Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
File: 8H-pjVIdhMKNrsion3SIu86AAhU.mft (raw, json)
Hash identifier: pD8/MMqycQ69FU0GqfoGdAKWB2BJ1dY+QDMAboGVeZY=
Subject key identifier: F6:19:7A:03:7C:CE:B7:86:5E:C7:5C:9F:11:85:B0:F9:7F:50:2B:9A
Authority key identifier: F0:7F:A9:8D:52:1D:84:C2:8D:AE:C8:A8:9F:74:88:BB:CE:80:02:15
Certificate issuer: /CN=f07fa98d521d84c28daec8a89f7488bbce800215
Certificate serial: 019921B0839FF55803D7C2DB8D40F58204D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8H-pjVIdhMKNrsion3SIu86AAhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
Manifest number: 0294
Signing time: Sun 07 Sep 2025 01:00:40 +0000
Manifest this update: Sun 07 Sep 2025 01:00:40 +0000
Manifest next update: Mon 08 Sep 2025 01:00:40 +0000
Files and hashes: 1: 8H-pjVIdhMKNrsion3SIu86AAhU.crl (hash: 9K43ETPXOov518DpOVxsigpmMQ2J1ELHWnfaT9n5Wmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
rsync://rpki.ripe.net/repository/DEFAULT/8H-pjVIdhMKNrsion3SIu86AAhU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:83:9f:f5:58:03:d7:c2:db:8d:40:f5:82:04:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f07fa98d521d84c28daec8a89f7488bbce800215
Validity
Not Before: Sep 7 01:00:40 2025 GMT
Not After : Sep 8 01:00:40 2025 GMT
Subject: CN=f6197a037cceb7865ec75c9f1185b0f97f502b9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:70:9d:1e:28:d3:1f:95:e9:bc:90:81:15:09:
7b:eb:a0:72:4c:ee:33:12:fd:17:59:f5:6c:35:ac:
85:82:b4:96:61:14:cb:23:1a:7a:df:85:23:53:83:
97:a2:0b:01:21:89:17:b2:ba:f4:9b:1c:1c:60:f9:
38:fd:02:ce:58:44:1b:aa:f8:a1:20:13:bd:ef:a1:
4e:ef:e7:09:7f:ba:b4:34:16:af:6c:86:5b:e1:1c:
19:58:a0:29:38:8e:bd:e0:b0:52:16:67:de:69:4e:
96:01:c5:01:ed:b6:57:75:05:f3:48:93:08:a5:cc:
ce:7a:fd:d8:b2:69:bd:32:be:f3:83:16:36:9b:f3:
3c:9e:12:55:14:f9:c6:4d:93:e7:87:c1:dc:86:b2:
44:2f:a4:fb:83:28:e2:f4:fe:ff:cd:85:ab:3d:8f:
96:88:fe:09:bb:10:ca:b4:c4:73:c8:70:0b:72:5a:
2c:9c:9d:57:ec:9f:71:48:a4:05:64:88:e1:bd:ad:
31:2a:4a:8a:76:e0:e9:56:52:57:7a:a6:c8:00:45:
17:42:59:24:18:9b:76:5b:e1:e2:a3:60:6a:ea:f5:
68:fb:70:0c:c4:48:f6:29:3c:d6:13:5e:4f:af:ea:
08:09:df:18:5b:04:41:20:69:bf:da:24:83:de:a7:
67:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:19:7A:03:7C:CE:B7:86:5E:C7:5C:9F:11:85:B0:F9:7F:50:2B:9A
X509v3 Authority Key Identifier:
keyid:F0:7F:A9:8D:52:1D:84:C2:8D:AE:C8:A8:9F:74:88:BB:CE:80:02:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8H-pjVIdhMKNrsion3SIu86AAhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:70:be:af:50:28:36:30:d8:3a:09:fd:0f:06:9f:b9:49:7c:
71:4f:28:77:06:86:35:b4:3c:59:a7:65:5a:29:f5:16:00:6a:
e7:21:70:cf:07:fa:fe:53:0f:b4:fd:97:32:ba:99:ff:12:d3:
e6:33:6c:8a:12:04:98:af:8a:1e:9b:ed:a1:fd:e1:a4:19:7d:
28:24:db:b3:e0:d6:dd:bf:89:f7:6b:50:6a:58:b7:cb:b6:40:
ce:8b:39:68:ea:9c:6f:17:ac:95:d2:35:54:ea:da:86:ae:71:
f5:ac:2a:de:f7:2a:89:48:4d:e9:7e:a8:52:eb:db:12:c0:2c:
1b:dc:0d:11:0c:3f:44:19:c7:6b:ed:89:b5:f2:27:c1:4a:f9:
53:2d:1e:57:02:f5:1a:7a:83:1b:c4:43:9a:c2:9d:bc:fb:d4:
3d:bf:67:29:cd:e8:86:5f:c9:19:46:33:33:a9:ae:2c:a5:41:
8a:8f:a6:e0:ba:cc:6c:58:b8:3c:e4:01:33:78:db:0b:3e:a2:
9c:a4:b5:bc:7a:ca:f1:a0:ab:d4:da:54:3a:af:f8:c3:d7:eb:
6c:39:e6:65:39:9f:fa:4d:69:d9:87:87:62:6b:8c:1d:56:f9:
6a:ec:7c:3f:18:c7:51:19:f2:cf:78:76:91:92:7d:66:eb:55:
7f:24:d4:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:53:06 2025 by rpki-client