Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: EIEJjN91zCvFyvGkvEuV2HRZvXepJRrOkXSuszV6rpY=
Subject key identifier: F8:BB:EF:73:D2:30:8B:12:23:27:05:5F:9E:9D:38:FC:69:6B:85:15
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019A54F6587DB947B644B01A77947DEB5F46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 02B8
Signing time: Wed 05 Nov 2025 17:00:21 +0000
Manifest this update: Wed 05 Nov 2025 17:00:21 +0000
Manifest next update: Thu 06 Nov 2025 17:00:21 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: xqLu5jZdTdJO4Ocf0l7OMHdlN9aO9bD7yE3/5QMzfk0=)
2: gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa (hash: Ql10T2YHVZxrbMNqGA2K5KVTFR5OZbWrykLTc4F+v5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 17:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:f6:58:7d:b9:47:b6:44:b0:1a:77:94:7d:eb:5f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Nov 5 17:00:21 2025 GMT
Not After : Nov 6 17:00:21 2025 GMT
Subject: CN=f8bbef73d2308b122327055f9e9d38fc696b8515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:87:a6:4e:ad:00:ef:1b:1d:b8:63:cb:82:41:
6e:46:98:07:de:45:7f:f5:ef:2c:67:0d:d8:98:01:
07:16:28:50:1d:8e:13:9a:0b:66:10:02:bb:d5:0c:
8e:85:56:06:b2:00:ed:db:cc:a1:b5:c8:8d:fb:f5:
d3:ff:86:b9:9f:b4:df:12:78:1b:af:43:f5:69:cb:
8d:af:06:c1:12:5c:d5:de:2c:d3:5c:ff:6d:b3:24:
39:c8:95:1b:40:e2:e5:e7:6d:23:90:5a:05:23:3c:
89:8c:20:2a:46:44:e9:b0:97:2c:46:51:a3:76:30:
07:a4:a8:24:a0:86:2a:8d:80:de:92:b0:54:aa:c4:
d6:26:cc:b5:a0:4a:0c:77:d0:66:e3:6a:3b:24:80:
3a:12:91:31:26:17:d0:7f:9e:08:13:eb:28:a6:cd:
74:55:98:b6:1d:13:37:ef:a6:f5:17:c3:63:27:2e:
d7:d8:29:c7:fe:d1:56:91:1a:b2:d6:ba:bb:7e:eb:
d5:d4:98:2e:a8:3c:b1:06:b4:79:59:03:4b:f1:40:
cf:74:af:27:a6:b5:b8:65:85:f6:f8:05:db:a6:9e:
68:90:4f:76:a9:50:43:06:5a:f5:6d:f1:df:f6:3a:
16:c7:7f:0f:b2:cf:63:19:f2:f3:48:67:c9:c5:02:
11:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BB:EF:73:D2:30:8B:12:23:27:05:5F:9E:9D:38:FC:69:6B:85:15
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:b1:36:6d:e0:fd:6a:a9:3f:6e:d5:d6:58:e9:70:76:cb:54:
88:78:a4:c7:25:6a:23:de:4b:57:df:40:9c:92:1e:47:4c:a7:
da:83:9a:d6:c6:2d:c7:81:1b:5f:bb:43:f6:9b:cc:b2:52:23:
02:1e:fc:71:95:dd:98:0f:7a:fd:0a:a3:94:b0:6e:73:3a:95:
01:1f:5b:a7:b7:0b:08:d8:b0:67:b1:32:31:5e:6b:99:a5:b1:
94:87:0c:6c:be:73:32:3f:3d:3b:69:12:9e:fd:e0:8c:8f:04:
3f:ff:f4:25:9c:51:7b:07:3b:0f:1f:72:60:8a:b1:a2:bb:3f:
ac:c6:d2:ab:bf:ee:43:7a:fe:e5:ff:9d:b2:4b:24:ac:43:ed:
cc:79:a7:88:eb:3f:d6:7b:91:ec:d5:93:b5:74:7e:8c:b8:64:
87:65:40:59:72:e3:84:8c:9c:91:c2:e6:b1:b4:d3:62:68:9a:
e5:3e:bc:f3:d8:ac:76:3d:be:48:46:36:9f:e0:80:8d:32:c2:
c6:46:f5:98:d6:ee:bd:d0:08:4a:f8:2c:c2:43:21:60:34:cc:
41:67:7c:ff:96:b3:14:e8:72:97:25:10:63:fd:3e:bf:4d:10:
5f:03:89:52:bb:29:42:9f:6a:b1:17:88:1b:a9:58:b1:cc:9e:
97:5d:f5:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 23:01:44 2025 by rpki-client