Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: 1dIYN5Kdfq2cj90rgzmud5x5pxVrK0YTyMXTuuMx1/E=
Subject key identifier: AB:3F:B1:76:79:7B:8B:B1:42:EA:9B:DE:A7:E1:5B:9A:52:71:41:00
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 0199315AAF1E62C0E9C20E5F098105AA23EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 1678
Signing time: Wed 10 Sep 2025 02:00:50 +0000
Manifest this update: Wed 10 Sep 2025 02:00:50 +0000
Manifest next update: Thu 11 Sep 2025 02:00:50 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: xNZBdSo4aQXox58tnRmViW5h/ZHJNjeALH5shexURXo=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:5a:af:1e:62:c0:e9:c2:0e:5f:09:81:05:aa:23:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Sep 10 02:00:50 2025 GMT
Not After : Sep 11 02:00:50 2025 GMT
Subject: CN=ab3fb176797b8bb142ea9bdea7e15b9a52714100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:89:84:52:50:13:74:4c:53:b0:56:13:0d:bc:
1d:1c:5a:fc:ae:5e:de:3d:da:84:76:9a:fd:e3:86:
51:ad:cf:e9:c4:3e:0f:f7:4a:ad:e1:11:17:dd:04:
e4:68:ed:51:d2:b0:bd:99:ab:05:ce:96:09:56:7c:
3c:9e:8b:f7:7d:f4:74:7b:b1:72:11:51:37:27:38:
7d:ba:5c:f3:1a:28:f6:f8:bd:31:d6:04:c2:b1:0d:
d1:ea:a6:ab:d6:2a:b3:cd:01:9a:2f:db:28:9c:6d:
06:49:6e:a0:77:0f:7e:be:6c:b6:af:30:da:e0:cb:
e8:d9:a7:63:59:25:f1:59:91:45:49:96:b0:10:12:
57:0b:3f:23:1c:8b:86:33:6c:ac:fd:f8:0c:c8:76:
9f:9e:a3:fa:22:b7:74:04:67:e5:d3:d2:29:64:ea:
9d:c4:8c:df:1b:80:08:9a:b4:90:db:2d:f0:cf:4c:
5f:64:7b:f3:37:2a:20:0e:d1:ab:4c:8a:c0:e0:1c:
e0:21:23:b0:9d:04:36:45:9d:05:51:9c:6b:2b:a7:
a4:8d:82:63:58:c5:93:7b:54:79:16:ea:ff:89:49:
92:53:6e:6a:9e:7c:7a:eb:34:24:ed:08:81:a3:66:
4a:2e:32:a0:a6:58:1d:0c:2f:4e:fa:a6:e4:6d:99:
f8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:3F:B1:76:79:7B:8B:B1:42:EA:9B:DE:A7:E1:5B:9A:52:71:41:00
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:bc:8e:43:0d:1a:c6:f5:99:d5:8c:d2:b3:fe:2b:e6:85:1f:
89:90:a9:e7:39:52:2c:4e:b0:00:0b:1d:6d:9f:54:6c:d5:81:
59:0f:35:7a:7c:ae:5c:ae:68:1e:08:2b:04:cd:96:57:f4:19:
5a:16:dc:8c:1a:37:f5:cf:3e:60:7b:f8:77:81:c4:46:7a:3f:
f0:75:87:11:b7:a7:f9:28:93:dc:44:2e:80:47:47:41:05:c6:
e0:1d:d7:01:5d:2c:7d:de:fb:c1:f4:62:7c:bf:d6:09:92:55:
78:f0:4e:b5:16:61:cb:9b:85:eb:4c:b6:c1:06:67:7b:65:33:
0e:6b:e5:af:2a:ce:cb:b4:8a:11:ac:a3:03:4e:6b:4c:00:b7:
ac:b8:9c:b3:17:e3:c5:54:b3:eb:31:86:74:88:41:2c:2a:83:
e8:87:9f:a3:c0:31:e6:4a:de:85:ea:d4:c6:b7:f4:02:6f:99:
de:8c:3a:4d:08:32:05:be:16:0e:12:78:79:a4:69:2c:25:9c:
d2:85:6f:b0:f5:ab:18:ed:79:69:76:b8:45:fb:12:18:6d:91:
ed:8f:54:2b:ab:53:07:0f:3c:2b:08:23:99:2a:c3:93:e0:57:
4f:44:02:66:7e:b6:9f:31:4c:d8:6f:e7:40:ca:21:ff:f2:20:
29:2f:a7:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkxWq8eYsDpwg5fCYEFqiPsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzMzkzNDNjYzZkNTFkZGI4ZTM2MzgyOTlhMWJiNDk1ZjQ1
ODA5MjEwHhcNMjUwOTEwMDIwMDUwWhcNMjUwOTExMDIwMDUwWjAzMTEwLwYDVQQD
EyhhYjNmYjE3Njc5N2I4YmIxNDJlYTliZGVhN2UxNWI5YTUyNzE0MTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4mEUlATdExTsFYTDbwdHFr8rl7e
PdqEdpr944ZRrc/pxD4P90qt4REX3QTkaO1R0rC9masFzpYJVnw8nov3ffR0e7Fy
EVE3Jzh9ulzzGij2+L0x1gTCsQ3R6qar1iqzzQGaL9sonG0GSW6gdw9+vmy2rzDa
4Mvo2adjWSXxWZFFSZawEBJXCz8jHIuGM2ys/fgMyHafnqP6Ird0BGfl09IpZOqd
xIzfG4AImrSQ2y3wz0xfZHvzNyogDtGrTIrA4BzgISOwnQQ2RZ0FUZxrK6ekjYJj
WMWTe1R5Fur/iUmSU25qnnx66zQk7QiBo2ZKLjKgplgdDC9O+qbkbZn45wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKs/sXZ5e4uxQuqb3qfhW5pScUEAMB8GA1UdIwQY
MBaAFPM5NDzG1R3bjjY4KZobtJX0WAkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDIt
Mzc3ZDI1YmU1OTRkLzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDItMzc3ZDI1YmU1OTRk
LzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADryOQw0a
xvWZ1YzSs/4r5oUfiZCp5zlSLE6wAAsdbZ9UbNWBWQ81enyuXK5oHggrBM2WV/QZ
WhbcjBo39c8+YHv4d4HERno/8HWHEben+SiT3EQugEdHQQXG4B3XAV0sfd77wfRi
fL/WCZJVePBOtRZhy5uF60y2wQZne2UzDmvlryrOy7SKEayjA05rTAC3rLicsxfj
xVSz6zGGdIhBLCqD6Iefo8Ax5kreherUxrf0Am+Z3ow6TQgyBb4WDhJ4eaRpLCWc
0oVvsPWrGO15aXa4RfsSGG2R7Y9UK6tTBw88KwgjmSrDk+BXT0QCZn62nzFM2G/n
QMoh//IgKS+nGQ==
-----END CERTIFICATE-----
Generated at Wed Sep 10 08:08:19 2025 by rpki-client