Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json)
Hash identifier: +HDU0BczmngobWCxQZ5e0ZG5RAFh0UTo69W+ZOYJ2Vw=
Subject key identifier: 37:F7:9B:22:AF:B5:8A:74:9D:F4:F1:82:1F:C6:EC:7D:63:B4:3B:A6
Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689
Certificate serial: 019A4E18B2D013E3C6662E2F68DE0624E03B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
Manifest number: 0390
Signing time: Tue 04 Nov 2025 09:00:32 +0000
Manifest this update: Tue 04 Nov 2025 09:00:32 +0000
Manifest next update: Wed 05 Nov 2025 09:00:32 +0000
Files and hashes: 1: M8dNAav4bGEdssIavf8xkWsYnhg.roa (hash: XQuy4W50mLmkvV791/MW+gWfWSh1bhqASgHVJ90pFyY=)
2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: pggGloHjgoETANPWzK0a8JNlW133wH5tEYfSB5l0obo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:b2:d0:13:e3:c6:66:2e:2f:68:de:06:24:e0:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689
Validity
Not Before: Nov 4 09:00:32 2025 GMT
Not After : Nov 5 09:00:32 2025 GMT
Subject: CN=37f79b22afb58a749df4f1821fc6ec7d63b43ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:77:fe:c8:a8:24:82:66:bc:ed:f7:f1:5f:05:
2c:6c:a1:45:55:2d:87:ab:c3:4b:10:c9:1e:09:91:
80:5d:32:c0:48:4a:57:6a:bc:ca:3c:1a:0f:ac:a6:
3d:99:ca:28:a5:2f:a3:3d:01:fb:03:58:6e:d1:3b:
3e:bc:2b:86:28:db:e4:55:ab:2c:93:fd:6a:8c:e5:
02:73:db:1d:e5:fa:f9:ae:fb:47:eb:33:2c:70:d3:
ea:bd:04:c2:0d:30:34:d6:89:4f:e3:ac:c4:e7:22:
40:2b:da:2f:5a:a9:7d:87:ac:aa:12:c5:22:f1:0b:
18:4c:51:7e:ed:79:5a:16:a5:7d:8c:56:b4:46:7e:
89:d8:1a:a0:67:b3:d1:af:cf:45:2f:8a:11:53:d7:
1f:35:75:38:b0:74:bb:cc:e7:fc:70:1d:38:b6:73:
7e:cc:f7:55:ff:11:c2:1d:cc:e9:71:9f:6a:4c:4b:
cf:3e:fd:46:75:21:30:e2:cc:96:a1:87:a5:f9:6b:
e3:00:94:1b:a2:46:c4:6a:cc:a0:92:43:56:0c:d8:
c6:a9:60:4f:65:c6:db:16:65:4f:64:cf:98:68:c0:
c3:c0:ba:21:15:a5:df:3e:9e:7d:81:14:bb:95:46:
56:bd:60:90:63:76:ec:e0:62:a6:70:89:69:93:6f:
e2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F7:9B:22:AF:B5:8A:74:9D:F4:F1:82:1F:C6:EC:7D:63:B4:3B:A6
X509v3 Authority Key Identifier:
keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:13:85:e1:8a:3c:54:f9:aa:26:a6:f2:44:70:2a:5a:b1:e3:
d9:ac:be:05:b7:c1:9d:2d:3c:b3:74:0a:c7:f2:fc:68:a7:38:
e0:1a:0f:cc:43:59:b2:7e:dd:ef:9d:1f:77:0d:e4:40:61:66:
4f:fd:59:8a:1b:10:03:d5:f8:83:b2:dd:91:e2:76:ab:38:17:
4f:24:71:e9:f2:e7:17:df:9c:47:22:f9:47:89:d5:d5:a7:df:
08:c4:d3:6e:4b:07:e6:e2:6b:87:9a:a5:ff:d3:59:f0:27:d1:
3f:86:e6:76:f1:73:05:ef:47:23:a0:8e:e9:06:34:2b:6e:e6:
6a:09:7e:62:e3:88:a0:78:94:cc:cc:a1:d8:bf:fe:25:c5:fe:
b1:e7:eb:1c:1d:17:c1:82:74:b3:56:d0:47:46:00:62:6d:0a:
bd:52:f1:80:ff:ed:d9:98:80:16:ab:2f:6a:22:3c:81:b5:56:
63:dc:4e:59:4d:46:70:8b:8f:3a:82:90:7a:d5:1a:36:b8:db:
92:88:b0:09:69:33:7c:fc:4c:f6:df:5c:67:bd:9a:11:11:f6:
ac:39:66:22:84:74:c7:6b:7b:75:f1:c2:15:a0:9c:b6:c8:34:
04:ff:73:7a:4a:22:1b:08:a7:60:01:64:a4:73:0c:cd:13:cc:
55:0a:3a:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:19:07 2025 by rpki-client