Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft
File: r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft (raw, json)
Hash identifier: zQ6AR3zG8PMEA4c7sSYaWxDq6sG/Rp4LFAfskkqrc/A=
Subject key identifier: 62:9F:7F:73:F1:76:25:C6:4B:C7:A5:33:3F:82:07:59:C7:34:FF:B1
Authority key identifier: AF:FF:13:A6:7F:22:5C:3C:2A:60:66:58:C2:39:65:B8:19:1D:40:08
Certificate issuer: /CN=afff13a67f225c3c2a606658c23965b8191d4008
Certificate serial: 019921B253A4F70F30F0F7E5D9A0F03E3969
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_8Tpn8iXDwqYGZYwjlluBkdQAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft
Manifest number: 0C96
Signing time: Sun 07 Sep 2025 01:02:38 +0000
Manifest this update: Sun 07 Sep 2025 01:02:38 +0000
Manifest next update: Mon 08 Sep 2025 01:02:38 +0000
Files and hashes: 1: r_8Tpn8iXDwqYGZYwjlluBkdQAg.crl (hash: eHdFrUmGJT/vPyh/0+Q55WNtgre+BMFoKZTAKbcDO8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/r_8Tpn8iXDwqYGZYwjlluBkdQAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:53:a4:f7:0f:30:f0:f7:e5:d9:a0:f0:3e:39:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afff13a67f225c3c2a606658c23965b8191d4008
Validity
Not Before: Sep 7 01:02:38 2025 GMT
Not After : Sep 8 01:02:38 2025 GMT
Subject: CN=629f7f73f17625c64bc7a5333f820759c734ffb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a5:35:86:b8:10:5a:9f:54:97:78:dc:a5:02:
5c:a7:42:b7:03:1b:c2:78:08:09:22:cb:7a:ca:3a:
70:c4:53:a5:d2:41:91:75:df:50:a2:5b:f1:45:a8:
c6:60:df:e4:ff:60:49:1b:64:35:e6:db:c0:a5:92:
63:81:e6:b1:09:95:32:dd:ba:ec:c3:97:42:c0:21:
21:0e:93:92:60:f1:5f:4d:8a:e4:ed:7b:95:50:bd:
2e:25:95:a3:91:fa:79:61:bb:d2:ac:a6:25:f1:55:
f9:9b:a1:79:60:2b:29:7c:fd:13:b8:e7:80:86:fc:
5c:ec:20:b9:ba:30:f0:58:c4:e1:71:6d:79:61:ca:
c1:0f:a2:f0:59:8d:24:52:8f:d7:dd:31:fd:39:1c:
8a:29:63:66:16:a4:df:e2:15:23:d7:46:d7:3d:2e:
7d:79:4a:68:4e:63:40:7b:6c:71:34:c6:ba:33:1a:
f1:c0:63:cb:88:0a:be:6d:4c:57:24:d8:cf:12:00:
79:80:21:95:30:01:27:a8:e7:f5:20:dd:6c:2f:f8:
ce:d1:1b:e6:58:63:bf:04:d1:57:76:e8:9f:d1:f1:
7b:7b:54:20:a3:aa:42:82:6d:ba:68:8d:d4:6e:eb:
a3:b9:d2:e1:cf:9d:64:59:48:c6:c3:55:f4:2b:b7:
59:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:9F:7F:73:F1:76:25:C6:4B:C7:A5:33:3F:82:07:59:C7:34:FF:B1
X509v3 Authority Key Identifier:
keyid:AF:FF:13:A6:7F:22:5C:3C:2A:60:66:58:C2:39:65:B8:19:1D:40:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_8Tpn8iXDwqYGZYwjlluBkdQAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:4d:4c:93:b4:c9:ee:d2:f4:37:9a:69:4c:eb:fc:0d:50:d5:
a4:26:a2:b0:4a:92:08:47:ed:1a:df:00:86:4e:bc:1a:44:e6:
f9:9c:25:94:0e:8a:b9:f5:03:81:c8:ff:cf:45:9d:bc:1a:28:
e6:91:af:56:2b:7e:fe:11:e4:54:ec:f1:fb:04:f7:e1:82:d1:
4d:5b:8e:3e:dc:3c:15:b7:c4:61:83:0f:a5:ec:c1:82:25:39:
4c:c6:84:b8:1e:52:1f:02:ed:ab:af:ed:1a:59:2a:8d:67:ff:
2f:ce:3c:33:75:7b:ea:d0:67:1a:0c:d4:54:dd:a3:04:42:18:
0a:e0:d1:07:81:15:7d:ca:28:e8:3c:d4:38:6f:a9:3c:07:3b:
b4:f7:24:ce:84:a8:85:65:4f:34:f4:7c:6f:eb:b2:67:da:74:
4d:f4:99:fb:b7:93:29:f8:8a:36:b4:2b:8b:b6:e6:70:95:0e:
bb:89:46:d0:6c:02:ec:6a:80:4a:2c:a3:ba:55:aa:d6:ff:e0:
1e:d4:ce:b7:d1:84:e5:d7:49:13:c0:dc:00:3f:59:4f:41:a6:
70:cb:66:46:87:57:c4:70:08:b7:94:9b:8e:58:fc:f4:55:47:
15:37:f5:4b:4c:a0:2a:c0:c2:c2:fa:dc:37:b6:e8:9d:26:8e:
97:2d:3c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:50:49 2025 by rpki-client