Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
File: 8PsNC-KW3BtxnSRA-2rZx10I4uI.mft (raw, json)
Hash identifier: EYKLtD4+Lvg2H9Q3b87GI8MWg+mgy5UqsKRr7L5PHUo=
Subject key identifier: 20:8B:5C:8E:60:8D:E4:DC:0A:0E:B5:7A:3A:9A:BE:2A:CC:2C:1D:90
Authority key identifier: F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
Certificate issuer: /CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Certificate serial: 019A4EF522BF1701AA1E3374AED3065E3CA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
Manifest number: 169E
Signing time: Tue 04 Nov 2025 13:01:19 +0000
Manifest this update: Tue 04 Nov 2025 13:01:19 +0000
Manifest next update: Wed 05 Nov 2025 13:01:19 +0000
Files and hashes: 1: 0TX6bG3AW3Ort-Rt8qCc1TR12hM.roa (hash: XGv/DCUiOeegPa2KE+7yV2/GQEE1zmTFiu2PMDuWufY=)
2: 8PsNC-KW3BtxnSRA-2rZx10I4uI.crl (hash: EBJ8Gtt/T78NKIc2HDQLlgKEWGZpMkDQxSyD4fw6C0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:22:bf:17:01:aa:1e:33:74:ae:d3:06:5e:3c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Validity
Not Before: Nov 4 13:01:19 2025 GMT
Not After : Nov 5 13:01:19 2025 GMT
Subject: CN=208b5c8e608de4dc0a0eb57a3a9abe2acc2c1d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:04:2b:b5:11:52:ce:07:5a:f9:c5:42:b6:cf:
42:06:78:9c:ef:46:c2:d9:c7:31:99:c8:cb:94:8a:
9c:ca:c8:e9:e2:e7:1e:bf:61:8e:f8:2a:55:ac:8b:
ea:af:cc:22:a4:ea:d7:bf:43:84:9c:05:2e:b8:3e:
56:91:0c:f3:6f:0a:e7:68:1e:54:d4:2c:56:ca:25:
2b:5e:18:72:0a:47:51:dd:c4:5e:96:b2:d4:09:5c:
21:4f:c4:18:dc:c2:7c:13:01:09:7f:50:16:ff:cd:
e7:b8:8a:fa:58:03:92:6c:f5:19:f1:71:e7:96:59:
de:c3:7d:29:a2:ca:d8:17:c9:8c:74:88:fe:fa:b0:
dc:e4:c4:31:7c:52:ec:40:d1:9e:ca:ad:43:6c:51:
9c:75:aa:3a:0e:ac:d4:f3:b4:00:e9:64:bd:ec:5f:
b7:af:3f:14:b0:7c:c7:22:97:08:6d:d8:3f:54:8e:
da:26:c3:14:a6:01:0e:54:33:55:fa:cc:b6:94:36:
40:4c:5e:0e:ce:d7:8c:16:4d:79:14:a5:cc:fa:21:
00:24:46:26:6e:40:bd:55:77:f3:03:3e:94:4a:93:
16:01:76:53:51:aa:91:4e:ee:09:f0:38:eb:3d:ab:
df:d3:32:f3:d0:43:34:8f:27:de:0b:ae:49:0c:f9:
2b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8B:5C:8E:60:8D:E4:DC:0A:0E:B5:7A:3A:9A:BE:2A:CC:2C:1D:90
X509v3 Authority Key Identifier:
keyid:F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:ad:fd:7a:a2:d6:a3:0c:19:03:ea:a7:aa:f9:3c:ec:51:3e:
ff:ec:b0:d2:8d:f5:55:3d:95:dc:e5:1d:23:d0:36:c1:c3:ca:
9e:b0:e1:de:60:53:16:b9:a7:50:23:78:6f:76:1e:4a:8a:77:
6c:2f:1c:ba:71:38:2a:05:60:aa:4e:ab:53:45:fa:40:c9:52:
39:4d:4f:46:5f:3d:39:09:3b:92:58:fd:29:be:dc:c9:e5:7f:
b6:62:67:56:f4:1c:75:36:fd:92:4b:5c:28:d6:ff:d2:a3:3f:
89:69:6c:86:e3:46:f5:3d:1f:ab:f5:07:66:2b:bc:62:a3:a4:
d8:0c:ab:e8:09:71:1f:b8:3c:81:10:c6:a2:2a:2c:e5:5f:1c:
8d:37:fb:d9:f4:59:89:3f:e7:0f:68:59:66:ce:25:b7:1c:7c:
87:05:d1:e8:a8:8a:8d:b3:77:c4:a9:27:99:c9:c1:38:33:af:
b3:b6:8b:14:19:6a:df:e5:d8:05:c4:e8:c7:31:47:ba:9e:85:
df:9c:50:2f:be:02:61:bc:72:02:c7:e0:b3:8f:50:4a:d5:4e:
91:65:94:a6:d2:58:8c:86:b9:5c:1f:28:f5:6a:ef:54:1f:96:
60:fc:64:63:8b:a5:95:fb:11:53:b3:59:dd:74:92:d4:6e:b5:
38:39:e0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:16:41 2025 by rpki-client