Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
File: i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft (raw, json)
Hash identifier: sWCs/QKpWpGpJdNzcZfwRJ7HcrAcytHPGFXT5xwkiCQ=
Subject key identifier: 73:59:B8:6A:98:42:EA:57:7E:C3:75:27:F4:90:39:45:23:ED:F5:4B
Authority key identifier: 8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
Certificate issuer: /CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Certificate serial: 019A22F73555AF99FA43465FC8A07A4E56B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
Manifest number: 100D
Signing time: Mon 27 Oct 2025 00:00:17 +0000
Manifest this update: Mon 27 Oct 2025 00:00:17 +0000
Manifest next update: Tue 28 Oct 2025 00:00:17 +0000
Files and hashes: 1: i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl (hash: 0IToHAxpKstp5bEENTZOJwxNaNM3byHHpWW+5rSjaek=)
2: nqo_O7xWpllnpXWgXV-EBK2yLMY.roa (hash: v3gPcs+xtmwPaPJ3A0/t7F8YEQgyHeonW0dBXWdUhwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:f7:35:55:af:99:fa:43:46:5f:c8:a0:7a:4e:56:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Validity
Not Before: Oct 27 00:00:17 2025 GMT
Not After : Oct 28 00:00:17 2025 GMT
Subject: CN=7359b86a9842ea577ec37527f490394523edf54b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:29:11:2c:b9:a7:b9:d5:49:d6:28:4a:31:5a:
05:0b:f1:e3:42:c0:37:17:ed:b1:07:de:10:17:79:
4f:5e:f6:48:e0:b4:8d:2f:3c:54:16:2c:c1:98:d4:
e3:d7:ce:49:8e:c7:86:d1:ba:8a:19:5a:98:ef:97:
d0:ba:c1:4b:65:d9:a6:a8:a8:2b:9b:6b:1e:1f:70:
22:5d:d2:7a:70:cb:dd:f5:50:ec:58:f5:7a:67:60:
11:e0:ae:37:1d:3f:ef:af:90:c6:b5:4b:73:9c:81:
86:b1:84:bb:9d:e8:62:4f:79:89:b5:b7:9c:84:80:
dd:20:52:4e:d0:23:dd:07:b6:b9:fd:27:47:90:a3:
79:6d:59:99:b5:7d:4a:fd:b3:e2:39:26:58:5d:b8:
53:f1:0b:af:a1:be:cd:d3:b5:a1:04:46:3f:58:94:
00:a7:a4:32:54:fb:2c:92:60:3a:e3:18:b9:93:89:
5b:eb:4e:32:57:15:42:10:2f:ec:00:33:37:3f:a5:
46:50:d0:7e:73:97:75:9c:11:89:bd:9a:4d:85:b2:
2f:75:d8:b2:3b:2e:58:e7:2e:4e:4e:d3:89:fb:fa:
52:0c:69:58:09:ff:5d:af:01:f1:bc:da:0d:7e:c3:
1f:2a:61:48:27:b4:af:0d:78:9c:31:c2:a9:b5:7b:
54:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:59:B8:6A:98:42:EA:57:7E:C3:75:27:F4:90:39:45:23:ED:F5:4B
X509v3 Authority Key Identifier:
keyid:8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:8c:ae:24:4c:9f:9e:c4:a4:0e:02:fc:7a:7d:f5:77:8f:39:
0c:a8:61:e1:76:63:59:0f:26:b1:b7:92:76:e3:3a:78:4b:00:
a1:a3:dd:4d:53:c3:e7:d5:61:f9:e7:ba:6a:37:f5:5d:1e:39:
37:79:59:1a:6c:f6:c7:d6:d9:37:0e:9f:2b:72:a0:11:4a:44:
56:c9:b8:f3:a9:f9:bb:de:2d:ce:b4:c6:e3:da:41:e5:bf:4d:
3a:52:73:cf:c1:26:e4:f8:0d:2b:75:83:53:a7:5a:19:10:0e:
70:1d:8f:7f:b3:df:30:14:eb:e3:8e:9c:0f:d8:29:48:10:5e:
47:f9:83:72:17:96:5d:b5:08:70:e9:e6:44:1e:d5:09:18:8d:
b5:fa:4c:02:7c:a0:4f:96:9e:50:ef:ef:89:b0:30:51:86:32:
5a:01:e2:66:6d:ea:a4:8a:19:de:72:b6:5f:6d:8e:89:20:c1:
4d:92:5e:02:19:e2:d6:05:f4:e2:a6:73:91:8a:d7:09:f1:f3:
10:02:a2:45:42:96:71:4b:37:ac:ce:aa:55:da:05:48:9d:93:
9e:5b:fe:df:56:05:d6:57:f5:3e:cb:1b:93:77:ae:8c:f0:b7:
2b:a9:3a:1f:3e:fe:06:72:9f:8b:49:3c:67:8d:6e:9f:f5:4e:
d2:03:9d:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 06:55:53 2025 by rpki-client