Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: x2JkkfccUTo+UIo9xNpv96XwERnatphlAw/vnsLBbP4=
Subject key identifier: 7D:D4:AE:07:9E:A8:63:27:AE:FC:C4:3E:E4:27:41:51:E0:7A:2D:63
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019A22C0D7CDE9CC11F1DBCDE1C979BC4E04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 16F5
Signing time: Sun 26 Oct 2025 23:00:54 +0000
Manifest this update: Sun 26 Oct 2025 23:00:54 +0000
Manifest next update: Mon 27 Oct 2025 23:00:54 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: ElKcNRSQThE3vsNtZO08mGMRWfbQopR1QYuEpqAbSTQ=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:d7:cd:e9:cc:11:f1:db:cd:e1:c9:79:bc:4e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Oct 26 23:00:54 2025 GMT
Not After : Oct 27 23:00:54 2025 GMT
Subject: CN=7dd4ae079ea86327aefcc43ee4274151e07a2d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a2:6d:57:a9:00:19:50:3e:36:60:5f:eb:ae:
2c:b5:fe:13:e0:aa:0d:d6:03:76:9a:aa:d5:f3:9b:
ce:ec:65:ee:a7:0f:bc:c7:14:c0:a2:3a:21:20:22:
08:18:85:b9:5f:5a:53:b9:c3:b6:2c:df:ce:18:ca:
04:eb:af:42:45:83:4d:21:23:18:50:26:fe:d2:b7:
c9:7e:b6:e0:97:5c:09:4b:54:36:f4:63:eb:74:63:
c4:4b:d2:93:dd:07:8c:99:ee:b6:d0:7f:cf:55:a7:
90:57:ab:44:8c:47:d5:a4:a9:b5:c9:31:84:6b:94:
fd:38:d2:8f:c3:a1:78:f9:a7:09:f8:9b:bc:dd:a6:
99:66:60:e0:af:98:71:eb:b0:e0:48:ef:aa:0d:9f:
4e:cf:23:97:b9:64:97:8a:10:14:f0:ef:0b:db:c2:
c4:0d:34:8f:f9:2f:7a:63:a4:45:e1:04:bf:71:2d:
5b:f8:b1:f6:cc:ab:47:ce:66:77:eb:17:f8:3b:3d:
1e:18:f1:4b:e3:5c:ac:31:68:f0:53:66:f6:65:57:
53:d4:3c:da:07:d7:1e:bd:af:7c:35:8c:8f:72:1d:
2c:33:f5:7a:f5:48:cb:2d:72:31:f7:f8:f6:04:9c:
5d:d5:55:01:9c:9c:5d:51:f0:b3:62:f9:a3:17:ad:
74:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D4:AE:07:9E:A8:63:27:AE:FC:C4:3E:E4:27:41:51:E0:7A:2D:63
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:6d:70:41:9d:d5:0f:a7:a0:ad:8f:aa:20:d2:39:fa:c7:36:
69:13:a2:5d:a8:15:e8:df:b6:99:fe:f7:89:ba:78:d3:54:33:
0b:14:ec:c9:cb:09:c7:c6:63:5a:38:b1:53:3a:ad:4a:12:9e:
f8:07:cb:34:87:0f:28:f7:e7:71:be:2b:34:a7:c6:03:3b:65:
65:27:95:82:cc:c4:8d:bb:87:bf:38:d4:18:d0:0d:00:ba:c7:
b5:bd:00:75:b7:9c:32:de:01:df:e1:24:53:6c:af:da:ac:1d:
4f:b9:45:e1:8f:0b:e5:bc:97:38:c0:50:3c:54:c9:01:75:15:
3b:43:d7:7a:3e:c3:62:28:96:66:39:c6:47:70:23:13:2c:58:
0e:f7:56:dd:63:93:30:d9:cc:ae:61:3f:d4:d7:5d:e4:dc:20:
ba:45:86:72:7c:62:db:2e:9b:5d:b3:55:ab:da:77:cc:00:77:
5f:ab:31:47:fa:4c:98:1f:9a:37:05:40:cc:04:2f:c8:6b:71:
24:9b:ea:f3:4c:2d:d2:86:36:d9:48:cb:a4:9e:4c:e1:65:46:
8a:a3:1e:63:ac:8f:8f:63:13:6e:a1:c3:50:d2:ce:5a:e3:c9:
a2:5b:83:d3:0b:6b:57:d6:cd:c3:6a:2c:f8:c0:a7:85:b3:88:
6b:a1:d8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:06:12 2025 by rpki-client