Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json)
Hash identifier: vBMIER2VOUciuYuCfa4uwID5Um5eIc1sb4ZDggtkHzE=
Subject key identifier: 64:86:0B:1D:07:69:5A:61:CE:31:B5:57:81:5E:66:B1:3D:68:3E:5B
Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689
Certificate serial: 019890353E51710E3290072265779038DF2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
Manifest number: 02A9
Signing time: Sat 09 Aug 2025 19:01:05 +0000
Manifest this update: Sat 09 Aug 2025 19:01:05 +0000
Manifest next update: Sun 10 Aug 2025 19:01:05 +0000
Files and hashes: 1: M8dNAav4bGEdssIavf8xkWsYnhg.roa (hash: XQuy4W50mLmkvV791/MW+gWfWSh1bhqASgHVJ90pFyY=)
2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: ycljeu1POl32hm6wOhY0iICgeMYQBnEIzeOZE9xbG7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:35:3e:51:71:0e:32:90:07:22:65:77:90:38:df:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689
Validity
Not Before: Aug 9 19:01:05 2025 GMT
Not After : Aug 10 19:01:05 2025 GMT
Subject: CN=64860b1d07695a61ce31b557815e66b13d683e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fe:67:46:66:00:3e:64:be:4f:96:f8:75:86:
47:da:90:d3:a4:89:43:af:41:a5:5a:d0:ad:bd:5a:
30:f8:e2:18:71:c0:f9:11:41:e9:41:60:1f:d7:47:
42:89:92:08:59:50:48:46:92:41:cc:18:21:07:58:
b8:f1:93:93:61:4e:19:91:4a:78:50:77:6b:eb:57:
62:26:df:fb:4d:72:46:da:5b:a4:55:34:98:71:dd:
f2:73:5a:43:44:70:2a:1c:ae:50:af:2d:6b:8c:1e:
65:f9:af:f1:ae:39:f5:b1:67:45:1c:26:4d:45:0c:
fa:2b:7d:e6:d1:19:6b:91:da:ab:97:24:8d:f5:38:
ac:ae:58:09:4e:7f:5d:2e:3a:2f:2e:f9:85:86:f3:
e6:85:00:da:68:e5:98:2e:ac:fe:d3:44:f4:17:34:
21:31:bd:d0:9f:bf:38:c9:b5:2c:18:43:9b:77:51:
96:42:e7:a3:45:23:4d:36:70:46:1b:38:0e:75:9f:
0e:56:f1:e3:1f:2c:84:e9:99:bf:d9:a9:cd:bc:da:
87:fb:71:ab:e0:48:ae:4c:be:1c:ce:4f:59:c5:80:
e4:73:b8:f2:ad:9c:39:24:13:48:0c:80:b5:05:5c:
de:25:dc:08:74:fc:d6:7f:e7:0d:96:1f:fd:9d:63:
64:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:86:0B:1D:07:69:5A:61:CE:31:B5:57:81:5E:66:B1:3D:68:3E:5B
X509v3 Authority Key Identifier:
keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:56:be:92:2e:33:8e:71:51:82:a4:eb:ee:10:cf:ff:31:a0:
78:a4:4d:3a:6f:3c:5f:32:f3:90:50:52:46:29:47:9b:9f:b7:
2f:37:33:19:9e:ab:9a:75:52:b3:41:49:c8:f0:27:b3:03:db:
28:99:59:3e:7b:cf:6e:40:aa:88:64:0c:c0:8e:4f:ca:46:ea:
62:79:a4:e2:fb:14:8d:89:45:e6:f6:32:9f:59:46:3a:77:76:
fb:87:e4:cf:d8:56:b8:dd:07:a1:91:34:d8:c4:41:48:17:a3:
6a:97:a4:60:92:5c:ff:cd:cf:f1:df:ad:ac:27:de:bf:c4:a4:
6c:99:a9:ad:e9:b2:e4:3f:f0:ba:0f:c5:81:00:f8:df:a5:8e:
2f:58:47:b6:74:96:b6:45:d3:ba:6d:d8:51:00:0d:29:75:2f:
1b:4c:12:62:41:d8:71:8a:75:84:85:d5:da:3c:80:6f:68:80:
5d:8c:93:c7:a0:9c:e1:20:28:4e:15:86:32:4c:40:10:fa:20:
4a:7e:2b:e8:78:d8:6b:9c:ce:74:23:9d:f2:9e:d0:1e:de:a2:
95:64:d1:6a:5b:0c:c9:3a:48:f6:6c:a9:e8:ff:a9:9e:c4:59:
5e:6f:dc:7d:36:cb:2d:60:e4:f5:2a:dd:08:7c:ba:14:48:1a:
04:2a:a9:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 22:41:24 2025 by rpki-client