35:04:59:01:35:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Validity
Not Before: Aug 23 14:01:08 2025 GMT
Not After : Aug 24 14:01:08 2025 GMT
Subject: CN=e6a5efd15bdaecf8c36d78712b65e8b565f4730f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:22:31:25:9d:f8:26:9c:56:1e:5b:a8:63:0a:
d3:7f:c8:37:af:4a:a5:a3:02:1d:ad:89:62:ee:15:
78:cc:b8:94:5c:f1:60:c9:a0:d2:dd:43:63:35:a2:
0d:7b:8c:47:c4:96:9c:28:73:f3:34:95:47:a0:22:
06:dd:e6:b8:f5:64:ba:85:4a:bf:65:2e:6b:9d:07:
64:fe:0a:f4:c1:82:b6:a9:2a:8d:75:25:7e:4f:2c:
f6:31:e0:a6:03:63:5f:fe:b4:2c:3d:95:01:d1:df:
88:e9:21:fa:a7:04:38:dd:f1:ef:31:14:a1:71:9f:
13:c4:dd:b1:38:69:fa:50:1d:df:42:70:27:f7:c2:
35:69:1d:fc:8c:4e:a3:87:ed:fa:9e:67:7a:2c:91:
cd:0d:2a:52:14:ea:f1:ff:9a:3c:99:99:fc:2f:c2:
ce:e4:e0:34:41:f8:62:46:ed:83:fc:ba:66:49:74:
cf:a0:3b:4d:c4:4d:47:20:8b:3a:00:46:a7:f9:13:
f4:bc:49:74:62:fd:ce:65:58:c6:71:9f:12:08:0b:
51:62:86:8e:f7:a3:af:1f:1b:99:42:bd:c9:93:dc:
5c:d6:9d:51:77:70:65:b4:50:90:73:fd:3b:5c:75:
23:97:6f:20:36:e2:d3:d2:3d:50:d6:9f:64:67:2d:
49:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A5:EF:D1:5B:DA:EC:F8:C3:6D:78:71:2B:65:E8:B5:65:F4:73:0F
X509v3 Authority Key Identifier:
keyid:87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:01:e4:f9:04:e1:73:e4:69:d7:70:ab:18:f4:63:b4:07:7e:
67:bb:45:8d:43:da:6b:61:af:70:33:b8:90:10:4e:93:5d:29:
f4:92:87:6f:96:f1:27:fe:e3:c1:d0:a9:40:ce:9d:77:23:7a:
0e:f4:d0:ef:86:67:c0:8e:d5:00:58:12:4d:0a:8e:50:87:91:
b9:00:00:ff:ea:cf:20:15:03:3c:f9:e8:9b:49:be:22:ee:18:
19:08:b7:4b:54:48:32:40:d9:a7:ce:b5:cb:c1:18:d7:e9:da:
16:65:d2:3e:15:bd:98:c3:6b:52:70:01:1c:6e:4a:15:87:98:
dd:ab:bf:5e:38:bd:56:f6:ac:cf:8e:80:0d:d3:94:dd:69:72:
04:84:5d:c1:95:2c:db:5e:ef:aa:bb:fd:ad:c3:10:5e:fe:d5:
ba:7e:92:3d:6d:0e:a4:f7:9e:fd:b2:3e:b6:f0:32:7e:39:7f:
ce:bf:63:dd:93:b8:66:e1:c2:e1:af:f6:6a:98:7f:28:50:7b:
14:f7:06:04:0a:45:35:92:87:70:ae:16:2b:7c:d3:69:c4:01:
ea:ed:7f:da:01:45:f0:16:c5:af:f4:17:c1:d3:ab:ee:5d:14:
4f:92:2e:57:30:c0:97:0d:e6:4e:e3:85:f0:99:f4:ab:e2:a9:
07:13:b8:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXO6wAQR4aT+jsNQRZATVSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3YzBhN2I0M2Q0MjkyNDkxN2E1OTA1OThiNDQzMjVlNGNj
OTJlZTQwHhcNMjUwODIzMTQwMTA4WhcNMjUwODI0MTQwMTA4WjAzMTEwLwYDVQQD
EyhlNmE1ZWZkMTViZGFlY2Y4YzM2ZDc4NzEyYjY1ZThiNTY1ZjQ3MzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CIxJZ34JpxWHluoYwrTf8g3r0ql
owIdrYli7hV4zLiUXPFgyaDS3UNjNaINe4xHxJacKHPzNJVHoCIG3ea49WS6hUq/
ZS5rnQdk/gr0wYK2qSqNdSV+Tyz2MeCmA2Nf/rQsPZUB0d+I6SH6pwQ43fHvMRSh
cZ8TxN2xOGn6UB3fQnAn98I1aR38jE6jh+36nmd6LJHNDSpSFOrx/5o8mZn8L8LO
5OA0QfhiRu2D/LpmSXTPoDtNxE1HIIs6AEan+RP0vEl0Yv3OZVjGcZ8SCAtRYoaO
96OvHxuZQr3Jk9xc1p1Rd3BltFCQc/07XHUjl28gNuLT0j1Q1p9kZy1JpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOal79Fb2uz4w214cStl6LVl9HMPMB8GA1UdIwQY
MBaAFIfAp7Q9QpJJF6WQWYtEMl5MyS7kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDhDbnREMUNra2tYcFpCWmkwUXlYa3pKTHVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9hMDA4M2MtZDBhOC00ZDhhLTk0YjQt
NzM1NjI1ZTBkMjk3LzEvaDhDbnREMUNra2tYcFpCWmkwUXlYa3pKTHVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9hMDA4M2MtZDBhOC00ZDhhLTk0YjQtNzM1NjI1ZTBkMjk3
LzEvaDhDbnREMUNra2tYcFpCWmkwUXlYa3pKTHVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATwHk+QTh
c+Rp13CrGPRjtAd+Z7tFjUPaa2GvcDO4kBBOk10p9JKHb5bxJ/7jwdCpQM6ddyN6
DvTQ74ZnwI7VAFgSTQqOUIeRuQAA/+rPIBUDPPnom0m+Iu4YGQi3S1RIMkDZp861
y8EY1+naFmXSPhW9mMNrUnABHG5KFYeY3au/Xji9Vvasz46ADdOU3WlyBIRdwZUs
217vqrv9rcMQXv7Vun6SPW0OpPee/bI+tvAyfjl/zr9j3ZO4ZuHC4a/2aph/KFB7
FPcGBApFNZKHcK4WK3zTacQB6u1/2gFF8BbFr/QXwdOr7l0UT5IuVzDAlw3mTuOF
8Jn0q+KpBxO4CQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:09:02 2025 by rpki-client