
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
File: 8iL76FrkCNN3shfU66eziyS69d0.mft (raw, json)
Hash identifier: auEhQL2T8mZaJMOXGGXm0U1k+jxDNiiCdEbU9uhfNW8=
Subject key identifier: 81:B7:C7:AE:F2:8A:42:C2:B0:3F:E5:B2:17:34:CC:0F:03:8F:E3:41
Authority key identifier: F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
Certificate issuer: /CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Certificate serial: 0199FB0EC025E5DB8C575C1669ED39CD1B4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
Manifest number: 0D91
Signing time: Sun 19 Oct 2025 06:01:11 +0000
Manifest this update: Sun 19 Oct 2025 06:01:11 +0000
Manifest next update: Mon 20 Oct 2025 06:01:11 +0000
Files and hashes: 1: 5-tO1DtUPdvn-gHncHuAbgt6OiM.roa (hash: L6Z02H1tfyOJ9fsH+lsAomG7wfqgJlWMWjJh/1Ka9SI=)
2: 8iL76FrkCNN3shfU66eziyS69d0.crl (hash: IopE8dws0Hz6dajCkl8bP/vkunKJTJdqeakxFEb+yrg=)
3: gPE9V0tO8JPLDv8MCZH-UuWvdnQ.roa (hash: 5qjlUc3/t7psPBo135Wzs5OYxrc/B+KKSYzn0gcEaGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:c0:25:e5:db:8c:57:5c:16:69:ed:39:cd:1b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Validity
Not Before: Oct 19 06:01:11 2025 GMT
Not After : Oct 20 06:01:11 2025 GMT
Subject: CN=81b7c7aef28a42c2b03fe5b21734cc0f038fe341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f2:ce:8c:70:da:d2:3d:4c:39:bd:27:82:87:
d3:2a:08:cd:fb:77:cc:e8:7d:af:18:f0:41:f1:20:
24:b9:2a:c4:8f:92:db:aa:65:62:b4:24:3e:a4:05:
cb:2e:ca:f2:4a:30:e5:b5:b8:50:2f:0e:6a:aa:df:
1c:a2:1a:36:7c:80:c9:ff:dc:8f:c8:92:cb:a6:ea:
d2:c7:bb:1c:c5:7c:18:4c:96:02:17:9b:4e:a3:eb:
61:29:0e:14:8b:4a:25:67:0f:25:57:5b:b4:68:41:
a4:22:50:0e:39:e1:a0:89:4f:1e:b4:b3:aa:52:be:
82:51:0d:63:2b:f6:60:96:e0:47:dc:f5:25:ef:4c:
f7:6d:3c:a4:d2:6d:5f:43:d7:87:23:e2:6f:d2:09:
b7:75:b4:12:3c:a1:18:67:99:cf:b8:93:c3:57:1c:
46:2e:20:19:a0:87:38:44:72:9f:d7:35:d0:52:2d:
e7:f5:04:78:9b:4c:7d:e8:3f:8e:63:3f:3c:ea:ae:
70:dc:05:b6:35:8b:aa:fe:2a:d9:4a:3d:d0:57:9c:
29:a3:45:f4:07:ec:a5:87:4e:2a:3f:4d:4d:bd:24:
7b:59:27:ec:7e:ee:08:a3:44:f4:65:32:b1:9c:16:
f7:0d:08:1d:5d:3b:af:ab:dc:11:10:a1:a4:5b:6e:
fd:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B7:C7:AE:F2:8A:42:C2:B0:3F:E5:B2:17:34:CC:0F:03:8F:E3:41
X509v3 Authority Key Identifier:
keyid:F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:49:47:8e:65:18:0f:b4:f8:c9:be:e7:39:3e:26:e5:05:ee:
ee:63:76:31:49:7e:b4:ca:d8:74:50:0b:09:31:3a:74:9d:cd:
44:b5:56:8a:87:bf:da:67:65:fe:1c:9c:56:b7:13:b8:4c:47:
3c:ca:5f:49:c3:40:e2:2d:65:71:e5:fe:fe:cd:38:22:5a:fc:
89:60:a9:75:03:24:63:29:ac:41:2a:d3:4d:4a:7b:d0:b7:b3:
d4:78:c0:30:39:d0:2e:0c:a4:9f:e3:dc:fe:f5:2c:9b:02:31:
b6:c6:0a:93:92:25:10:f3:96:8a:b3:1d:4e:6e:36:db:e4:ae:
b9:af:bf:29:e7:14:47:88:7a:03:95:6b:5a:dd:40:f9:35:dd:
61:f2:19:34:86:f7:8b:d4:2c:0d:58:df:d4:4f:fc:33:00:c9:
17:16:30:52:52:11:73:d0:5d:3a:7f:ed:37:88:a5:c8:fc:41:
f4:02:39:3d:80:df:7d:b8:ef:b8:f8:ea:65:ad:22:4a:3d:5f:
10:f6:e9:61:34:71:e1:39:d1:e3:96:77:41:4f:8b:cc:44:48:
16:fc:5b:04:d3:dc:3d:b6:7c:0a:d1:48:ff:1f:39:6c:bc:45:
d4:3c:13:02:3f:f3:7a:36:c0:7a:1d:58:22:80:77:38:32:d7:
af:95:ce:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:15:04 2025 by rpki-client