Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
File: 8E3LHKHUaLwERw8dtKRuz1uCeEg.mft (raw, json)
Hash identifier: cNIsUwpQmgys4/IfD4MsAr9FZTEzxjOEu3sKv7ZX+Hs=
Subject key identifier: 8A:5C:D0:C6:38:A8:BA:2A:8A:EB:14:0F:50:F8:8C:0C:00:1B:9E:F4
Authority key identifier: F0:4D:CB:1C:A1:D4:68:BC:04:47:0F:1D:B4:A4:6E:CF:5B:82:78:48
Certificate issuer: /CN=f04dcb1ca1d468bc04470f1db4a46ecf5b827848
Certificate serial: 019A4F98DAB49AF80A49DD6856AFACD11FEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E3LHKHUaLwERw8dtKRuz1uCeEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
Manifest number: 038C
Signing time: Tue 04 Nov 2025 16:00:08 +0000
Manifest this update: Tue 04 Nov 2025 16:00:08 +0000
Manifest next update: Wed 05 Nov 2025 16:00:08 +0000
Files and hashes: 1: 8E3LHKHUaLwERw8dtKRuz1uCeEg.crl (hash: GDJnAQDNuRUXFguel0oRJ97R7a69JT9+Mm6Sjkfxyvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8E3LHKHUaLwERw8dtKRuz1uCeEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:98:da:b4:9a:f8:0a:49:dd:68:56:af:ac:d1:1f:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04dcb1ca1d468bc04470f1db4a46ecf5b827848
Validity
Not Before: Nov 4 16:00:08 2025 GMT
Not After : Nov 5 16:00:08 2025 GMT
Subject: CN=8a5cd0c638a8ba2a8aeb140f50f88c0c001b9ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:86:0d:bd:44:1b:59:28:09:f4:cb:d9:ef:25:
26:33:b8:54:da:20:de:59:9e:b4:60:60:6d:88:0d:
72:64:b5:b9:1a:4d:25:d3:a8:99:a7:bb:9f:78:5f:
26:97:2c:eb:25:47:75:cd:55:b0:20:48:13:9f:af:
54:a1:c2:e5:bb:83:9d:07:62:b1:51:9c:bb:16:ac:
42:bc:1d:44:7a:a4:10:83:27:d4:86:84:27:f3:86:
17:63:b1:cb:3b:47:f7:65:8c:80:5b:8d:44:3c:78:
21:20:99:a1:c8:7f:a4:e1:d7:44:27:46:e9:e1:a9:
04:e5:44:f1:5b:32:fe:79:f9:1d:36:6f:0c:02:96:
1f:43:7b:a8:c6:dc:f0:3c:2a:d0:f5:53:97:e1:29:
10:d2:f2:0a:b2:b6:76:19:7d:af:91:53:2c:48:fc:
67:ff:8b:43:ba:68:05:9a:b0:4b:d2:9d:1e:d7:11:
48:1d:4f:31:05:fe:71:3a:ae:27:f0:c0:1b:58:39:
40:53:29:4f:bb:00:bf:bd:e5:6e:2a:72:81:e7:28:
0b:9e:26:e3:f1:d6:99:6d:7d:6f:f8:bb:6f:d3:3a:
f5:fe:8f:28:3c:3d:14:b1:ff:a5:51:dd:16:35:b3:
1f:b4:60:03:e9:0f:1f:a2:77:1a:f9:60:d0:c5:df:
c6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:5C:D0:C6:38:A8:BA:2A:8A:EB:14:0F:50:F8:8C:0C:00:1B:9E:F4
X509v3 Authority Key Identifier:
keyid:F0:4D:CB:1C:A1:D4:68:BC:04:47:0F:1D:B4:A4:6E:CF:5B:82:78:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E3LHKHUaLwERw8dtKRuz1uCeEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:35:3a:02:76:a5:92:bd:15:49:d6:19:3b:7c:ea:03:35:94:
2d:32:4d:7d:43:3c:ee:b1:37:a0:00:71:45:4b:73:f2:5a:4f:
20:61:ec:5e:4a:d2:4c:c3:1f:a4:ee:f2:ab:3b:aa:29:45:a9:
61:9b:94:c0:4e:a8:38:83:ad:60:58:b7:cc:c0:9a:88:af:19:
eb:97:82:0f:e5:ac:17:b4:21:ea:4e:dc:f4:eb:47:c3:36:5c:
d0:86:71:ab:62:e4:12:8c:20:d5:30:c8:25:b8:17:21:ab:45:
66:26:ec:6a:4d:9b:2c:06:a7:2e:70:2c:e2:88:4a:2b:3e:86:
2e:c9:8a:81:ba:f1:d6:ad:25:52:a2:05:9b:52:88:05:f5:05:
35:82:e1:78:5f:29:5b:cc:67:96:5c:09:40:8e:56:a8:a8:38:
fd:70:6f:87:97:c1:bb:69:4d:9a:42:b2:6f:19:b5:ce:cc:54:
db:55:0e:60:63:4f:be:68:04:c1:c4:72:f8:7b:0e:97:e5:71:
ee:ad:02:4c:80:14:c9:b3:e4:e3:f1:64:5c:b8:37:d8:c3:4e:
10:57:55:c0:c5:40:1b:30:7b:45:43:db:f7:a9:4d:7a:26:70:
25:1e:a5:1a:86:dd:6f:6f:61:f5:87:ea:ca:cd:a4:b3:d6:63:
06:fe:fb:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:42 2025 by rpki-client