Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: N6hrz9c8LtsmFhdHqvTdM/2GtPQ7b8kF07Ke6VAYbyU=
Subject key identifier: AE:AB:86:39:08:98:CC:7C:2D:A9:64:EB:C3:77:DE:64:AE:73:B6:11
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 019A2BC37C6965B952843C5475F6B63FC5DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 0A8C
Signing time: Tue 28 Oct 2025 17:00:22 +0000
Manifest this update: Tue 28 Oct 2025 17:00:22 +0000
Manifest next update: Wed 29 Oct 2025 17:00:22 +0000
Files and hashes: 1: eG2Sz-NBLwpAqaii4LbUZ-cWycY.roa (hash: uPzFHNSnB/27/j7jzNn6SSjG0qijsqzpue+Zsmabwu4=)
2: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: 3Z8xIxTVbLpraEYoWdM4w5jXH2x86GC3KJuMaTWupjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2b:c3:7c:69:65:b9:52:84:3c:54:75:f6:b6:3f:c5:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: Oct 28 17:00:22 2025 GMT
Not After : Oct 29 17:00:22 2025 GMT
Subject: CN=aeab86390898cc7c2da964ebc377de64ae73b611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:67:87:e4:1c:49:91:92:c8:99:27:1e:8b:
6a:06:87:30:a2:89:3b:1c:a9:55:1e:27:2f:8b:32:
e5:86:42:9b:71:76:a8:69:14:4e:aa:06:15:a1:40:
e4:80:d1:fd:57:32:61:5a:e1:85:72:ca:92:b9:dd:
04:29:68:a4:25:50:4d:c1:75:e2:c6:ce:1b:88:6d:
ba:9b:a1:5c:52:6a:60:11:57:28:45:03:17:7e:99:
c9:5f:a0:ae:86:f1:b2:55:ae:a6:dd:cc:b1:62:07:
58:e1:1a:f6:52:be:b0:67:49:d7:9d:0e:34:cc:04:
72:b7:79:53:d6:06:b3:32:05:e7:ac:7f:d7:47:12:
22:4f:e3:0e:06:da:77:b5:fe:98:38:d0:cd:45:2b:
70:b5:fe:e5:4e:d7:51:90:71:a2:b6:29:da:34:cf:
cb:e0:9b:d5:5a:85:3a:8e:da:6b:17:76:5e:71:17:
62:df:bd:c6:69:64:c5:24:d4:11:60:8c:38:5c:c4:
ee:61:a2:c8:7a:9c:52:28:7d:d2:c8:9a:01:9d:28:
9f:4b:46:31:fc:fa:2c:8b:53:9c:26:2d:1c:9d:ff:
3a:cf:1e:60:3b:3a:dd:cf:f3:5c:b4:10:3a:23:81:
cb:c6:f4:74:c5:c2:65:5e:7d:5c:fd:1b:38:94:b7:
ff:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:AB:86:39:08:98:CC:7C:2D:A9:64:EB:C3:77:DE:64:AE:73:B6:11
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:a1:be:23:f4:31:b4:dd:de:e6:1d:7d:36:3c:d1:89:84:ab:
18:13:3e:d0:45:15:12:c3:a7:1a:46:29:8a:87:8c:7e:7a:d0:
17:e9:ea:ae:7a:63:9e:b8:c1:81:47:f3:c7:a6:a7:55:1b:b5:
82:df:53:5e:56:93:0d:ed:a3:ad:f1:44:aa:48:28:11:8b:1b:
50:3d:ce:ac:8d:c5:84:09:f9:bb:90:92:f3:8a:7b:d0:4d:a5:
96:e0:09:f5:40:78:7c:fa:73:e3:b5:2b:34:78:41:86:78:26:
82:34:db:8f:51:08:4f:7b:c0:e9:fa:52:f1:7b:ad:16:ea:63:
8b:b3:8e:c3:e2:f7:8a:8b:f8:49:11:40:6b:f7:c3:0a:fc:56:
1b:82:8d:4c:57:54:c4:74:74:4f:4f:51:8e:65:5e:12:08:ee:
3b:a5:7a:7d:fb:b1:55:68:45:5f:9b:f6:a3:a8:75:e2:c0:bd:
9e:4b:b7:b6:26:5f:78:32:9a:7a:c6:7c:ed:ed:11:52:7e:6d:
33:dd:55:e1:28:6e:9e:d2:4a:02:6e:4b:83:77:ae:41:27:b6:
4e:b7:30:48:8c:d4:14:e0:4b:08:b5:97:6c:36:7f:9b:e3:2e:
19:b3:fb:2c:a8:23:21:f3:93:d4:ab:a0:02:8f:ed:34:ae:7e:
f0:a8:42:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 21:12:08 2025 by rpki-client