Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
File: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft (raw, json)
Hash identifier: a0hC+Yxk7L9Zkm0lLfL2dpMIjf44bYRiTcZTIOvdYSE=
Subject key identifier: D3:BB:CC:D3:BD:D9:7C:B3:94:FA:B9:F9:14:DD:08:B3:15:34:D7:06
Authority key identifier: 4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
Certificate issuer: /CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Certificate serial: 019A71B855FB574C8F74CF31235EB64A6A26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 07:01:37 +0000
Manifest this update: Tue 11 Nov 2025 07:01:37 +0000
Manifest next update: Wed 12 Nov 2025 07:01:37 +0000
Files and hashes: 1: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl (hash: Ev9n2xL6LT/ha54gOL0m3g0059WGVU23Lg0W4/8rbeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:55:fb:57:4c:8f:74:cf:31:23:5e:b6:4a:6a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Validity
Not Before: Nov 11 07:01:37 2025 GMT
Not After : Nov 12 07:01:37 2025 GMT
Subject: CN=d3bbccd3bdd97cb394fab9f914dd08b31534d706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e6:11:a8:8a:c5:57:bf:8d:76:92:a2:bc:84:
f8:39:31:4e:77:20:46:21:92:ce:3d:e0:6d:d0:08:
95:54:bc:58:d9:0b:bd:da:29:79:5d:f9:82:1a:1b:
7a:3d:14:0a:66:21:87:08:cf:3e:bc:c0:ac:44:4f:
00:6f:32:c2:e3:08:52:8d:08:e3:c3:ce:25:cc:cf:
e0:31:89:17:e4:87:10:33:c5:ba:e8:b4:ec:5a:f8:
bc:c7:26:80:ee:83:62:f4:d9:a3:27:dd:0c:b8:4e:
4a:67:c5:4e:76:99:53:b2:93:e0:48:d8:e1:88:fc:
75:fe:dd:9e:ce:b1:99:00:23:b5:e6:a8:1b:33:ce:
74:f2:c9:a0:88:9a:19:f6:44:e6:26:98:bf:0f:c5:
a8:56:dd:0a:5e:96:60:9b:2f:0a:65:29:30:88:08:
a5:57:1c:ec:0e:39:29:d8:c2:28:3a:d5:a3:0d:36:
ec:f5:1b:92:ae:3e:86:94:98:3d:b8:2b:6a:b3:aa:
54:60:dd:95:87:9b:c9:cf:a8:96:97:5f:3e:ae:2c:
ce:73:c7:6b:15:90:19:f5:a2:c7:3c:93:4c:d8:97:
6c:d8:29:37:f4:eb:c1:a7:cd:fa:c8:9c:aa:6b:83:
c8:b7:fe:2d:b4:99:1a:5e:2a:19:bd:9b:c9:ef:84:
d4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BB:CC:D3:BD:D9:7C:B3:94:FA:B9:F9:14:DD:08:B3:15:34:D7:06
X509v3 Authority Key Identifier:
keyid:4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:aa:8e:68:8d:37:4c:66:4b:e9:4b:6f:08:eb:71:72:48:4c:
e3:8b:04:78:7b:91:ae:b8:e9:7f:53:98:a9:97:96:d3:32:ab:
61:c3:a3:9d:6d:ad:ad:db:3c:55:ad:cb:89:84:f5:3a:63:5b:
70:dc:d1:c0:33:35:96:b5:35:cb:0b:cc:4a:c4:75:41:6b:bf:
4f:fb:a7:cc:72:37:78:41:39:b5:c2:d5:7e:eb:d8:81:ae:99:
1b:cc:e4:45:ad:7a:81:fa:17:bf:21:18:85:a4:9b:0b:89:b6:
e2:b1:0a:25:e3:f6:5d:f7:cb:ae:1b:43:f1:94:9e:e0:69:8d:
70:39:8c:94:48:6b:1f:02:be:9b:25:19:20:2f:1b:05:dc:63:
9f:63:a4:8a:ea:5e:e1:e5:70:02:34:6b:e6:bc:69:2e:68:b9:
23:77:d9:15:fb:e2:fa:3f:a8:2c:57:a0:4c:d6:e7:e7:e6:ac:
2d:83:6a:96:a6:e1:b4:4f:7a:40:82:fa:43:28:1b:cb:95:33:
d7:5a:15:94:80:2b:bb:2e:3c:4e:6c:47:23:02:0b:9a:61:80:
31:4b:e1:9c:ce:a0:2d:c6:62:e4:1e:2f:39:0b:01:30:65:d6:
7a:72:5f:4f:6a:62:22:65:b5:d3:e7:f6:46:7f:ea:45:92:f5:
4d:f6:85:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:19:09 2025 by rpki-client