Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.mft
File: 8z9sz1fxxI8RwU_QBUBazONtA7g.mft (raw, json)
Hash identifier: bNpQHq464VL8f4337a+Jr1hr2+cKI9/bJgzs5vFNbBY=
Subject key identifier: 21:E8:B8:63:30:42:6A:90:03:5D:5E:EC:98:61:CB:50:5C:54:DE:78
Authority key identifier: F3:3F:6C:CF:57:F1:C4:8F:11:C1:4F:D0:05:40:5A:CC:E3:6D:03:B8
Certificate issuer: /CN=f33f6ccf57f1c48f11c14fd005405acce36d03b8
Certificate serial: 0198A0BA6D03650C6F73985D5A95E998AEA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8z9sz1fxxI8RwU_QBUBazONtA7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.mft
Manifest number: 1629
Signing time: Wed 13 Aug 2025 00:00:28 +0000
Manifest this update: Wed 13 Aug 2025 00:00:28 +0000
Manifest next update: Thu 14 Aug 2025 00:00:28 +0000
Files and hashes: 1: 8z9sz1fxxI8RwU_QBUBazONtA7g.crl (hash: 55TdBLeUtdTu5DKTQq8I1OVO01kYAZYsWcKe01rLCgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.mft
rsync://rpki.ripe.net/repository/DEFAULT/8z9sz1fxxI8RwU_QBUBazONtA7g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 Aug 2025 00:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:ba:6d:03:65:0c:6f:73:98:5d:5a:95:e9:98:ae:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f33f6ccf57f1c48f11c14fd005405acce36d03b8
Validity
Not Before: Aug 13 00:00:28 2025 GMT
Not After : Aug 14 00:00:28 2025 GMT
Subject: CN=21e8b86330426a90035d5eec9861cb505c54de78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9d:5f:df:b1:2f:49:98:c6:2c:df:7f:eb:41:
bd:3b:66:25:b2:5f:83:47:d5:38:b6:5c:90:e2:96:
62:20:e8:2c:6c:a2:e0:57:2c:fb:fe:2b:23:bf:24:
0b:af:6f:b2:34:ef:1d:0c:81:0f:f5:df:9a:6e:f8:
21:5e:13:f8:9f:a9:ee:10:24:1c:9d:1a:b7:98:9f:
4f:92:9b:59:5c:5d:ba:1b:e0:47:d8:55:07:94:93:
7c:03:3e:39:74:b6:57:60:f3:ed:b3:67:e3:09:7c:
db:38:4e:2f:01:45:73:78:18:79:b8:61:b6:86:8c:
6d:df:49:aa:15:31:e4:94:6f:dc:96:67:fe:de:e6:
82:e6:07:32:b8:7c:f9:eb:d5:23:01:34:89:22:99:
bf:e1:c7:f3:94:16:5d:02:8f:08:6a:f6:d9:25:cf:
f8:49:ce:0f:3a:d0:61:cb:ae:af:84:6f:1c:6a:13:
03:b9:ad:f9:19:5e:e4:b1:12:9f:7c:94:ad:88:5d:
c2:61:4d:c8:63:9a:18:3c:c3:cb:e2:f3:d9:df:5e:
f3:d9:8c:8f:ab:97:5a:38:6a:37:8d:46:e5:6b:21:
16:4b:ba:43:d5:af:91:04:cc:53:c1:41:ff:c7:23:
38:8c:bd:0e:7b:4d:a2:29:ae:e9:40:82:d5:ec:3c:
50:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E8:B8:63:30:42:6A:90:03:5D:5E:EC:98:61:CB:50:5C:54:DE:78
X509v3 Authority Key Identifier:
keyid:F3:3F:6C:CF:57:F1:C4:8F:11:C1:4F:D0:05:40:5A:CC:E3:6D:03:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8z9sz1fxxI8RwU_QBUBazONtA7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:c4:4f:8b:47:2a:eb:ab:6c:98:39:b7:11:30:4a:63:19:b7:
12:1c:5d:48:e2:30:a8:f6:eb:9a:5f:74:11:44:1e:87:55:aa:
87:76:d0:1f:50:84:7a:eb:89:bc:2f:6c:91:0d:ac:13:d0:c2:
f8:88:4d:23:4a:55:2c:03:dd:c0:64:20:1b:18:d8:b2:4d:1b:
57:79:a6:ba:1f:6c:2a:ae:b9:16:02:b3:32:58:e6:fb:f6:5d:
30:d0:d6:b5:55:fb:55:6b:40:33:f6:e6:55:75:d3:fa:16:1f:
a9:66:45:46:81:e2:43:5c:55:87:b4:d5:3e:71:dd:3e:91:de:
83:a6:3c:8b:3e:d0:5d:78:58:cb:85:03:96:79:25:12:f8:7d:
2c:f0:53:c4:5e:a6:e7:72:eb:11:c0:0f:c6:e3:51:b1:6d:00:
d1:20:b3:3d:b9:86:da:a2:f4:53:1e:68:3c:ca:d4:d8:68:55:
ef:e3:2f:2c:b5:27:fa:19:9a:f1:c8:ca:c5:61:86:9c:43:9c:
21:71:2d:75:6e:60:1b:ef:4c:7a:7f:d3:78:99:5e:c7:8a:48:
91:26:a8:9b:01:6a:ee:4d:cc:7e:43:02:9c:24:e5:64:7f:81:
2b:7e:6b:e1:0c:2f:97:a8:f3:65:86:d0:cf:a2:7e:05:6b:a2:
8b:ac:39:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 09:47:47 2025 by rpki-client