Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
File: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft (raw, json)
Hash identifier: vU1Pqp5m5bf1m/TNI3xAfVmnV+by54t6D2M9t/jTuKk=
Subject key identifier: 71:7C:52:7A:43:4C:37:FF:7C:09:BE:32:A3:7B:81:A8:7A:30:EB:D7
Authority key identifier: F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
Certificate issuer: /CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Certificate serial: 0199239F0E21AEB73B19348EE49985361236
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
Manifest number: 1312
Signing time: Sun 07 Sep 2025 10:00:50 +0000
Manifest this update: Sun 07 Sep 2025 10:00:50 +0000
Manifest next update: Mon 08 Sep 2025 10:00:50 +0000
Files and hashes: 1: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl (hash: aSAROflLD3ND7T1p4mLXAqcQqou9ynmU+7xLCHkoPE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:0e:21:ae:b7:3b:19:34:8e:e4:99:85:36:12:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Validity
Not Before: Sep 7 10:00:50 2025 GMT
Not After : Sep 8 10:00:50 2025 GMT
Subject: CN=717c527a434c37ff7c09be32a37b81a87a30ebd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:f7:97:bf:87:35:81:b7:12:a1:67:97:0a:ef:
68:1f:d7:c4:38:dd:f2:d8:a7:6c:fc:0e:0f:26:0f:
43:08:a4:0d:65:d2:34:10:16:42:34:47:1d:0f:cc:
f9:4a:6c:e6:7d:58:f9:aa:35:56:61:9e:1c:e7:e9:
90:70:f0:79:48:7a:7d:b1:b4:73:58:3a:3b:06:b9:
78:5d:d3:41:1f:ed:9a:f0:77:ae:c1:83:07:a9:3e:
00:0e:57:bd:f2:7a:2e:c5:b4:fd:2b:3e:a6:07:40:
5f:01:09:4b:0f:27:d4:99:2a:68:12:10:c3:6a:e7:
74:3a:ee:cb:4c:53:ab:9b:16:ef:18:4c:72:b7:09:
30:0a:d2:d3:9a:22:fc:e7:36:6f:4a:0f:00:f4:5e:
cc:95:41:99:ef:13:2b:f4:cb:ef:73:c6:9d:e9:ad:
7a:3e:80:39:a5:91:60:69:a6:1f:4b:8c:63:3c:43:
4d:ce:d2:b3:db:8e:3a:ea:66:17:38:d1:c4:5b:da:
3d:ca:68:86:71:4d:44:61:02:22:34:71:77:fb:85:
5d:f0:08:0f:ab:92:e7:29:6b:d2:b8:e5:86:f4:13:
3d:d9:48:af:91:89:17:81:3f:e1:db:ad:db:94:fe:
eb:72:1e:af:f6:98:22:c9:c0:c0:5c:c5:46:91:01:
2a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:7C:52:7A:43:4C:37:FF:7C:09:BE:32:A3:7B:81:A8:7A:30:EB:D7
X509v3 Authority Key Identifier:
keyid:F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:94:89:b0:8b:79:78:89:d1:ed:6c:02:d7:ec:fa:e8:7b:ae:
90:a8:95:c1:60:4e:66:14:3a:cc:b9:d4:ca:18:7d:a2:3f:7b:
dd:04:6d:3a:0f:1f:1d:b5:ad:65:5a:07:00:5a:8e:72:b7:ec:
51:9a:8b:e9:44:5e:4e:4b:a9:b6:05:fc:dc:4f:d3:a4:e8:d8:
58:ff:f8:09:b1:25:5d:4c:ae:a4:ff:d7:ec:4d:94:95:e6:9c:
8a:81:67:af:c2:e5:1b:cb:cc:af:47:40:ad:50:10:65:0f:06:
71:ce:87:18:83:8f:34:50:1d:6f:a7:d3:5c:ad:d7:f1:a9:0e:
5a:b9:a5:c6:17:96:7f:a0:db:93:ed:21:e2:c9:3a:12:db:a7:
cd:71:61:ee:4c:0a:99:23:be:85:7d:53:53:5d:3c:f3:cb:90:
b5:bd:19:01:e6:ca:4a:e7:88:65:12:32:ef:b8:66:e2:58:ac:
bc:c0:be:40:d2:9d:79:d2:47:4e:2a:e1:e1:f8:73:23:61:c3:
23:4e:1b:bf:41:40:48:ae:81:b7:1a:d6:e5:9a:d5:46:8e:78:
a1:1d:30:6f:10:c1:dd:9d:f7:a0:1c:4a:a6:20:31:b2:11:c8:
01:65:f0:e5:64:51:c1:9d:66:4c:8f:49:f6:39:a1:df:95:aa:
96:ca:2e:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:52 2025 by rpki-client