Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
File: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft (raw, json)
Hash identifier: 08fyogOSgM72ZZKF8hQQAWKKHKVyeudFSOHu0xDK/RE=
Subject key identifier: 05:E9:01:AB:69:1F:18:1D:1D:5E:46:DD:C3:D9:BD:AD:18:7F:D4:24
Authority key identifier: F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
Certificate issuer: /CN=f0ac0ce700b17d499e898ec7a14730405157c478
Certificate serial: 019922FA4AA7EECA13815A7C55FF4CCB9385
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 07:00:52 +0000
Manifest this update: Sun 07 Sep 2025 07:00:52 +0000
Manifest next update: Mon 08 Sep 2025 07:00:52 +0000
Files and hashes: 1: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl (hash: tgNkOqVUVXGtXYvO7ypxY67lxnY5KoZ4WpZ/5w8Ftu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:4a:a7:ee:ca:13:81:5a:7c:55:ff:4c:cb:93:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ac0ce700b17d499e898ec7a14730405157c478
Validity
Not Before: Sep 7 07:00:52 2025 GMT
Not After : Sep 8 07:00:52 2025 GMT
Subject: CN=05e901ab691f181d1d5e46ddc3d9bdad187fd424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:2d:8f:01:e8:e0:e5:47:d7:8e:c8:1b:9b:9c:
1d:5e:5e:39:55:d9:41:33:d9:00:cd:21:b4:bb:ae:
4c:68:13:cd:5a:c5:93:81:a4:b8:56:84:17:cd:7d:
8a:cd:d6:f9:b5:91:c1:30:0f:96:5c:00:a1:f9:56:
95:20:4a:e6:7c:c0:2a:48:c4:d4:fd:5f:78:40:73:
b3:87:e5:83:25:9c:b7:24:1c:d5:48:63:e9:5d:0e:
c6:5d:c1:aa:73:93:4d:89:da:d1:b7:55:95:ff:d7:
b7:94:76:d0:1b:da:25:ce:bf:e3:49:2f:00:47:e3:
97:38:c0:e5:3a:a7:b0:c1:a0:01:86:a4:90:6e:5f:
04:45:68:90:cb:77:52:3a:10:40:9c:ad:67:08:83:
98:49:d3:f6:02:7d:c3:18:d9:79:9a:22:08:98:48:
90:92:c3:1b:27:68:d4:78:09:c9:90:98:56:29:e4:
c8:c4:cd:ec:01:75:17:2c:76:c8:16:a1:46:54:96:
52:c1:e5:58:a4:97:18:8e:bf:7c:27:aa:dc:f5:64:
6b:32:de:3c:1b:b6:66:f0:aa:c4:ef:57:6f:19:a2:
fa:3d:2b:cf:79:1d:fe:75:1b:79:31:1d:47:7e:c5:
77:91:e8:1c:a9:e8:f7:d8:fc:3e:76:ce:00:10:53:
43:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:E9:01:AB:69:1F:18:1D:1D:5E:46:DD:C3:D9:BD:AD:18:7F:D4:24
X509v3 Authority Key Identifier:
keyid:F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:80:af:68:4e:6e:b1:41:9e:9e:7d:b3:a2:ad:dc:83:46:01:
69:2d:05:c1:ec:7a:83:86:1b:42:55:a8:e7:6a:e2:4e:69:15:
1c:f3:08:c9:e1:c0:7a:bc:d1:0e:35:89:81:7d:10:24:e7:75:
f7:19:46:19:cf:15:a2:ab:5e:e7:e7:1c:ac:f6:c3:85:2e:25:
b3:c9:ec:e6:0b:9e:40:21:86:bf:e7:16:02:cc:d8:1d:a9:a0:
e9:07:38:32:fb:21:4a:fc:b7:9b:d0:b9:cd:13:b7:19:8f:13:
a7:30:e7:47:c8:e4:dc:bd:f4:bd:c0:90:d0:91:e1:3f:0a:ef:
78:a2:62:2f:53:7d:71:6e:21:01:53:41:30:87:71:79:92:17:
23:1f:45:c0:6c:47:e3:c9:2b:f4:91:6c:25:03:2d:fe:88:65:
b3:9a:84:75:af:59:3a:97:23:76:c9:0b:70:1d:57:e5:71:aa:
0f:40:04:a5:17:f7:c6:ee:36:2e:b7:d2:91:f1:1b:e6:d5:7e:
e3:69:26:1c:2c:15:a2:5c:58:23:aa:af:42:cc:19:de:c4:f7:
da:a1:39:26:c0:f3:36:bc:f5:c6:7a:2c:fd:3a:d2:e5:c4:44:
d6:fd:8a:aa:30:ef:09:1e:37:32:bb:8b:9a:1b:d0:f4:31:7c:
7d:60:7b:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+kqn7soTgVp8Vf9My5OFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwYWMwY2U3MDBiMTdkNDk5ZTg5OGVjN2ExNDczMDQwNTE1
N2M0NzgwHhcNMjUwOTA3MDcwMDUyWhcNMjUwOTA4MDcwMDUyWjAzMTEwLwYDVQQD
EygwNWU5MDFhYjY5MWYxODFkMWQ1ZTQ2ZGRjM2Q5YmRhZDE4N2ZkNDI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6y2PAejg5UfXjsgbm5wdXl45VdlB
M9kAzSG0u65MaBPNWsWTgaS4VoQXzX2Kzdb5tZHBMA+WXACh+VaVIErmfMAqSMTU
/V94QHOzh+WDJZy3JBzVSGPpXQ7GXcGqc5NNidrRt1WV/9e3lHbQG9olzr/jSS8A
R+OXOMDlOqewwaABhqSQbl8ERWiQy3dSOhBAnK1nCIOYSdP2An3DGNl5miIImEiQ
ksMbJ2jUeAnJkJhWKeTIxM3sAXUXLHbIFqFGVJZSweVYpJcYjr98J6rc9WRrMt48
G7Zm8KrE71dvGaL6PSvPeR3+dRt5MR1HfsV3kegcqej32Pw+ds4AEFNDBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAXpAatpHxgdHV5G3cPZva0Yf9QkMB8GA1UdIwQY
MBaAFPCsDOcAsX1JnomOx6FHMEBRV8R4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEt3TTV3Q3hmVW1laVk3SG9VY3dRRkZYeEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC84ZmIyYTYtY2FlNS00ZjM5LWE4NTgt
N2U0NmNjMzcwMWI5LzEvOEt3TTV3Q3hmVW1laVk3SG9VY3dRRkZYeEhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC84ZmIyYTYtY2FlNS00ZjM5LWE4NTgtN2U0NmNjMzcwMWI5
LzEvOEt3TTV3Q3hmVW1laVk3SG9VY3dRRkZYeEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiYCvaE5u
sUGenn2zoq3cg0YBaS0Fwex6g4YbQlWo52riTmkVHPMIyeHAerzRDjWJgX0QJOd1
9xlGGc8Voqte5+ccrPbDhS4ls8ns5gueQCGGv+cWAszYHamg6Qc4MvshSvy3m9C5
zRO3GY8TpzDnR8jk3L30vcCQ0JHhPwrveKJiL1N9cW4hAVNBMIdxeZIXIx9FwGxH
48kr9JFsJQMt/ohls5qEda9ZOpcjdskLcB1X5XGqD0AEpRf3xu42LrfSkfEb5tV+
42kmHCwVolxYI6qvQswZ3sT32qE5JsDzNrz1xnos/TrS5cRE1v2KqjDvCR43MruL
mhvQ9DF8fWB7QA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:56 2025 by rpki-client