Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
File: 8nptTTKDKDFyXEjbUYokAPGpJL0.mft (raw, json)
Hash identifier: iA+uMNig8AY7fAYtQPVMqHAWuYZbq4GOv9IvRKmDQzM=
Subject key identifier: 00:6D:7A:A3:58:5A:25:A4:D4:62:69:FA:0D:02:8D:96:F5:B1:D1:E2
Authority key identifier: F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
Certificate issuer: /CN=f27a6d4d32832831725c48db518a2400f1a924bd
Certificate serial: 019A24AF1ECEDC06887C42DA08E0841A0FF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
Manifest number: 1609
Signing time: Mon 27 Oct 2025 08:00:47 +0000
Manifest this update: Mon 27 Oct 2025 08:00:47 +0000
Manifest next update: Tue 28 Oct 2025 08:00:47 +0000
Files and hashes: 1: 8nptTTKDKDFyXEjbUYokAPGpJL0.crl (hash: e9sR3ILBssgBWqvQO5/yvCspVGBnjdit9Q0r8HfSHD8=)
2: m0jbiHxRktR_kE-i3D3woRX2ZsI.roa (hash: fSOohTJ+oYWg/YD/VykP7b8U7lIYd4B0MDv4mOCNuT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:af:1e:ce:dc:06:88:7c:42:da:08:e0:84:1a:0f:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f27a6d4d32832831725c48db518a2400f1a924bd
Validity
Not Before: Oct 27 08:00:47 2025 GMT
Not After : Oct 28 08:00:47 2025 GMT
Subject: CN=006d7aa3585a25a4d46269fa0d028d96f5b1d1e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1c:56:91:78:81:d1:a2:fc:77:f0:79:f7:27:
61:f1:08:81:91:64:9c:79:2f:5c:14:11:14:78:07:
ae:b4:ab:b6:3c:9a:54:f9:86:cf:37:88:d7:cf:8e:
95:c4:75:c9:06:62:0c:b7:e2:3e:b0:8b:8e:f3:9c:
53:43:47:55:44:26:a0:24:29:8b:27:84:93:7b:3c:
24:98:c2:fb:31:b4:84:8f:7d:20:f6:05:c8:5e:80:
ce:03:c2:49:9c:22:76:a5:fc:dd:dc:a4:56:b8:d0:
b7:0b:f8:1a:dd:23:a7:5b:6f:46:be:db:c9:5c:76:
1e:d0:53:d4:ee:1f:c9:27:4c:fa:f2:36:11:8e:7b:
d7:e4:13:a2:96:7b:68:94:e5:f3:30:5e:63:19:42:
6a:cd:43:a9:49:29:14:12:7d:1c:f1:fb:e0:fd:41:
53:45:6e:9d:f5:25:d1:fb:e2:15:9c:bb:5e:85:0e:
d5:d1:32:32:ca:48:41:a2:d2:5d:a1:1b:20:9a:f2:
38:e5:64:cd:5f:87:d7:18:85:0b:03:17:e3:6e:d6:
4e:d5:a4:90:44:61:a9:81:2b:81:63:80:6c:37:d1:
78:fa:3e:33:11:19:11:d9:d1:bf:6f:22:2a:f2:4e:
7e:f7:af:ff:25:7f:44:50:c1:ae:e9:04:5c:bc:93:
1b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:6D:7A:A3:58:5A:25:A4:D4:62:69:FA:0D:02:8D:96:F5:B1:D1:E2
X509v3 Authority Key Identifier:
keyid:F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:27:24:22:32:67:64:31:23:0f:d2:89:5d:cd:9c:ba:49:7c:
d0:cb:10:b5:5d:fe:13:a7:3e:33:4e:0c:63:c8:91:8a:70:cc:
93:04:b3:10:df:f5:18:83:0b:0f:99:12:ad:e6:61:11:86:de:
50:b7:5d:f9:d9:68:92:f9:5c:26:86:d5:d9:fa:fd:d7:c5:ab:
44:5c:f7:4d:f2:a8:30:4e:4d:2b:6d:78:06:1b:10:04:dd:15:
79:f1:bb:b0:dd:e6:ea:80:34:d4:de:ff:32:9a:7d:74:4b:ba:
09:a6:06:7b:6f:57:1d:06:3d:b7:26:76:84:24:94:df:e7:43:
a6:45:d4:9c:49:fd:3c:f6:84:3c:3f:f9:45:8c:2d:11:3d:5b:
40:67:d3:9a:06:0d:e9:03:b8:9e:a8:6f:31:61:0c:b2:e9:b8:
9c:22:a4:dd:ef:14:b3:57:1a:10:bd:99:7d:a5:43:87:4c:82:
83:4f:43:e8:3a:6c:03:a0:6e:c3:6a:1d:b8:68:71:71:5e:61:
c2:80:c6:57:0e:2c:e4:35:6b:20:6b:86:d0:15:77:36:91:c6:
57:7d:c8:b3:6e:61:72:a5:c2:da:23:29:fd:9e:6e:c1:e6:2a:
f0:b7:f5:0d:d7:51:e3:6c:5e:dc:09:53:38:0a:81:6b:89:bd:
8e:38:58:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:09:12 2025 by rpki-client