Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
File: G8qoP8mkEL2z4P0thIcgE0dxvs8.mft (raw, json)
Hash identifier: yaj4FdhmdzP5M2NW91JWut1dQmM0AJsGtz+AVe/JJ14=
Subject key identifier: 83:C5:B2:15:AA:5D:C6:6B:F4:75:4C:88:0A:A4:23:60:40:B1:9C:90
Authority key identifier: 1B:CA:A8:3F:C9:A4:10:BD:B3:E0:FD:2D:84:87:20:13:47:71:BE:CF
Certificate issuer: /CN=1bcaa83fc9a410bdb3e0fd2d848720134771becf
Certificate serial: 019A4DE165FCADE51220DB1993FF6C4DA6C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G8qoP8mkEL2z4P0thIcgE0dxvs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
Manifest number: 169A
Signing time: Tue 04 Nov 2025 08:00:08 +0000
Manifest this update: Tue 04 Nov 2025 08:00:08 +0000
Manifest next update: Wed 05 Nov 2025 08:00:08 +0000
Files and hashes: 1: G8qoP8mkEL2z4P0thIcgE0dxvs8.crl (hash: NWDvFu4GUxemjMCCbaH+sBkbN8wbMJt4o9ALNp41GFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/G8qoP8mkEL2z4P0thIcgE0dxvs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:65:fc:ad:e5:12:20:db:19:93:ff:6c:4d:a6:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bcaa83fc9a410bdb3e0fd2d848720134771becf
Validity
Not Before: Nov 4 08:00:08 2025 GMT
Not After : Nov 5 08:00:08 2025 GMT
Subject: CN=83c5b215aa5dc66bf4754c880aa4236040b19c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9d:7b:40:21:38:59:92:ac:b3:9b:f6:7b:62:
d2:73:61:08:18:12:5c:39:f8:f7:ba:0b:55:68:2b:
eb:a6:be:52:9a:73:65:d7:df:bc:59:16:e6:c1:84:
48:b8:27:74:7a:2b:c6:e6:64:6d:99:67:8f:9b:18:
63:e1:f2:ba:ad:60:61:c4:f9:c9:65:a5:15:4b:01:
c1:b7:11:b1:ab:47:0f:39:d2:fd:03:18:25:8b:3f:
cc:01:f8:b7:db:cc:0d:fd:df:f2:da:2c:d6:b3:9b:
5f:22:a0:23:8a:41:bb:ef:4b:bc:80:b6:fa:02:9d:
5a:41:a2:16:93:5c:9e:48:7f:32:1c:16:df:a9:2c:
a3:d2:97:88:47:89:3e:13:69:72:53:87:ac:c6:33:
c2:fa:f6:d6:e5:b9:42:97:be:6c:5a:da:34:e5:4f:
80:93:d3:83:9c:f0:19:ce:42:aa:8c:c4:5e:08:bc:
ab:77:a3:51:1f:65:03:65:87:f2:23:b5:9b:0b:06:
8c:38:74:1b:27:fe:71:8a:0c:32:91:58:10:95:ce:
e1:7e:38:ee:26:4b:a5:fc:af:85:83:ed:37:9f:0c:
42:15:ae:ac:e4:68:1f:c0:c6:98:a5:0e:63:aa:cb:
30:36:cb:c8:a7:e5:92:ee:dd:17:08:4c:69:e4:43:
10:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C5:B2:15:AA:5D:C6:6B:F4:75:4C:88:0A:A4:23:60:40:B1:9C:90
X509v3 Authority Key Identifier:
keyid:1B:CA:A8:3F:C9:A4:10:BD:B3:E0:FD:2D:84:87:20:13:47:71:BE:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G8qoP8mkEL2z4P0thIcgE0dxvs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e56fbc-18cf-4765-8a4c-cd70138e6383/1/G8qoP8mkEL2z4P0thIcgE0dxvs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:ee:a9:92:2c:dd:7a:a9:2e:09:94:d2:5c:9f:b4:50:e9:5d:
94:a8:a3:9d:96:e2:07:20:f4:b7:2d:1a:53:de:cd:6f:b0:56:
5b:c6:ea:f6:d7:be:ea:61:34:50:bc:17:da:21:6d:fb:31:fc:
bf:45:a9:41:46:7e:e8:b6:c1:eb:46:10:23:e6:63:94:b5:44:
31:1a:0f:ec:3c:c4:44:8d:d8:27:54:84:1f:09:12:bb:d3:20:
6e:e8:fa:7f:25:83:29:2b:21:10:d8:df:c0:b5:68:62:9a:15:
05:d7:85:26:a7:6f:1b:84:64:54:2b:ee:c1:58:ab:e8:72:0b:
69:45:fc:36:c4:50:84:f1:d9:8b:89:40:06:5f:85:bf:67:61:
d5:d8:11:73:ea:fd:85:8d:1b:fa:5a:f3:cd:3a:3e:18:64:7a:
60:d6:43:2e:9f:e5:1c:e7:c6:21:6c:f5:eb:ea:b9:26:a8:46:
c6:cd:fe:4b:77:25:da:32:87:9f:e5:12:b4:9d:59:09:38:8d:
58:a7:9f:a0:c1:b2:83:b4:29:3a:68:e0:3d:da:ea:e7:cc:e1:
8c:1d:64:f6:5a:6c:32:ac:34:04:1f:3f:98:58:9a:24:a9:88:
d5:59:10:fb:ac:d3:f4:47:4f:9e:2d:cb:39:6d:5b:51:fa:26:
37:2d:24:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:06:29 2025 by rpki-client