Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
File: i8Wo923xVof4NEHJprVUV48831c.mft (raw, json)
Hash identifier: hMYFAOJ1XSl+6BHEB05lkfLCOCXaaYTfWEvIIb+3sDc=
Subject key identifier: 1F:1C:36:6B:90:44:BA:23:39:9F:35:8A:EF:35:9E:D5:6A:F5:BC:8A
Authority key identifier: 8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
Certificate issuer: /CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Certificate serial: 019921E7EABD7D8A412780C50B753FF997C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
Manifest number: 030F
Signing time: Sun 07 Sep 2025 02:01:10 +0000
Manifest this update: Sun 07 Sep 2025 02:01:10 +0000
Manifest next update: Mon 08 Sep 2025 02:01:10 +0000
Files and hashes: 1: i8Wo923xVof4NEHJprVUV48831c.crl (hash: VJfMbOIQKNQePxGbHjaL5BtUn3ir7+3HsePP1OftdWU=)
2: xqruQTCgxIM4PNAxf9wXVycyPyQ.roa (hash: hdKTf9nYGB8AkPxxLnuI6L7FG/INFNDmxrZRzLc1Xt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:ea:bd:7d:8a:41:27:80:c5:0b:75:3f:f9:97:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Validity
Not Before: Sep 7 02:01:10 2025 GMT
Not After : Sep 8 02:01:10 2025 GMT
Subject: CN=1f1c366b9044ba23399f358aef359ed56af5bc8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7f:22:a5:26:df:5e:87:fb:9e:ae:83:80:2f:
3c:88:f4:91:14:97:b7:31:9d:46:e5:a0:9b:82:0b:
d6:d2:4b:4f:28:5e:e8:12:21:00:23:b7:a1:3c:d7:
cb:c1:90:a2:80:db:c2:6d:30:95:dc:c6:2d:3e:18:
a8:1f:f2:91:31:d1:00:81:26:e6:5d:e7:81:ad:44:
54:59:cb:f8:82:2a:84:50:ac:e8:4e:0b:1f:e1:49:
13:81:fb:d1:bb:02:c3:9a:76:03:d2:be:22:7f:70:
79:f9:04:11:2c:28:05:8a:6c:5c:5a:07:a8:74:04:
a1:2d:c7:66:f4:a8:28:e2:47:ba:fb:04:b0:57:5a:
53:97:4a:cb:41:5d:d3:31:f5:b2:c9:f0:b6:29:c5:
e9:84:9f:8d:81:8d:28:b4:da:ba:54:00:3a:2b:aa:
05:5e:c5:5a:12:e0:8f:63:5a:44:0b:74:65:88:a7:
9a:73:75:3a:7d:f0:fc:dd:6e:87:4b:39:5a:78:0f:
a4:69:61:14:4b:66:ea:61:f0:a2:1b:16:44:01:37:
8b:ee:ca:90:aa:77:f4:99:f6:ab:1f:91:49:76:f6:
82:65:94:78:57:0f:cd:d7:1b:75:ff:8a:ea:04:d0:
ae:1b:4e:03:ad:33:43:d1:6c:ec:d0:08:ae:b2:ac:
2b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1C:36:6B:90:44:BA:23:39:9F:35:8A:EF:35:9E:D5:6A:F5:BC:8A
X509v3 Authority Key Identifier:
keyid:8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:4a:3a:27:e1:ac:88:b8:50:23:c8:34:5a:76:9c:24:36:62:
73:71:81:28:98:25:5c:52:1b:58:96:23:ee:b3:68:33:00:de:
8c:a6:74:11:55:20:57:38:ad:f7:05:8d:8a:b6:db:36:df:11:
52:3f:d1:93:0e:26:21:9a:b0:9b:29:01:51:36:8b:5c:5b:27:
1b:76:57:56:20:d8:87:9b:d5:65:ec:04:f8:d1:9e:ed:31:0a:
47:e0:e0:0b:c4:29:fd:25:32:37:2b:f0:8e:82:46:4e:62:95:
22:62:05:4f:b8:f6:64:b9:40:f8:ae:6c:28:0e:30:50:af:e2:
e2:73:9a:99:c8:35:3c:5b:33:65:7c:0a:1d:d6:f2:b7:28:60:
45:8a:03:16:55:67:d3:81:f5:a7:53:50:89:42:bd:8f:1a:86:
17:2d:4f:f1:a7:37:53:ba:15:96:3f:7f:7a:7a:14:4b:a9:6a:
a0:8b:f7:17:3e:5a:01:42:cd:87:81:14:75:61:f1:b3:98:bf:
3a:5e:a8:91:07:04:d4:bb:6f:29:8c:1f:0b:1e:0a:04:8b:ff:
fb:53:39:7f:7e:fc:fb:34:30:c2:04:9a:5a:09:c1:09:a3:b4:
1f:84:b1:12:2a:20:fc:c8:c2:ef:34:2f:72:4c:c0:59:60:a8:
14:3d:df:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:38 2025 by rpki-client