Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
File: 8VzG8-5-0llTHW0Izp4JNztxYGI.mft (raw, json)
Hash identifier: PcwmZ+Nsz7el76CfMEzirFxDAOqt+Uqjlr5l1u8hR4E=
Subject key identifier: 23:17:F8:EE:9C:3D:C7:CF:5E:35:45:83:39:9F:9E:55:C3:51:19:18
Authority key identifier: F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62
Certificate issuer: /CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
Certificate serial: 019A725C41AE6B3F61A48ABC240EB59AE0A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
Manifest number: 04BC
Signing time: Tue 11 Nov 2025 10:00:39 +0000
Manifest this update: Tue 11 Nov 2025 10:00:39 +0000
Manifest next update: Wed 12 Nov 2025 10:00:39 +0000
Files and hashes: 1: 8VzG8-5-0llTHW0Izp4JNztxYGI.crl (hash: nAPLw1T9OgNeoNJ+lH8fjQxM9YA8GWZbClYbEL7lyks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:41:ae:6b:3f:61:a4:8a:bc:24:0e:b5:9a:e0:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
Validity
Not Before: Nov 11 10:00:39 2025 GMT
Not After : Nov 12 10:00:39 2025 GMT
Subject: CN=2317f8ee9c3dc7cf5e354583399f9e55c3511918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c2:d2:a4:26:17:b0:f8:58:1d:8b:bc:ec:a6:
75:77:10:26:ff:7a:9d:bc:0f:07:1a:d0:61:07:52:
0b:44:58:ac:42:b1:12:7f:34:3c:22:08:3c:e7:5d:
ec:73:ac:48:8b:7b:93:8c:41:96:a9:34:f5:ef:23:
4d:91:5b:ae:83:82:13:70:0c:2a:01:fb:49:03:90:
77:9a:5e:1f:c4:22:3b:71:a3:49:c1:ce:10:73:60:
f7:a3:5a:14:95:8b:1c:70:d4:34:64:75:74:7e:90:
0b:c9:43:b0:1f:a4:57:3f:c2:f3:99:88:c4:b8:3a:
15:5d:c7:f6:f9:c7:61:77:48:cc:21:8d:3c:76:1f:
2a:da:4a:dc:4a:f5:b9:f1:40:a1:15:fa:c4:2c:a4:
0b:8d:53:72:9b:9b:b5:b9:bc:2f:4b:13:18:6a:5c:
44:be:74:69:31:36:d4:ac:32:41:66:99:2f:e0:3c:
fb:78:33:6c:d9:00:22:56:b8:9c:c3:ea:59:77:ce:
ee:aa:de:27:a9:47:87:87:a8:09:d1:24:75:34:25:
3a:01:18:da:12:ce:6d:86:55:f9:49:2f:99:44:58:
e8:dc:be:e8:eb:e3:57:18:ee:0b:c7:38:4b:ac:28:
b7:2a:d9:f8:50:37:d8:ea:9d:c0:00:e6:6a:b9:23:
da:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:17:F8:EE:9C:3D:C7:CF:5E:35:45:83:39:9F:9E:55:C3:51:19:18
X509v3 Authority Key Identifier:
keyid:F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:d8:45:db:7e:44:ff:44:b1:f3:ba:9a:2b:1c:65:48:15:cc:
30:b5:e3:ac:97:eb:a0:e7:26:5a:ae:5a:f7:82:46:87:c0:6e:
49:29:1b:e2:e7:0f:f1:90:f2:bf:24:a3:8c:39:a6:0e:dd:5a:
69:b3:60:bf:af:c0:d8:7a:cb:1c:f6:80:e1:bd:47:dd:a1:b9:
1d:14:6e:d8:10:47:00:9c:09:43:58:89:3c:74:50:23:b6:25:
b9:a7:99:ac:08:e3:08:b2:da:38:37:ec:d4:b4:0b:f9:b3:16:
92:1a:63:cf:4d:0b:5f:11:42:12:75:1d:9d:90:cb:f8:8b:29:
71:a2:9c:33:5b:a6:3c:b9:20:25:b9:33:6a:88:d3:2c:3f:0e:
0c:45:49:d1:3c:c2:1d:5a:e9:05:84:c3:17:0b:8e:c8:b8:14:
50:7e:a4:9b:23:74:b6:f6:f0:49:15:3d:2c:81:04:f2:bb:22:
20:68:ce:6b:24:fb:3c:51:dd:f6:a7:11:03:27:a1:dc:5c:8c:
65:30:cb:70:8c:18:c3:2c:25:73:d8:d7:18:0e:67:e5:93:19:
98:b3:65:c1:77:9c:30:ac:98:61:5d:f1:25:43:1c:de:92:a7:
fc:3f:b9:21:a8:6e:bd:82:82:9c:08:6f:c5:4b:aa:82:e4:04:
da:9f:be:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:20:32 2025 by rpki-client