Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
File: 8hWid5SXEbLAHNxmnkDhcTlYVbs.mft (raw, json)
Hash identifier: McxPlnjclCCKxOooW7Z0sBtRsWayqWLPqkJ1oammciA=
Subject key identifier: 01:F8:19:38:06:3D:25:F0:FB:F3:23:E1:9A:44:9E:F3:B3:FC:D8:25
Authority key identifier: F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
Certificate issuer: /CN=f215a277949711b2c01cdc669e40e171395855bb
Certificate serial: 019A70A5691C0C2C11EE0353A14B6F5537C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 02:01:19 +0000
Manifest this update: Tue 11 Nov 2025 02:01:19 +0000
Manifest next update: Wed 12 Nov 2025 02:01:19 +0000
Files and hashes: 1: 8hWid5SXEbLAHNxmnkDhcTlYVbs.crl (hash: McJHQImx8B2ux8zhOCemgDhx0EmuL9HpkRnB44Stg8s=)
2: e9rn6bxSsUmtvRo7sJ4lEtK6S2Q.roa (hash: lsA08XTxVJOQQYnez6W7EOdFIkHihRjO9Y7qKfekirQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:69:1c:0c:2c:11:ee:03:53:a1:4b:6f:55:37:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f215a277949711b2c01cdc669e40e171395855bb
Validity
Not Before: Nov 11 02:01:19 2025 GMT
Not After : Nov 12 02:01:19 2025 GMT
Subject: CN=01f81938063d25f0fbf323e19a449ef3b3fcd825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fc:69:b3:a6:01:cb:9d:d6:df:f3:a7:73:10:
a9:47:e7:79:f7:2e:e7:c2:9e:2a:4b:cd:a9:2d:0b:
70:89:07:e2:68:05:15:22:82:0c:42:91:d3:74:a2:
5b:fe:30:31:23:ea:3a:1a:b8:06:a9:50:73:be:4f:
fb:66:bb:01:08:e5:3e:82:44:37:eb:97:46:04:83:
ff:bb:18:bd:66:4d:1c:b8:a9:c1:e6:74:3a:81:fb:
d8:09:17:e5:a3:25:85:c2:03:45:3c:54:d8:78:bc:
95:ee:81:da:02:08:ed:4b:53:f4:32:3f:03:29:d9:
e7:57:98:d6:37:48:4b:a7:e8:ec:93:4e:3d:3b:f2:
ef:ee:ee:2c:aa:c6:b5:80:a4:f7:62:45:cf:08:6a:
0d:84:d6:34:52:f2:23:fd:8b:45:41:03:69:82:40:
f1:35:ef:8e:a8:35:5f:68:c4:14:78:76:25:68:b0:
d5:c9:d7:a1:1f:7b:56:eb:63:f2:fc:d4:11:9d:6a:
1f:6d:15:12:af:aa:9a:8f:ba:19:d0:5f:75:53:b5:
33:81:93:66:d1:c8:97:d1:0a:65:b5:ae:5f:90:44:
fe:90:e7:55:cd:1c:b9:a5:6a:06:04:67:e4:72:39:
30:68:3e:f8:63:3a:32:f0:f2:49:e4:5a:e6:a7:40:
16:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F8:19:38:06:3D:25:F0:FB:F3:23:E1:9A:44:9E:F3:B3:FC:D8:25
X509v3 Authority Key Identifier:
keyid:F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:79:e0:91:6d:a3:15:e0:e4:aa:fa:8d:17:1e:9e:c1:ce:3a:
61:2e:f9:02:ce:93:f7:99:63:cc:16:e6:55:23:b6:60:55:5d:
a1:57:7a:c2:ca:3b:b4:63:b5:2d:1d:85:fb:c4:74:1b:93:4e:
4d:a3:da:b1:65:07:14:52:b0:8c:c9:2f:b6:8c:fb:f5:24:1a:
7e:bb:02:bd:0c:66:62:f9:52:cf:11:78:81:2a:61:5b:9e:0a:
ee:2f:b6:74:f4:75:04:c0:5e:e2:93:48:4f:3d:8d:b3:cd:0b:
1d:e7:c9:2f:6d:11:4c:92:54:4f:11:c6:00:af:e0:4a:12:17:
91:7a:f9:95:80:43:b7:1d:a2:80:9c:0f:62:79:95:55:4b:8c:
63:4c:38:16:bc:93:5b:d5:69:52:2d:a6:71:41:9d:42:f8:4f:
7d:34:86:77:be:49:ca:ce:c3:a9:62:70:fd:9c:d6:5d:32:fd:
f6:6d:d2:ef:a4:8a:99:74:73:92:2d:81:60:2e:06:39:d3:cc:
b0:f3:b4:70:85:50:6f:e9:17:8e:6d:c1:4b:76:ea:b7:d9:68:
87:28:b7:d3:34:52:70:22:72:3f:11:63:49:59:ca:34:92:f3:
1a:5a:56:67:b1:58:cb:6d:b9:b0:12:34:56:94:93:d4:59:de:
f4:fb:fd:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:26:41 2025 by rpki-client