Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft
File: 8M0rO57YMSbUXboSAD1sbjWms4A.mft (raw, json)
Hash identifier: boZNfOw2O68madbUxaqPzmV+4Zt7PJhs8PhvIVANZZY=
Subject key identifier: 5F:E2:7E:BE:18:53:73:A1:68:83:F6:D9:72:36:DB:94:94:7B:7C:34
Authority key identifier: F0:CD:2B:3B:9E:D8:31:26:D4:5D:BA:12:00:3D:6C:6E:35:A6:B3:80
Certificate issuer: /CN=f0cd2b3b9ed83126d45dba12003d6c6e35a6b380
Certificate serial: 019A7112F3BFFE6FE55C9595F4FB7B079891
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8M0rO57YMSbUXboSAD1sbjWms4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft
Manifest number: 1445
Signing time: Tue 11 Nov 2025 04:00:58 +0000
Manifest this update: Tue 11 Nov 2025 04:00:58 +0000
Manifest next update: Wed 12 Nov 2025 04:00:58 +0000
Files and hashes: 1: 8M0rO57YMSbUXboSAD1sbjWms4A.crl (hash: RoSdEsWGc8x2nB8SRePxlWX12k/eekkNEi5jHic2rmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8M0rO57YMSbUXboSAD1sbjWms4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:f3:bf:fe:6f:e5:5c:95:95:f4:fb:7b:07:98:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0cd2b3b9ed83126d45dba12003d6c6e35a6b380
Validity
Not Before: Nov 11 04:00:58 2025 GMT
Not After : Nov 12 04:00:58 2025 GMT
Subject: CN=5fe27ebe185373a16883f6d97236db94947b7c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:df:1d:fd:79:90:c1:07:57:36:e8:ac:05:9b:
22:4e:c2:29:3a:c7:3c:08:9f:89:54:ed:d3:fc:45:
be:4b:4a:e7:1e:55:25:95:ce:e1:08:ae:67:a7:29:
3b:15:99:93:92:e7:6c:a3:47:11:7c:c8:b4:c8:ea:
30:3b:1f:ea:73:56:3e:eb:83:43:f8:41:b1:92:3a:
3c:4d:21:4a:96:7f:42:8d:8f:a4:64:00:56:c3:33:
b8:c8:dc:e1:5a:e7:06:74:56:0c:eb:df:c2:fd:b5:
ce:d7:59:bb:e9:2b:5a:f6:b2:e7:cc:10:bd:e4:b2:
64:5c:ed:cf:7b:2a:5e:9d:24:8f:90:24:f7:73:c2:
57:0a:91:27:e8:ee:ae:fb:2c:55:17:85:ef:e4:b9:
06:a5:de:d7:39:19:74:62:40:99:a9:83:f9:99:af:
68:65:65:54:83:90:02:c2:6f:09:85:bd:1c:3a:78:
d3:8c:31:32:3e:47:4b:19:e6:9c:7f:3a:ca:7e:de:
e3:77:e5:08:11:33:e5:95:b0:82:21:5d:64:e3:82:
db:e5:87:68:2f:5d:fb:9e:13:03:1e:6b:2a:aa:f3:
bd:60:3d:41:83:54:de:84:39:f4:53:e4:4d:28:e7:
0c:54:d6:ee:b5:f6:74:3d:e4:8c:fc:70:3c:be:6c:
1f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:E2:7E:BE:18:53:73:A1:68:83:F6:D9:72:36:DB:94:94:7B:7C:34
X509v3 Authority Key Identifier:
keyid:F0:CD:2B:3B:9E:D8:31:26:D4:5D:BA:12:00:3D:6C:6E:35:A6:B3:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8M0rO57YMSbUXboSAD1sbjWms4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:71:e3:12:4f:08:de:10:49:6d:5d:49:1e:f0:92:5f:a6:b9:
6a:7b:28:3d:b9:10:89:4d:d8:73:6f:31:8f:ca:4e:a5:6e:e6:
4b:83:2c:88:4f:7d:61:66:bc:a7:79:7b:c6:2d:72:7e:fc:0d:
ba:6e:18:d2:18:dc:10:0b:80:79:04:b1:84:0c:3f:de:d8:98:
f7:33:98:8f:29:76:8b:60:6e:e4:bd:0d:70:b2:fc:06:7a:09:
2f:3e:19:5a:3d:ed:30:88:cd:74:42:42:e6:dd:d9:e9:2b:fc:
a1:db:22:45:1f:22:23:e5:27:22:01:7e:27:84:f0:df:56:87:
0b:c5:e0:40:78:8a:35:ce:de:4d:69:fd:e9:94:e2:c7:c3:92:
a4:c8:b0:c0:b7:4f:cb:d0:ae:2c:5b:d6:50:aa:68:b4:19:ec:
b3:d1:25:c6:ef:53:c4:c0:c7:ab:9b:74:15:c6:40:35:1c:24:
87:61:49:fe:ec:70:9a:e4:90:32:95:dc:15:38:eb:2b:73:81:
73:ac:b7:e7:ce:e5:be:60:d3:ee:01:77:9b:4b:7f:9f:65:04:
ea:94:1c:0f:8c:7c:4c:3f:c4:2b:95:25:10:1c:3b:cb:fb:af:
c3:49:55:c5:ca:56:30:3a:64:96:a9:46:e7:ed:50:a6:e3:c6:
14:4a:a3:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:43:20 2025 by rpki-client