Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: fy5qzO4BzLmVT6KsFgQp72zefYu77FEOJ2U5Wwtbew4=
Subject key identifier: 55:C2:61:CB:25:14:A4:30:DA:1B:C7:72:65:C4:83:40:8E:B3:94:03
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019A4D3D3531879823E497CE8329B51D66C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 170B
Signing time: Tue 04 Nov 2025 05:00:48 +0000
Manifest this update: Tue 04 Nov 2025 05:00:48 +0000
Manifest next update: Wed 05 Nov 2025 05:00:48 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: tEEbgPANC4ZAI9V8Oym0xnnKoD8mZ8e1TzcKPHSuYso=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3d:35:31:87:98:23:e4:97:ce:83:29:b5:1d:66:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Nov 4 05:00:48 2025 GMT
Not After : Nov 5 05:00:48 2025 GMT
Subject: CN=55c261cb2514a430da1bc77265c483408eb39403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b3:2a:e3:b0:81:ec:19:43:a3:50:3b:75:13:
f9:9f:61:e4:88:09:91:77:78:42:6d:8b:f9:8f:51:
f3:0a:0d:46:80:8b:87:18:b2:86:d2:10:2e:e9:00:
99:0b:cc:92:73:c6:89:7d:9e:a9:95:02:90:46:eb:
1e:53:12:c8:a8:85:c4:db:17:1c:3a:a3:b1:07:5b:
ef:ab:6c:51:a4:10:97:17:a0:e1:f3:4f:0a:52:ea:
b2:ed:6b:88:d3:2d:a7:c7:98:fd:58:f9:38:bd:7d:
ab:66:9d:f3:c3:8e:27:ee:e5:49:ae:1a:72:fe:88:
c3:96:70:47:55:e0:4f:9d:58:fa:10:46:9a:38:17:
e9:70:a7:d9:d6:5d:5e:a2:00:d5:29:ff:5b:4f:ad:
87:31:83:ed:5a:c7:0b:65:a7:db:96:11:95:16:8b:
28:7f:b2:fe:4f:c9:87:4a:96:42:d7:18:dc:d7:bb:
31:68:65:9c:db:6b:47:da:76:62:5f:a9:9a:c7:7f:
8b:ac:db:c9:54:7f:f6:2d:cb:b4:17:2b:47:a4:5f:
2d:df:74:df:75:65:fb:43:0b:7e:a4:2d:c0:3b:3d:
1b:78:3c:c4:f5:cb:78:35:28:86:95:48:79:23:75:
f1:e2:7c:c0:4f:7c:79:57:5e:2e:d7:41:bb:ba:d0:
28:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C2:61:CB:25:14:A4:30:DA:1B:C7:72:65:C4:83:40:8E:B3:94:03
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:76:c7:fd:a8:31:7b:4b:5c:e9:88:1a:4e:c3:7c:36:db:f7:
80:62:98:1e:3d:9e:40:b4:d1:5e:3d:d1:04:74:84:52:f6:f4:
2e:98:76:a2:4a:08:49:9f:94:6c:dc:a6:f4:d0:cc:03:38:68:
9d:7c:b9:46:40:fc:94:9f:b6:8c:4a:0f:f0:a6:49:04:4d:17:
c5:37:7f:32:19:03:e5:c0:59:71:f7:e0:cf:71:06:8f:f7:08:
d0:e4:9f:75:c4:f6:0a:5b:07:91:b8:ae:99:aa:b7:43:b0:e5:
13:06:e0:2d:ab:0c:de:a1:4f:fe:b1:95:64:41:34:25:21:42:
39:5a:83:14:b5:4e:b0:d3:64:48:2f:f7:c7:7d:09:81:33:4b:
35:69:b4:ea:44:a5:b8:83:c3:ed:b3:c4:51:a8:af:42:24:db:
d3:e9:3c:0e:13:3a:29:7f:b6:b2:46:18:4b:3c:2c:ce:f0:71:
21:3e:2e:dc:3c:1c:1c:d0:14:ff:52:4e:79:11:dc:9d:da:5c:
bb:c2:eb:75:ec:fa:c3:e6:30:75:52:5b:2f:bf:52:d2:0f:64:
1a:98:ed:6a:4a:89:81:98:e8:f5:9b:f8:47:3f:3e:c3:38:97:
ae:cd:94:18:19:4b:8b:37:5a:ff:c4:7c:cd:b0:48:54:ab:09:
d6:a1:c0:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:53:26 2025 by rpki-client