Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: Lun3kNUAioUmTiPu5SoDY/RldipFGQaNsgUbzib0FV0=
Subject key identifier: 82:62:3E:7C:23:4D:7E:83:E6:AE:AA:8C:83:1C:A3:DD:DA:96:A7:C1
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 01989F71065D88834DD9CD5CC9ACD674CAD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 15FC
Signing time: Tue 12 Aug 2025 18:00:41 +0000
Manifest this update: Tue 12 Aug 2025 18:00:41 +0000
Manifest next update: Wed 13 Aug 2025 18:00:41 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: B1WYtGh/ez7aBob4IXKRTxx9JzNmD13YhvLNFeDk2ZM=)
2: LSDLxpYG9vUS-ynb5NuKXC0hxwk.roa (hash: iU/GAJxLreLcqJkb0jyy5NFNWuEEVZB548A5w51V+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 18:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:71:06:5d:88:83:4d:d9:cd:5c:c9:ac:d6:74:ca:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: Aug 12 18:00:41 2025 GMT
Not After : Aug 13 18:00:41 2025 GMT
Subject: CN=82623e7c234d7e83e6aeaa8c831ca3ddda96a7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:81:df:f9:2e:3e:ec:58:33:42:b2:b2:bf:0b:
7d:4a:eb:cf:53:b9:b7:4e:ff:33:82:ab:42:01:46:
37:2e:a6:34:79:4c:47:53:c6:a6:3f:ab:ca:10:a8:
22:5c:5e:cb:9c:90:92:4a:be:be:10:d1:58:83:b9:
08:cc:65:70:a3:b0:af:02:f6:a6:b3:11:18:ce:4a:
d1:2e:c1:ec:47:05:87:e7:84:4e:55:69:b3:ac:90:
73:9d:80:6d:30:2d:0f:58:e0:48:23:59:8c:95:9d:
c7:58:a0:e0:97:4e:6f:e0:c5:64:8e:30:65:c4:74:
2f:00:94:1a:d9:0e:25:75:31:e3:89:36:ca:54:f7:
33:ed:89:68:99:7c:96:f3:ab:c2:72:2d:ca:1a:09:
6b:73:68:bc:b2:37:3e:8c:46:4b:4c:87:c4:98:7d:
39:fe:b5:7a:e9:a2:bd:2b:67:5c:02:5d:d3:e1:24:
68:e7:1d:44:3b:82:08:76:25:a3:f5:a7:3f:8c:ea:
15:82:b2:6b:81:35:44:56:b8:f9:0b:1a:a3:ed:c0:
3f:7b:aa:4e:03:13:e5:a9:4c:d2:dd:b0:55:0d:11:
e0:ed:66:16:05:c0:a8:72:7f:73:c3:3c:aa:d9:96:
23:f5:26:97:92:5b:db:50:ea:57:4f:07:d5:23:e6:
3b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:62:3E:7C:23:4D:7E:83:E6:AE:AA:8C:83:1C:A3:DD:DA:96:A7:C1
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:e1:b1:54:0c:ef:07:ee:9a:3f:49:ae:f3:b2:ec:c3:45:b1:
d3:5b:41:7c:f4:fa:8e:c6:29:58:18:98:0a:65:1b:bc:2c:07:
36:f9:19:86:af:ea:d5:54:11:35:15:6e:3a:91:ae:5e:ec:6b:
c2:4f:41:cb:29:f3:b2:26:28:b5:ec:90:28:f4:c9:b0:38:f1:
b4:6f:ac:21:35:42:89:af:35:65:d4:3c:d3:40:79:a5:27:b8:
23:12:2b:8e:f4:9b:a7:7f:f7:20:df:76:20:6b:ec:ae:3d:7d:
e1:66:e1:cb:0e:00:2d:c4:bd:66:d4:fd:ee:e8:4e:25:95:a0:
74:b9:8d:6c:7c:0a:ef:19:49:37:10:c1:d8:41:a1:ac:07:3e:
b1:69:1a:f3:61:2e:60:bb:06:42:85:7f:bd:3f:74:53:58:a2:
91:4b:92:f6:5f:0e:01:f9:6d:ff:e1:43:4e:44:f3:98:6c:ea:
db:3c:38:37:78:ec:0d:ea:0d:80:d5:35:f6:fd:00:6e:58:ad:
3b:ac:99:8e:6a:48:6a:96:4b:c6:a8:31:e2:48:c4:37:12:dc:
40:d4:90:1f:36:17:38:d8:a6:5b:9c:19:da:8a:ce:c8:74:6b:
14:70:46:78:4d:9e:8a:a8:c0:68:4e:93:d7:b9:b8:2d:0b:b4:
09:1d:8e:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:25:25 2025 by rpki-client