Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
File: D8lnTtVfCnZcpdocb6-k3SXioXg.mft (raw, json)
Hash identifier: bzV0j6/SU/u8BqC+23LfP6qXZ9hQgaSSbamB86rpq20=
Subject key identifier: 8E:D6:3D:E0:F9:49:7E:F2:2A:86:53:B5:95:A9:55:DE:3D:C9:C3:F6
Authority key identifier: 0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
Certificate issuer: /CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Certificate serial: 019916BF6B3A3D61F1B504D7CEC68B4DE5B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
Manifest number: 0750
Signing time: Thu 04 Sep 2025 22:01:07 +0000
Manifest this update: Thu 04 Sep 2025 22:01:07 +0000
Manifest next update: Fri 05 Sep 2025 22:01:07 +0000
Files and hashes: 1: D8lnTtVfCnZcpdocb6-k3SXioXg.crl (hash: zDgym6mvLeuLNYEUEMNDyt8VZBAf9XJCHRk1OApqWX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:bf:6b:3a:3d:61:f1:b5:04:d7:ce:c6:8b:4d:e5:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Validity
Not Before: Sep 4 22:01:07 2025 GMT
Not After : Sep 5 22:01:07 2025 GMT
Subject: CN=8ed63de0f9497ef22a8653b595a955de3dc9c3f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:50:2c:c9:67:63:0e:2f:c2:83:27:b7:14:14:
51:a7:99:12:7e:74:78:bb:8d:03:61:ee:53:25:35:
a4:16:f6:b0:f2:b7:c9:db:96:10:3c:33:36:c2:ac:
79:62:51:0b:36:16:88:19:7c:31:3e:1e:cf:c7:0d:
27:45:bb:8a:a4:9b:78:c0:68:48:02:8e:49:06:c1:
c0:e0:10:5e:7c:22:ea:ed:07:a9:1c:c4:df:f2:2a:
56:ec:38:1a:3f:43:84:c2:be:3e:62:d7:e8:41:53:
a6:54:36:27:40:e0:c7:27:d0:f4:20:94:01:86:c9:
94:1c:fc:68:be:cf:d4:eb:7a:1e:ac:8f:e2:08:4e:
07:5e:d8:80:18:7e:ce:fd:46:a5:6b:40:e6:36:d2:
42:cf:95:58:b1:7f:35:f7:21:e5:91:51:4c:f9:32:
19:74:05:cc:32:e2:9c:0b:7a:48:74:9e:80:94:05:
98:ad:e6:bf:4d:38:46:ad:1d:12:06:b0:49:c1:cc:
6a:99:eb:9d:42:ac:a9:13:a4:7a:a6:db:31:10:cc:
95:3c:69:c2:f4:fe:a2:d6:c2:01:df:4d:2a:8c:6c:
35:4a:ec:dc:a6:c7:66:06:ff:35:9c:93:45:f6:8f:
47:06:96:a7:bc:e2:75:fd:9d:0c:e9:c9:41:07:df:
17:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D6:3D:E0:F9:49:7E:F2:2A:86:53:B5:95:A9:55:DE:3D:C9:C3:F6
X509v3 Authority Key Identifier:
keyid:0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:61:56:1d:b9:5b:ae:b2:7d:61:31:cb:e3:9b:fb:f3:2a:31:
e9:47:ef:4f:ca:d4:22:fc:2b:fe:67:44:4c:f2:ac:f5:d9:0c:
8f:e2:4e:23:b7:40:fb:ca:85:84:cb:57:54:fc:3b:be:e1:70:
bd:72:ea:fe:38:cd:e3:41:e1:21:2e:8b:ca:e4:a3:38:22:f4:
89:c2:97:df:18:06:d5:e8:a9:34:3b:6e:28:dc:4d:3b:06:6a:
a1:6c:15:4d:38:5e:5a:37:0c:2a:19:5c:91:d8:41:2e:89:65:
12:09:17:89:38:4b:48:31:99:6d:59:ae:98:e4:43:48:fe:c8:
11:68:52:e0:c9:59:97:d6:b7:88:3a:ec:5b:5e:a8:0f:47:0f:
4d:dd:67:67:a6:bc:b6:d7:a5:aa:77:b5:a1:39:ee:b0:3f:b5:
85:a4:b0:84:b1:5e:98:96:48:50:a0:4a:fb:5c:83:84:a5:97:
2a:8c:f5:d1:cd:eb:38:26:a2:cc:eb:78:29:18:b1:d8:b2:25:
16:3d:c7:ae:3a:4d:a1:c8:6e:f4:4d:0e:9a:7e:2b:1f:bb:5f:
88:b2:95:06:61:66:0a:3f:9b:ad:9f:7a:cb:e6:c1:c2:c1:30:
51:ee:cd:a5:43:bc:78:7d:b6:a7:43:0a:db:22:1b:5c:f4:3c:
45:d9:e2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:25 2025 by rpki-client