Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft
File: r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft (raw, json)
Hash identifier: Z1XMeV9IaAnjcpetvIxLxcYiJi4m6PN0f/Ty6Lt66PY=
Subject key identifier: E9:3C:FD:BC:12:41:53:D2:FD:D1:E8:AB:8A:BA:3B:9A:54:FA:DB:5E
Authority key identifier: AF:FF:13:A6:7F:22:5C:3C:2A:60:66:58:C2:39:65:B8:19:1D:40:08
Certificate issuer: /CN=afff13a67f225c3c2a606658c23965b8191d4008
Certificate serial: 019A71B7922CC5C1EC9F3702E759604DF13F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_8Tpn8iXDwqYGZYwjlluBkdQAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft
Manifest number: 0D44
Signing time: Tue 11 Nov 2025 07:00:47 +0000
Manifest this update: Tue 11 Nov 2025 07:00:47 +0000
Manifest next update: Wed 12 Nov 2025 07:00:47 +0000
Files and hashes: 1: r_8Tpn8iXDwqYGZYwjlluBkdQAg.crl (hash: CfApBaI5OUphmsrIws4xht4oetWot/CdJ9mzjc80J+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/r_8Tpn8iXDwqYGZYwjlluBkdQAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:92:2c:c5:c1:ec:9f:37:02:e7:59:60:4d:f1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afff13a67f225c3c2a606658c23965b8191d4008
Validity
Not Before: Nov 11 07:00:47 2025 GMT
Not After : Nov 12 07:00:47 2025 GMT
Subject: CN=e93cfdbc124153d2fdd1e8ab8aba3b9a54fadb5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5e:b8:d4:ab:78:bf:8a:67:6d:49:d3:dc:4d:
64:53:42:35:cc:04:8e:80:15:79:2a:e2:a6:ed:4b:
2c:7d:23:af:61:25:81:8f:9b:4f:60:52:80:8a:d3:
ae:a6:32:40:d3:6d:ac:71:a2:5d:0b:21:73:97:19:
12:21:7c:6e:94:51:a3:21:38:10:0a:d3:d0:e6:a1:
9b:a6:3f:34:83:57:7c:32:c8:ec:b3:c9:d5:30:59:
b5:5e:71:83:c2:28:0f:71:a7:79:cb:16:c3:7c:b7:
c9:a8:a7:26:a4:72:90:ae:13:f5:68:e8:cc:20:2c:
45:c8:26:b3:f5:f6:d8:4f:a3:e7:ea:e1:23:56:46:
43:eb:23:b4:b5:51:26:4f:96:5d:59:7c:41:50:d4:
51:f1:d9:36:6f:01:f1:5d:49:fd:61:90:fb:d2:c2:
e1:ac:c9:8c:ba:36:5c:48:f3:72:f5:1b:5f:8a:9c:
56:2b:dd:a4:82:26:23:de:89:91:4e:d7:f2:01:83:
66:34:bb:51:d0:fb:dd:13:a1:06:89:00:cf:07:0b:
77:3f:66:32:86:2e:2c:e6:fd:37:81:4a:8b:ce:09:
60:e8:21:48:1f:c6:58:cb:2c:9c:2a:96:98:d5:43:
28:7b:7b:86:ca:2f:33:f4:f1:e0:76:2e:6c:c2:2d:
b9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:3C:FD:BC:12:41:53:D2:FD:D1:E8:AB:8A:BA:3B:9A:54:FA:DB:5E
X509v3 Authority Key Identifier:
keyid:AF:FF:13:A6:7F:22:5C:3C:2A:60:66:58:C2:39:65:B8:19:1D:40:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_8Tpn8iXDwqYGZYwjlluBkdQAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8f063c-119a-47a0-8b0d-6d2b2ba2a88a/1/r_8Tpn8iXDwqYGZYwjlluBkdQAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:40:92:fb:9b:0b:d3:07:d8:05:c9:0b:53:25:cb:88:d6:62:
ca:1d:55:14:7d:d5:76:63:2d:20:b9:fa:8b:63:3d:34:07:1d:
6a:ce:17:8f:ef:02:e6:b6:92:e3:00:f2:cd:20:cb:b9:89:e2:
f4:ba:bb:9c:bd:b2:f1:df:f3:cd:d0:74:2f:e6:50:8c:06:c5:
20:b8:79:7e:db:48:3c:bd:3a:77:20:d5:8a:b7:99:e7:12:20:
d4:63:9c:31:41:71:83:f9:33:0f:b8:88:dc:a3:cc:48:0c:45:
01:5d:5e:16:24:e1:57:dd:c4:01:6c:46:38:52:c6:32:55:da:
4d:63:e5:15:ef:96:2e:40:60:2d:f2:06:7e:5f:e4:3d:14:a2:
b8:ee:4f:b7:fe:6f:fc:44:64:74:83:bb:5a:8b:95:0c:74:02:
c2:17:f5:51:6f:b1:78:20:ea:0b:25:62:c0:a2:86:57:0e:a8:
06:fa:a8:63:43:19:9e:d1:da:dd:9d:a4:ad:78:87:31:cc:5d:
ef:0e:ec:c8:6f:cf:fe:42:32:59:82:98:3e:f8:4b:a1:00:65:
f6:3b:cc:65:ed:a4:70:a1:5f:4a:d2:47:8b:3e:fe:d0:e4:44:
bb:e3:cd:b8:0e:d5:4e:2f:0a:38:17:36:b7:e7:7a:cd:9e:49:
30:ea:25:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:43:06 2025 by rpki-client