Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
File: 8gI-dqaOpsn3DT6nLfhOU9whck8.mft (raw, json)
Hash identifier: WAZTXpw9b/lewDC2nTiXRFxmOiRHGOoklVHIHBKsHm0=
Subject key identifier: 29:6C:66:DD:4A:80:51:8B:07:3F:8B:3F:39:F4:23:63:22:84:09:68
Authority key identifier: F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
Certificate issuer: /CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Certificate serial: 019A71B873525AC97B14E2F5F9064B8F5E08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
Manifest number: 0F73
Signing time: Tue 11 Nov 2025 07:01:44 +0000
Manifest this update: Tue 11 Nov 2025 07:01:44 +0000
Manifest next update: Wed 12 Nov 2025 07:01:44 +0000
Files and hashes: 1: 8gI-dqaOpsn3DT6nLfhOU9whck8.crl (hash: 4On+HDVOf00VHuuNcCl/Mn1+VExKyfoUmW8ihFSrsHY=)
2: xmm2JL7TcI6ebRwScNNxmj8JWuo.roa (hash: fkFUQl1m0mbIlDS4H4YUitr8IcfvKPdCtORJm2ZIyMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:73:52:5a:c9:7b:14:e2:f5:f9:06:4b:8f:5e:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Validity
Not Before: Nov 11 07:01:44 2025 GMT
Not After : Nov 12 07:01:44 2025 GMT
Subject: CN=296c66dd4a80518b073f8b3f39f4236322840968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fa:fd:f8:49:0e:91:6b:18:32:4b:43:96:3c:
61:e4:f5:65:8f:4d:f0:ea:15:e0:0d:b3:bd:cb:f1:
d2:2c:66:a0:cb:60:a2:af:73:1b:70:ff:42:63:66:
ad:dd:83:34:3a:f9:40:e7:55:9d:d7:ba:54:95:9e:
72:25:0e:bf:37:b5:ad:1b:fb:63:fa:ca:b6:1f:f6:
2f:0b:e2:ef:dc:bf:d1:51:66:bd:cf:8b:f9:63:d9:
73:0a:3d:36:29:7c:7c:53:95:26:b9:d2:b2:d4:05:
20:a9:f3:1a:bb:f0:e6:4e:02:67:1a:bc:60:a8:a2:
a2:55:12:93:6e:ab:8b:38:4b:d1:0c:ce:b2:92:80:
eb:84:3a:c4:57:55:51:f3:d0:6a:20:4f:f0:82:fc:
27:69:f7:55:e8:2a:f1:a2:cc:6d:52:33:30:f5:17:
19:42:37:5b:1d:03:f9:38:b9:8b:3b:c7:ef:83:00:
d3:05:7e:37:de:de:f6:10:d7:65:3d:cb:dd:a2:c6:
3a:84:fa:dc:bc:63:14:31:5c:04:3b:4d:07:ba:24:
f9:94:74:0d:26:9a:69:40:e7:a9:21:d1:6f:70:fd:
da:5b:04:a7:3c:00:c2:63:11:d6:b5:39:ac:40:10:
4f:9d:be:f8:8a:d1:3f:e5:57:d6:9c:2a:a9:d1:eb:
df:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:6C:66:DD:4A:80:51:8B:07:3F:8B:3F:39:F4:23:63:22:84:09:68
X509v3 Authority Key Identifier:
keyid:F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:78:d9:ba:1f:e4:98:f7:3e:09:c5:8e:7e:26:f3:e1:40:cb:
d7:7b:92:f0:8a:13:e1:2e:50:c5:32:26:c8:cf:8d:e1:c4:c2:
f5:0d:0e:29:59:55:4e:10:56:8a:db:9a:f0:a9:0e:6f:2f:12:
45:d8:fb:a5:05:db:0b:a8:da:f0:b9:54:9f:7b:98:03:be:22:
74:01:6b:2a:ca:e5:40:df:bb:f7:18:9c:af:cb:e4:51:89:cf:
48:5f:2a:a8:ab:66:e2:a6:a4:a1:99:af:f3:00:e4:61:7e:ae:
b0:f5:c2:8a:47:57:16:8c:ae:6e:51:b5:08:3a:bf:51:89:52:
b8:3b:c7:47:e6:6b:b3:ff:62:f5:69:33:ff:fa:ac:a6:30:60:
9a:9f:4b:5b:9e:8c:fd:f6:4e:61:32:54:7b:a1:66:57:8a:42:
70:ba:c4:28:9a:4d:cb:f0:e4:34:31:aa:c5:88:72:13:1e:80:
71:45:3a:76:51:dc:dd:33:5c:45:fb:e6:83:9b:ad:1a:26:cf:
8f:33:4a:f7:93:3d:cf:8c:b5:46:3c:ad:37:a6:ce:38:96:c9:
10:62:c7:2f:d0:f5:5d:c5:d4:7d:37:a0:c4:f0:cf:ce:c9:56:
ee:05:5a:95:34:fb:31:10:9a:cc:8c:2a:b5:c0:08:6d:b5:d4:
2b:61:6e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:48:56 2025 by rpki-client