Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: go8tHDe2iwkb4TRByqZMFoviFi1r90LCH7MnReXbU0E=
Subject key identifier: 10:4A:02:39:9C:A6:89:BA:78:A7:7E:01:7D:EA:72:E8:8F:ED:6F:0B
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 019891488135752452EEEACDAB4B47E24D93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 0F87
Signing time: Sun 10 Aug 2025 00:01:44 +0000
Manifest this update: Sun 10 Aug 2025 00:01:44 +0000
Manifest next update: Mon 11 Aug 2025 00:01:44 +0000
Files and hashes: 1: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: gBWDpW2i0QOANavet8OUIHK3ZrRO3uIMR6wp5HCBFO8=)
2: Wb0clcxCuCcUH9RDxENV44_1l9w.roa (hash: IOO34gWbQwbQwVQDhS544nKGrCLE+a+zuAW9waRkyRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 00:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:48:81:35:75:24:52:ee:ea:cd:ab:4b:47:e2:4d:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: Aug 10 00:01:44 2025 GMT
Not After : Aug 11 00:01:44 2025 GMT
Subject: CN=104a02399ca689ba78a77e017dea72e88fed6f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:94:f4:98:e6:27:cb:ab:8b:fe:ab:36:1a:73:
29:42:51:f2:c3:d9:2c:f2:36:11:ab:57:72:6f:a9:
d2:f2:31:01:99:8e:61:a5:8f:3d:5a:48:e8:4e:dc:
9c:b0:c3:85:1e:ec:b6:0e:48:7b:9c:c6:3a:e1:7f:
e0:2a:1d:18:bc:01:27:98:49:37:96:52:63:19:7a:
b1:7b:d4:21:56:37:1c:a3:a8:1e:bc:6b:86:f2:44:
a7:3e:0b:f6:ce:7f:95:3d:8c:9c:e2:5b:f0:77:be:
0a:4c:80:7d:c2:f8:80:09:6a:87:0d:c8:20:78:e0:
6b:de:ae:a1:3c:c8:f6:61:12:27:00:71:65:3c:1f:
c5:f9:8d:fd:02:9b:b9:a2:c0:9c:17:4a:97:df:40:
b7:2e:87:e1:86:98:38:1d:39:4b:6e:1a:99:f4:bb:
ef:f5:8c:3e:db:a5:e1:b3:e0:4f:56:66:8e:2e:55:
32:f5:d0:65:9a:96:b3:7e:78:ea:00:68:07:b9:d5:
2c:91:12:bd:48:60:68:21:c9:59:34:ff:02:22:30:
3b:14:4a:8b:fd:dd:b8:99:5c:ed:f4:93:db:49:51:
1e:06:12:d4:f1:60:5d:25:c7:75:72:43:5e:be:8b:
5e:98:1b:6c:40:9b:71:89:fc:5b:f1:d8:c3:eb:f1:
b0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:4A:02:39:9C:A6:89:BA:78:A7:7E:01:7D:EA:72:E8:8F:ED:6F:0B
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:83:5f:1a:15:4a:cf:36:11:36:bf:cd:6c:bf:bb:cc:39:f9:
93:e4:bd:37:ac:ca:d5:d4:55:a9:e7:3c:89:02:f1:16:d9:37:
58:44:71:65:39:c4:c6:69:78:89:26:fb:8c:88:a9:bc:1d:2f:
5e:15:8e:99:2b:4d:3d:c4:83:cf:23:26:ad:30:f9:02:7b:16:
6e:0e:6e:0f:bd:83:24:79:52:0b:31:30:aa:4b:4c:1a:a9:9b:
2a:68:67:84:8c:9d:bb:cf:35:a2:12:78:c9:d4:f1:f7:15:67:
46:af:ed:c6:0b:28:90:dc:fe:a0:9f:a8:aa:57:9a:c0:f0:5d:
c6:98:c4:54:a0:46:6e:67:a4:b3:44:f1:2d:a1:1d:32:1b:a0:
48:24:44:10:3c:d9:ef:81:b0:42:e7:33:f9:8b:28:bc:37:8d:
0a:dc:69:39:79:0f:cb:12:44:71:de:f6:00:82:a9:8e:1a:2f:
96:aa:e8:9e:72:1b:0a:14:6d:63:d8:dd:64:e2:9b:1e:b7:7c:
67:f7:ee:8f:88:f6:c8:b9:f4:14:de:68:e3:d7:07:b7:d0:19:
33:8e:69:90:a9:ce:96:c0:9e:3f:5b:8a:34:98:32:f4:b4:fd:
17:19:0b:5f:7b:92:7c:a6:97:df:b1:e2:c3:7b:7e:6d:8b:71:
6e:8d:25:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 10:34:20 2025 by rpki-client