Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
File: D8lnTtVfCnZcpdocb6-k3SXioXg.mft (raw, json)
Hash identifier: yd2TbiCeOyhovcsOekeeYaTYequWfdGvXdU9U9wIQdY=
Subject key identifier: 79:8F:F3:5A:EC:60:EA:CB:11:B4:11:83:57:58:E6:17:B8:C6:19:01
Authority key identifier: 0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
Certificate issuer: /CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Certificate serial: 019A4F990502D9A14A26DF3EED08BADFE030
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
Manifest number: 07F2
Signing time: Tue 04 Nov 2025 16:00:19 +0000
Manifest this update: Tue 04 Nov 2025 16:00:19 +0000
Manifest next update: Wed 05 Nov 2025 16:00:19 +0000
Files and hashes: 1: D8lnTtVfCnZcpdocb6-k3SXioXg.crl (hash: FD7QmapfLg+u2eLx7226jZZypkrf+bHt3k9hq02KYKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:05:02:d9:a1:4a:26:df:3e:ed:08:ba:df:e0:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Validity
Not Before: Nov 4 16:00:19 2025 GMT
Not After : Nov 5 16:00:19 2025 GMT
Subject: CN=798ff35aec60eacb11b411835758e617b8c61901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:67:26:85:c2:83:e6:e2:6d:a5:9c:2d:97:72:
08:86:3a:0f:5a:1d:45:0e:8a:d6:7a:f3:d8:c3:1b:
02:cc:8f:8f:54:3b:dd:b9:17:11:40:f5:b4:f5:fe:
ea:e9:f6:e4:90:3f:59:a7:75:3c:b1:e3:6b:39:96:
40:13:4e:b3:3e:d2:7e:70:bc:97:55:f7:45:3d:03:
19:a4:49:e1:d5:f5:89:c8:d5:5d:9c:c4:75:d0:99:
1d:b3:05:cc:19:63:c3:b4:30:6d:2c:be:ed:a0:6c:
f0:5c:1f:e1:01:6b:53:58:4e:c4:d6:53:6a:f9:bd:
6b:2c:cc:d1:21:e5:f8:bc:b0:47:9d:35:03:0f:e2:
62:26:e0:ad:24:08:89:b2:d1:64:85:a1:a9:e3:d6:
d6:05:f5:1a:60:e3:7b:81:7c:b0:d6:79:cc:46:61:
43:b3:81:ca:3c:7d:9a:10:d6:fc:4c:b7:9f:69:b6:
88:e1:35:a1:57:8d:72:e2:0b:ff:d6:d8:81:29:11:
34:fb:22:63:9c:b2:ad:6a:ad:bf:5a:a0:95:3e:c0:
d7:e0:ce:13:3a:09:72:26:0f:68:86:f0:20:63:2d:
01:0c:8a:d4:4e:7d:1d:a4:00:ef:d6:56:dc:08:60:
c2:8c:fb:a5:3a:8c:c1:cb:cb:d7:29:bf:7b:35:7c:
c9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:8F:F3:5A:EC:60:EA:CB:11:B4:11:83:57:58:E6:17:B8:C6:19:01
X509v3 Authority Key Identifier:
keyid:0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:29:95:65:b2:80:31:06:5f:14:e2:f0:e2:0f:81:b4:2e:e8:
e6:64:ab:55:aa:b8:3f:e2:94:24:6a:de:7c:78:6d:c6:14:c0:
30:26:a2:94:87:43:5a:14:66:00:6d:cc:c6:80:1a:73:ae:5a:
03:80:a8:d3:e5:2b:37:96:82:ba:e3:8a:6c:9d:64:dd:53:f5:
f8:3f:a0:70:be:a4:c0:65:30:a1:48:33:45:20:a9:56:c9:41:
8f:11:8c:73:9c:4c:f7:f4:f1:cc:de:67:b1:2d:57:62:e6:01:
b7:91:b0:f3:dc:b5:9e:aa:2e:35:01:1b:e0:32:cb:7b:75:d5:
50:a1:f4:bc:f4:dc:a5:ea:a6:46:45:d7:7a:25:86:bb:e3:13:
2d:f9:bc:e4:d7:34:03:8b:8b:4d:55:52:cd:10:fe:1d:d2:8b:
1e:19:aa:be:a2:55:f8:8f:35:ef:04:75:09:35:0e:26:d6:e9:
30:1d:88:67:d3:61:53:59:d0:b5:ae:1e:47:7d:fd:a3:ee:ed:
50:49:3d:5d:51:18:2c:c8:e2:4b:f6:c2:ca:94:24:06:3e:5c:
0c:c1:71:c2:58:9b:f7:ed:4f:f6:c5:78:02:53:49:cd:87:90:
a8:b6:d9:69:1a:6b:ac:a1:61:7f:d6:c0:96:f3:fc:fb:12:56:
66:2c:03:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:55:00 2025 by rpki-client