Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: AMeFHHL/RP7e4fmL5NdPDdcCF+ThRvmgGc/zwyUyGcQ=
Subject key identifier: 4D:CA:A8:88:58:FB:B4:84:4A:8D:82:B7:0B:A1:BA:CC:C8:D8:AD:DB
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 01987418D68894C5A046E080D5301600B96D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 08:00:41 +0000
Manifest this update: Mon 04 Aug 2025 08:00:41 +0000
Manifest next update: Tue 05 Aug 2025 08:00:41 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: T4s5D/svkPPeYBpAiLJ6w0azGzxQjsbB2kGuE/IimzM=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:18:d6:88:94:c5:a0:46:e0:80:d5:30:16:00:b9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Aug 4 08:00:41 2025 GMT
Not After : Aug 5 08:00:41 2025 GMT
Subject: CN=4dcaa88858fbb4844a8d82b70ba1baccc8d8addb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fe:23:d8:6d:32:29:60:1a:3c:8d:03:4b:33:
e5:7d:ed:63:54:0c:ee:35:d8:1c:9f:ae:26:66:db:
f6:26:cc:8f:2b:0e:48:b3:38:cd:cd:84:e8:7d:12:
56:fb:fe:8d:fb:55:88:18:cc:e9:1d:18:3d:50:16:
80:ee:aa:30:bc:0b:aa:c0:2a:90:8e:5a:7f:88:de:
41:13:ff:19:f1:c8:a7:9a:41:5d:b7:d9:29:1a:30:
9e:a7:4d:4d:b4:5d:d3:f5:22:08:37:25:ee:49:3f:
51:7e:74:45:18:55:f8:ae:e8:89:88:05:d7:bc:09:
7a:4d:58:eb:a6:0c:c1:a4:58:24:c7:8d:76:99:de:
31:be:b6:21:a5:c3:df:80:a5:a0:50:f5:e5:9b:6c:
0e:38:3f:38:31:97:74:14:a3:60:32:b2:59:3f:c9:
67:e8:a3:a2:2f:c5:3c:bc:35:e1:67:2b:8c:07:e8:
d5:ec:28:0c:8b:a9:48:22:72:5f:88:bf:56:fb:a1:
06:c4:a6:61:b8:c0:f3:40:61:23:aa:fa:78:f1:cc:
2e:84:ab:6a:1d:bf:b4:4a:94:78:1c:9a:52:5d:34:
4a:fc:4f:d4:db:22:45:ea:ec:22:44:18:01:1e:80:
0c:63:82:cf:f6:23:76:92:fa:38:10:54:a3:3b:7b:
d2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:CA:A8:88:58:FB:B4:84:4A:8D:82:B7:0B:A1:BA:CC:C8:D8:AD:DB
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:ed:80:df:1b:df:5a:11:ee:9b:7a:6f:0e:bb:45:29:43:f0:
7a:3c:f0:8b:1f:16:6e:7a:5d:cb:b2:56:ca:ef:ad:e8:f7:2a:
c8:f5:7e:69:f7:71:14:bb:f1:47:29:bf:d7:7e:27:a0:69:24:
c5:f2:99:e4:bc:3e:80:e7:9d:0d:03:1c:c4:23:1f:bc:db:a6:
60:55:1f:52:8a:00:76:cd:0a:ba:f7:74:cc:a6:5b:56:78:64:
43:07:0c:b1:a7:26:3d:b7:df:da:10:55:e0:65:15:90:f7:9a:
18:20:58:56:d3:f5:cd:a9:29:60:b8:c5:e5:a1:cb:33:14:6b:
4c:fd:a5:ad:08:62:75:40:f9:25:af:2b:e7:35:de:d8:01:50:
11:70:5f:fe:3e:a3:6a:71:5d:c8:91:c3:c5:c7:39:03:da:b2:
32:ed:89:1e:58:3d:1f:3f:ad:56:a8:47:3a:c8:5e:61:e9:12:
9e:c1:f8:72:3e:1a:bd:90:20:77:d8:fd:25:ce:57:61:56:87:
e0:5e:d7:b8:88:41:a2:f3:1d:58:fb:93:36:96:44:68:8f:73:
1e:64:ad:c0:da:1f:6a:2c:89:da:47:17:f3:4f:6a:93:af:36:
64:51:63:ae:1e:90:35:cb:0c:a8:78:53:92:ea:3d:83:2e:41:
56:d6:2c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:11:09 2025 by rpki-client