Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
File: 8E3LHKHUaLwERw8dtKRuz1uCeEg.mft (raw, json)
Hash identifier: BKQg9AGwCMAsII/v5Kt7mFdQncoGUl/C3GiJ1uiZqas=
Subject key identifier: BE:7F:DF:1C:AD:9D:82:AB:7C:41:01:61:A8:C5:85:1D:A1:56:40:16
Authority key identifier: F0:4D:CB:1C:A1:D4:68:BC:04:47:0F:1D:B4:A4:6E:CF:5B:82:78:48
Certificate issuer: /CN=f04dcb1ca1d468bc04470f1db4a46ecf5b827848
Certificate serial: 0198A0F1D492C884C7527DCADF5081D624B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E3LHKHUaLwERw8dtKRuz1uCeEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
Manifest number: 02AD
Signing time: Wed 13 Aug 2025 01:00:59 +0000
Manifest this update: Wed 13 Aug 2025 01:00:59 +0000
Manifest next update: Thu 14 Aug 2025 01:00:59 +0000
Files and hashes: 1: 8E3LHKHUaLwERw8dtKRuz1uCeEg.crl (hash: NxGntkORdkr77dfB98skL8DBiyHC0Wb+KDgwj/eoc3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8E3LHKHUaLwERw8dtKRuz1uCeEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:f1:d4:92:c8:84:c7:52:7d:ca:df:50:81:d6:24:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04dcb1ca1d468bc04470f1db4a46ecf5b827848
Validity
Not Before: Aug 13 01:00:59 2025 GMT
Not After : Aug 14 01:00:59 2025 GMT
Subject: CN=be7fdf1cad9d82ab7c410161a8c5851da1564016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9b:56:23:b5:ab:03:f9:5a:7c:9f:01:7e:2b:
5d:bd:dd:d9:5a:44:65:19:fe:0b:fe:56:00:a9:db:
7b:ea:a8:25:04:c1:4e:9a:3d:08:96:61:06:c2:a4:
1f:28:00:5e:7a:6c:3d:63:87:5e:07:5f:0b:e2:49:
40:a5:c1:6e:c0:1b:36:f9:cb:8b:bf:22:b4:8f:13:
77:3f:77:4b:01:ed:a4:59:cd:5a:bb:e6:2b:43:62:
c9:f7:15:83:05:f2:af:23:e1:c5:52:24:59:cf:34:
16:77:59:e3:22:49:ad:4b:08:d5:a6:a2:e7:b1:e2:
f1:e0:18:ca:dd:29:71:ee:cb:2c:56:55:c0:ad:db:
4e:32:75:89:b1:99:e6:bb:7a:e5:a8:24:39:97:3c:
24:0c:52:69:8b:ff:01:47:31:c5:d4:3f:4e:91:a2:
ef:f8:83:06:e8:66:c2:de:89:d0:d5:36:4e:a2:6d:
52:21:28:dd:b3:e1:c5:0f:6e:42:4d:3a:86:f5:ee:
8a:fd:df:89:ad:52:32:ec:5e:9c:8e:3b:fc:8e:4d:
8c:39:58:fa:c9:7c:4c:46:8d:67:2c:7a:54:bb:1d:
98:3f:c3:c0:d7:90:ef:94:11:93:34:3f:4a:4c:07:
66:41:44:09:ad:17:fc:0e:40:29:9d:92:9f:8b:8f:
4a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7F:DF:1C:AD:9D:82:AB:7C:41:01:61:A8:C5:85:1D:A1:56:40:16
X509v3 Authority Key Identifier:
keyid:F0:4D:CB:1C:A1:D4:68:BC:04:47:0F:1D:B4:A4:6E:CF:5B:82:78:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E3LHKHUaLwERw8dtKRuz1uCeEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:83:24:47:c3:17:a6:bd:30:2d:e5:46:08:20:61:b2:b9:bb:
6b:e3:c1:8a:f7:ce:55:ce:1e:c1:db:61:7e:80:d3:48:16:0a:
65:ab:83:50:52:bc:8e:a2:f0:3b:9c:bd:0e:50:21:85:ee:67:
3a:db:60:18:b4:e6:32:8e:14:44:0f:bc:87:75:b4:41:c9:ea:
02:5a:33:67:87:58:7e:f5:40:75:6a:4a:2c:ce:a6:e1:c3:83:
48:ca:85:19:aa:ce:a5:27:7b:e0:e7:08:b7:16:7f:4a:a1:3e:
e3:70:8e:6c:9f:9a:cc:c6:e1:76:98:b4:25:0d:eb:b5:02:1e:
5b:18:9f:e3:3d:d4:2f:b0:4d:a9:1e:0f:81:29:36:0f:6a:6b:
8d:1c:65:06:39:8a:79:86:a1:35:38:b1:6a:a1:ac:5d:67:ca:
ce:c4:ef:33:4d:e2:d1:16:5d:a6:2b:76:1b:ff:3f:36:aa:bf:
53:31:91:81:55:5a:c5:f5:1a:84:f9:04:6e:78:82:3b:45:d2:
8a:86:0f:f7:3a:5b:40:cf:fd:33:db:9e:f2:bb:00:a3:26:76:
a9:7d:20:52:9f:2e:1e:81:c6:c4:05:27:4a:14:f1:a3:64:4d:
0d:96:b0:cc:38:08:3b:6f:c0:b9:31:75:45:51:3d:fc:3e:9c:
24:a1:2c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 07:57:49 2025 by rpki-client