Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
File: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft (raw, json)
Hash identifier: XsBzMpQgcPyURHD0P/KSGsyU/RabV+2sZJM3QX2VmKc=
Subject key identifier: 77:2C:6E:DB:F9:FB:C1:04:F6:C8:FE:51:F1:82:47:A1:9B:41:C3:4C
Authority key identifier: F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
Certificate issuer: /CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Certificate serial: 019A71B7E473EB8FCD4D003A7479915E92BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
Manifest number: 13BF
Signing time: Tue 11 Nov 2025 07:01:08 +0000
Manifest this update: Tue 11 Nov 2025 07:01:08 +0000
Manifest next update: Wed 12 Nov 2025 07:01:08 +0000
Files and hashes: 1: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl (hash: i3MfNhBbtcaJmqSy/YPV5WLU57fuKeJ0mP2KFtArSxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:e4:73:eb:8f:cd:4d:00:3a:74:79:91:5e:92:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Validity
Not Before: Nov 11 07:01:08 2025 GMT
Not After : Nov 12 07:01:08 2025 GMT
Subject: CN=772c6edbf9fbc104f6c8fe51f18247a19b41c34c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:03:a5:c6:81:d5:04:c5:82:ec:b4:e7:13:45:
98:33:b3:f6:ee:1b:34:bd:72:fe:d3:b7:6c:dd:45:
6e:36:2d:13:8b:86:a3:13:53:5d:c4:15:9a:3c:2d:
3c:69:7c:2d:15:66:c9:10:bf:71:d9:74:30:68:76:
e9:cc:76:01:78:0a:7c:d9:9b:a8:94:ad:c7:81:9e:
79:ee:8b:d5:26:92:1d:26:54:6d:6a:4b:95:f5:96:
c3:16:2b:a8:07:41:b9:e3:bf:18:1f:49:4a:c1:4c:
35:6e:40:e0:79:52:a9:47:f2:ce:20:2b:a2:23:39:
25:7e:5a:df:7b:3b:bb:0a:17:37:03:9a:72:2e:54:
ec:c7:4b:85:dd:0f:14:75:5b:9e:39:2b:b4:7c:3a:
7f:d4:dc:6c:9e:33:bd:df:54:68:0a:60:c7:64:97:
7a:e4:31:37:0a:12:88:2e:66:61:cc:01:ce:32:fa:
b3:97:cb:13:92:cf:9c:13:61:c2:cf:f9:2e:d0:33:
f2:5b:25:ec:31:54:53:63:0e:11:2a:5e:78:5d:17:
e6:09:95:9e:f4:7a:ba:b7:3d:86:5d:07:fa:d8:4e:
d6:e7:ba:65:be:67:2e:64:c6:2b:dc:2f:a2:29:9c:
56:96:66:df:0a:da:24:09:36:3f:73:7c:10:45:37:
3a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2C:6E:DB:F9:FB:C1:04:F6:C8:FE:51:F1:82:47:A1:9B:41:C3:4C
X509v3 Authority Key Identifier:
keyid:F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:de:51:6c:20:a0:f9:e2:12:8f:6f:71:3f:99:a6:c1:34:0c:
cb:26:3e:94:a9:bd:67:2c:05:80:16:9f:b3:6c:f9:b5:ab:22:
9b:90:c8:7f:92:1a:c5:17:6b:ea:66:61:51:c3:13:1c:0e:e7:
72:f1:cf:0c:7f:de:7d:4e:ff:69:0a:ba:61:d1:a6:f0:99:c0:
69:52:99:95:b5:1d:d3:e2:4d:45:eb:21:f0:fc:ba:42:2e:e8:
32:44:c1:19:10:85:9b:0b:4e:f5:4b:e0:d3:3f:d3:f5:7c:ab:
d7:ba:2a:7b:9f:2a:59:40:59:1a:ef:90:3f:04:85:8d:5e:d1:
6d:f8:ab:fd:81:ef:01:35:e9:35:5c:2b:60:c9:a0:76:07:47:
0b:7d:bb:5a:f3:55:d3:e9:cc:59:54:0b:4e:1d:ae:b8:bc:e8:
8a:e9:78:5b:c4:24:4f:63:ab:f2:6d:33:8c:fd:9e:98:c1:65:
ee:a2:84:b0:a5:eb:8a:d0:84:7c:ad:b2:2f:33:81:39:15:d5:
ef:a8:6e:14:47:6f:02:49:57:86:cc:fb:d9:af:cb:ff:1c:c6:
9a:8b:e9:00:0f:98:ba:58:a1:e3:a4:ea:eb:83:80:ae:4a:9a:
69:91:d9:e7:00:34:aa:35:f6:9a:a5:d1:fb:36:af:3c:ae:c6:
a3:03:5f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:15:24 2025 by rpki-client