Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
File: D8lnTtVfCnZcpdocb6-k3SXioXg.mft (raw, json)
Hash identifier: DkJDaJRPtf4bowb+MLArx1F5EOgbugaAbkmCcak/cYo=
Subject key identifier: 72:6E:83:F5:C4:D1:4B:9B:3A:04:F8:9C:05:EB:F4:72:9C:E3:BE:C8
Authority key identifier: 0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
Certificate issuer: /CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Certificate serial: 0199FE7DCCDE5CF98C00F6482E0B7D152AEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
Manifest number: 07C8
Signing time: Sun 19 Oct 2025 22:01:21 +0000
Manifest this update: Sun 19 Oct 2025 22:01:21 +0000
Manifest next update: Mon 20 Oct 2025 22:01:21 +0000
Files and hashes: 1: D8lnTtVfCnZcpdocb6-k3SXioXg.crl (hash: 6agm6fpTbZyeRYTyY0wIZMiLtRzybgT7VQa9yxQLYDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:cc:de:5c:f9:8c:00:f6:48:2e:0b:7d:15:2a:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Validity
Not Before: Oct 19 22:01:21 2025 GMT
Not After : Oct 20 22:01:21 2025 GMT
Subject: CN=726e83f5c4d14b9b3a04f89c05ebf4729ce3bec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2b:8d:b7:78:f1:64:ac:5f:07:f7:af:a0:25:
0e:04:55:9e:e2:3b:fb:73:58:fa:4e:ad:28:c1:5a:
55:21:81:27:16:d6:f7:f7:b7:8e:31:5a:cc:27:90:
b4:62:37:7c:fe:cf:b4:53:93:3b:86:d3:73:1f:dc:
1a:91:32:0c:40:df:13:84:10:9f:2a:5c:a3:6b:bb:
a4:87:40:a3:4c:ce:c3:d2:10:2f:f0:fe:3f:ae:72:
56:5e:cd:ac:a9:ae:0e:f4:c8:52:48:85:21:ce:78:
04:80:5a:9e:5e:9b:d0:98:9b:c0:75:fa:4b:e7:c1:
fa:7b:40:1e:02:8f:ab:c8:32:ab:a3:97:66:1b:c7:
1a:fe:bc:6f:fa:6f:2d:7e:63:5e:0f:5e:59:23:f6:
22:90:c9:3d:6a:f1:a7:31:07:04:7f:41:2f:f1:07:
8e:5e:2a:f3:82:85:1d:f4:57:4e:14:8a:88:6d:1e:
a4:15:67:fe:56:ea:4f:00:05:05:a2:c3:05:2d:ec:
d2:27:a2:45:fe:70:4d:07:28:25:cd:9d:85:3b:46:
34:d2:f0:6f:30:5d:21:62:b4:f7:c1:b0:12:0a:8c:
6a:5b:41:cb:45:08:36:ac:3c:5b:45:a6:8c:0b:51:
8c:40:db:10:6c:e9:52:fe:31:98:bd:58:09:0a:fe:
72:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:6E:83:F5:C4:D1:4B:9B:3A:04:F8:9C:05:EB:F4:72:9C:E3:BE:C8
X509v3 Authority Key Identifier:
keyid:0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:a5:e0:57:43:13:66:04:a5:aa:c2:1e:10:09:16:6a:94:3d:
d3:f1:a9:48:dd:06:8d:8d:ce:09:26:33:3a:74:fa:2c:75:3c:
96:7e:8b:8f:d1:4c:bb:f5:d5:6f:25:3e:9a:d7:92:55:42:ab:
d2:21:22:24:54:15:98:81:08:26:b6:6d:bc:d9:b4:fc:57:76:
ca:83:6d:42:27:83:1c:9c:e8:b6:a6:fe:bf:e6:9a:01:df:ad:
a7:e9:a8:50:f3:34:fa:1b:1c:6a:e3:15:72:54:d9:df:b2:60:
8a:be:46:99:ea:aa:e1:19:2d:03:8d:ca:ad:ba:04:2d:6d:da:
6c:7c:91:9d:80:9d:37:76:aa:6c:66:a2:1d:1d:6a:3a:cb:4b:
e6:f1:b5:95:05:23:7d:0c:29:c9:6d:56:1a:9c:aa:9c:40:97:
65:3c:f9:86:b7:53:52:24:54:36:6b:34:09:c9:64:19:5d:08:
10:ec:0b:1d:f5:78:46:3f:c0:23:33:dc:3d:56:bc:90:f3:f2:
04:1b:62:99:5a:dd:ea:f5:1e:56:9e:0f:2e:21:1a:9f:9a:a8:
80:6a:02:ee:81:04:54:ee:fc:70:82:c4:9d:2e:3e:d5:37:af:
ea:87:ef:7f:0f:61:c5:8c:ad:89:04:d3:5a:68:d6:ac:a0:75:
4d:fe:46:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:29:16 2025 by rpki-client