Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
File: 8iL76FrkCNN3shfU66eziyS69d0.mft (raw, json)
Hash identifier: GXrtzUbrIvKbAn9Pis16yS7yZbJJreo2703N1SRr3NM=
Subject key identifier: 65:34:DB:BA:66:79:EB:BA:14:5A:24:7C:B3:51:DD:57:55:71:C1:CB
Authority key identifier: F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
Certificate issuer: /CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Certificate serial: 0198D583C402332F6C34201158860430F058
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
Manifest number: 0CF9
Signing time: Sat 23 Aug 2025 06:00:38 +0000
Manifest this update: Sat 23 Aug 2025 06:00:38 +0000
Manifest next update: Sun 24 Aug 2025 06:00:38 +0000
Files and hashes: 1: 5-tO1DtUPdvn-gHncHuAbgt6OiM.roa (hash: L6Z02H1tfyOJ9fsH+lsAomG7wfqgJlWMWjJh/1Ka9SI=)
2: 8iL76FrkCNN3shfU66eziyS69d0.crl (hash: ZmrvNOTGJ3veU1Q2MrpEvZPXEQ3v4HQNDZ8XbpcSpHo=)
3: gPE9V0tO8JPLDv8MCZH-UuWvdnQ.roa (hash: 5qjlUc3/t7psPBo135Wzs5OYxrc/B+KKSYzn0gcEaGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:c4:02:33:2f:6c:34:20:11:58:86:04:30:f0:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Validity
Not Before: Aug 23 06:00:38 2025 GMT
Not After : Aug 24 06:00:38 2025 GMT
Subject: CN=6534dbba6679ebba145a247cb351dd575571c1cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9c:6f:05:2e:09:32:91:b1:47:b9:4e:fa:c6:
9e:8f:7e:89:e9:8c:cd:dc:b5:53:53:83:55:03:59:
c3:94:5c:b1:3f:4e:df:cd:be:13:97:9c:a9:1a:59:
b4:87:8b:2c:20:c4:f0:40:17:93:88:7f:7a:00:d2:
5e:37:dc:22:20:47:a1:4d:bb:eb:b2:97:3a:45:ff:
df:90:8d:07:6a:71:73:fb:77:b2:8b:a9:45:c4:fd:
5a:05:ad:75:99:e9:5e:ac:78:c1:2b:45:3a:b0:5c:
3d:f5:4b:0a:6a:85:db:f2:fc:0e:fd:11:19:52:15:
2d:3a:da:2e:46:c0:44:3e:77:62:ed:1a:21:50:68:
09:0d:a8:59:2e:7c:71:db:5c:16:97:99:4e:6f:69:
a1:f5:27:3d:56:f3:6c:6d:02:a0:44:e2:56:b3:1c:
db:ed:0d:86:6d:e8:97:c1:8a:67:0b:22:03:0d:67:
98:f6:ab:52:1f:07:e0:de:eb:b9:a9:ab:4c:89:40:
bd:9e:37:34:8d:ae:f4:c3:a1:79:3f:6e:a8:c1:23:
00:cc:df:e7:e2:f5:2f:4b:70:f6:c9:34:9b:d4:d1:
54:d0:80:96:d0:f9:d4:40:0f:d4:59:32:66:8e:c5:
5c:3f:f3:5f:d3:9e:c4:5f:5d:f6:eb:3d:96:39:86:
4a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:34:DB:BA:66:79:EB:BA:14:5A:24:7C:B3:51:DD:57:55:71:C1:CB
X509v3 Authority Key Identifier:
keyid:F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:69:8e:67:df:a6:7c:d6:b2:55:f3:e6:58:e9:8c:87:d9:a1:
0d:2b:07:d7:49:6a:f4:59:13:4e:39:85:c0:9f:ab:0a:87:19:
fa:c6:67:c4:5b:8d:dd:b9:1d:8d:1a:e8:c0:e5:15:83:9c:82:
ac:3a:b9:62:95:38:d6:61:33:1e:eb:c0:1b:6c:5a:4b:07:6f:
5e:44:69:b3:67:06:3f:8b:77:fc:13:f1:62:10:8e:e2:fc:c4:
9d:61:33:82:d1:f9:f5:d7:c6:1d:4c:82:36:01:43:d3:e6:c7:
c8:46:d5:74:f7:c8:8c:97:2e:f0:ba:ab:50:ef:06:e6:fb:30:
65:64:a8:88:ad:ba:e9:68:fa:f4:ef:a3:9e:87:76:fa:d2:b8:
dd:9d:ec:47:25:e3:35:a8:df:7f:92:03:06:8e:72:be:84:ff:
93:cb:31:75:8e:93:bd:fe:9a:5d:a3:b1:e4:bc:ba:c6:20:de:
0a:b0:3f:22:6d:93:64:0f:72:eb:ea:54:d3:b5:b8:38:44:54:
61:3b:b7:c3:da:f9:c8:30:dc:47:4d:d4:2d:56:3d:4f:8d:22:
0b:d2:76:19:c5:a5:c9:07:52:82:6a:71:ac:28:20:dd:a9:09:
1b:6b:79:a3:11:f5:b9:60:6a:e6:3f:e1:5f:87:6d:e5:80:44:
4b:31:d8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:29 2025 by rpki-client