Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
File: 8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft (raw, json)
Hash identifier: VLwYRad/V4MnSX8ICSE2bldZj4J9YeeeWMYexWmdH9E=
Subject key identifier: 81:A6:CA:7A:3E:F6:11:05:4C:A9:0D:C6:53:DF:3A:82:DA:A4:92:9E
Authority key identifier: F2:61:FA:1F:E6:DC:09:FA:54:D1:AF:59:C2:E1:00:CD:14:12:C7:F0
Certificate issuer: /CN=f261fa1fe6dc09fa54d1af59c2e100cd1412c7f0
Certificate serial: 0199FBEBF50D915C381A8C56028DBD1AEA2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 10:02:48 +0000
Manifest this update: Sun 19 Oct 2025 10:02:48 +0000
Manifest next update: Mon 20 Oct 2025 10:02:48 +0000
Files and hashes: 1: 8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl (hash: NMcY6pPA9WAoSkW8fZ8plNHf2mysIneXj0iPKvIs8mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:f5:0d:91:5c:38:1a:8c:56:02:8d:bd:1a:ea:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f261fa1fe6dc09fa54d1af59c2e100cd1412c7f0
Validity
Not Before: Oct 19 10:02:48 2025 GMT
Not After : Oct 20 10:02:48 2025 GMT
Subject: CN=81a6ca7a3ef611054ca90dc653df3a82daa4929e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:36:29:d4:5e:12:d2:d1:f8:e2:66:cf:f6:cb:
70:53:da:45:12:ca:b8:33:17:87:f9:bc:9c:de:03:
7c:ed:86:49:61:6f:f7:dc:3d:68:1e:e5:a5:63:c6:
40:d8:f9:7d:77:78:1b:60:c5:33:10:7e:b1:ec:ae:
07:3e:e8:b3:8f:4c:ce:50:9d:dd:c0:b5:05:ef:7d:
4f:38:76:63:c5:66:40:68:de:f3:b4:5d:98:7d:df:
07:70:95:c0:8d:78:ba:3a:ca:c4:e6:bd:48:44:f1:
42:48:db:1e:1f:70:c1:8b:97:96:c3:b2:50:bc:6b:
99:98:ac:a6:bc:b9:3e:52:ae:b3:f4:74:a0:2f:90:
77:13:47:7b:29:97:29:9c:6b:a8:3e:10:55:69:eb:
8a:5a:c3:39:36:95:7c:d4:c6:70:cd:23:5f:a8:1c:
df:41:df:bd:60:3b:74:1b:72:04:4e:74:1a:0d:7f:
db:e1:7c:af:36:a8:42:2d:02:e5:05:e2:7b:35:6b:
26:30:5d:5a:65:ab:a8:da:01:cb:bf:98:07:54:f8:
6a:cb:da:d9:c6:ec:de:e4:9c:c3:57:c0:bf:ac:da:
a1:83:40:17:73:3c:52:e1:59:2d:2d:de:e2:ab:cf:
57:0b:83:3f:16:53:4d:2f:2b:7e:37:30:6e:97:57:
ec:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A6:CA:7A:3E:F6:11:05:4C:A9:0D:C6:53:DF:3A:82:DA:A4:92:9E
X509v3 Authority Key Identifier:
keyid:F2:61:FA:1F:E6:DC:09:FA:54:D1:AF:59:C2:E1:00:CD:14:12:C7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:34:f2:49:07:ce:80:c4:37:5b:0c:a2:07:a6:00:85:ee:01:
02:8a:2d:e2:27:66:af:cc:7b:ce:2e:fb:59:a5:e3:f9:62:26:
b0:1d:72:74:55:45:a9:c4:d3:8f:cb:1f:c6:4c:21:03:63:85:
c2:69:64:48:1c:63:32:0b:76:1b:b8:aa:ea:45:17:71:38:03:
15:19:41:ee:cd:15:3f:97:67:94:b1:2a:74:c6:79:07:e5:74:
e3:84:8f:6a:f7:38:f5:d0:83:cd:0b:c8:65:93:6d:01:65:65:
41:80:96:cb:35:4e:fc:fd:fd:fa:6d:1e:b3:46:43:a5:05:95:
d4:2c:6a:bd:32:58:ff:de:5b:c9:aa:e7:5c:a8:59:91:a0:2f:
4b:f5:0c:aa:8f:8a:69:df:2e:31:2d:f9:d8:b6:f6:05:e2:28:
ff:ea:7a:7e:67:37:23:1c:4f:b1:f1:fc:88:6b:f3:2d:6e:cd:
bb:ed:f3:b5:9e:4d:02:4f:70:02:5c:43:1d:f9:c1:be:e5:40:
f0:f4:eb:9c:92:6d:09:b8:a3:45:bc:c2:6f:cf:f3:73:0a:e2:
13:fa:61:56:74:71:2f:12:7d:29:5d:e2:f1:6b:5c:da:15:48:
bc:66:a8:92:bb:ac:a5:fe:04:b4:65:95:e9:b0:85:5c:8a:30:
22:24:6d:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:36 2025 by rpki-client