
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
File: 8CDLT5tfebnaa0gnutnFSiqAxTE.mft (raw, json)
Hash identifier: uRjCqyvxXwPY4blM/ZiJ4m0RS6hKpVp5QGfrAWR8UuM=
Subject key identifier: 9B:53:96:AC:73:24:76:6E:66:37:22:28:10:1A:3A:95:AD:DB:81:2C
Authority key identifier: F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
Certificate issuer: /CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Certificate serial: 01987E65BF3BA674F2BEC2128E9E9EEC8DEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
Manifest number: 0EB3
Signing time: Wed 06 Aug 2025 08:00:54 +0000
Manifest this update: Wed 06 Aug 2025 08:00:54 +0000
Manifest next update: Thu 07 Aug 2025 08:00:54 +0000
Files and hashes: 1: 8CDLT5tfebnaa0gnutnFSiqAxTE.crl (hash: MP5f8n/326fvvVGaHu+LtQI3oNZKugkkeUYMhy3p8F0=)
2: amkS5SoIvujCi9yce4d8VftUldc.roa (hash: +cELHuiQeJpKMXecyPF27q6ZAbek7zvwZNYTMIlI2SU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:65:bf:3b:a6:74:f2:be:c2:12:8e:9e:9e:ec:8d:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Validity
Not Before: Aug 6 08:00:54 2025 GMT
Not After : Aug 7 08:00:54 2025 GMT
Subject: CN=9b5396ac7324766e66372228101a3a95addb812c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0c:87:fd:a0:e1:5d:01:a9:1a:35:d4:03:bf:
96:77:6f:c1:62:51:75:86:b9:a1:c4:29:52:c7:ce:
7c:ed:71:17:e8:3c:a3:92:9a:41:fd:20:46:27:7b:
11:62:09:7d:a3:c6:d0:77:be:b9:6e:5d:60:3b:17:
33:10:9b:a5:4b:98:79:ec:68:65:5c:31:e7:dc:40:
1c:64:65:4f:14:f2:4c:3a:4c:f1:5e:e8:25:9f:f7:
0a:ba:84:39:83:21:f0:5a:1c:87:bc:08:74:36:84:
b5:6d:21:b9:bf:54:de:6a:25:68:86:63:ce:ec:4a:
47:85:b2:3a:ec:ec:0c:2f:97:51:e7:ed:af:d1:77:
ef:7b:90:6b:0d:f9:2a:e2:61:0f:2d:87:1f:d6:86:
58:f1:77:33:17:f1:6a:f1:0f:a9:48:1f:28:91:fb:
92:8c:e2:33:10:6d:58:b5:5e:f4:6e:eb:fa:5a:24:
5f:55:ec:c6:9a:d8:09:0a:5e:4b:4b:3f:99:76:6d:
76:a8:38:f5:56:17:02:b4:5f:ce:ab:a1:2c:5e:0e:
61:5b:0e:a7:ac:a8:95:f1:3a:62:73:53:2e:fd:67:
e5:16:f6:1b:eb:90:db:61:b5:31:7d:a5:1d:86:0a:
e7:41:34:fe:f9:88:67:ee:e9:f0:76:fe:2c:b2:5e:
77:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:53:96:AC:73:24:76:6E:66:37:22:28:10:1A:3A:95:AD:DB:81:2C
X509v3 Authority Key Identifier:
keyid:F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:09:89:95:56:01:d6:ef:a9:d2:f7:f4:e3:af:2a:93:d4:e8:
9f:16:75:d6:c9:b3:77:1a:0a:45:87:ba:a8:22:55:33:64:9b:
09:26:5f:73:14:da:08:82:ad:8f:3d:ab:eb:a2:1b:54:df:e3:
18:80:c0:da:69:ec:dd:4b:88:46:41:8f:9e:bd:7f:68:fc:81:
38:f3:b7:aa:de:23:cb:d9:40:3d:b2:9c:fb:50:e1:1a:24:17:
45:dd:2f:51:41:d4:3d:86:0a:b8:55:e1:bc:3e:1e:29:12:e5:
1c:0f:bc:8b:4a:a5:b4:fb:24:bd:58:c9:bf:2a:2b:0e:ae:1a:
03:f5:69:a6:8e:b3:aa:6a:dd:6e:3b:39:fa:f1:3d:95:13:30:
44:5f:7d:c1:95:c8:15:04:4f:61:6c:d9:61:b3:0a:25:45:63:
29:b8:cd:2c:ff:16:42:9a:54:d4:25:84:39:db:1b:80:0d:ca:
78:31:4b:21:85:38:cc:61:13:68:66:4e:49:ee:0b:71:55:f0:
3e:ec:69:ac:2c:df:ed:24:52:45:22:d4:b4:5e:45:d8:0d:51:
c9:72:ca:d4:a6:73:75:a6:c8:b5:ec:fb:d5:cd:b3:82:6c:27:
98:b8:af:73:85:90:dd:3b:d8:74:18:e3:1b:2c:f4:42:55:45:
b7:5c:11:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 12:29:31 2025 by rpki-client