Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json)
Hash identifier: odDopQWlsBIRgijjC4/NNeVh4HEGUa8mLgBB7KgnG7Q=
Subject key identifier: B7:6B:84:FC:71:E3:FE:64:B5:7C:E8:14:02:13:B6:53:FF:48:5C:90
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 0199FC8F4E55D8540BABA2019A4CA983D1FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
Manifest number: 0959
Signing time: Sun 19 Oct 2025 13:01:13 +0000
Manifest this update: Sun 19 Oct 2025 13:01:13 +0000
Manifest next update: Mon 20 Oct 2025 13:01:13 +0000
Files and hashes: 1: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: OUQonuijmEr8ZDhI+CLImjFnnRP9CNUaPbV/0f+xbB8=)
2: IAritswAhqNQe77s1GDg_ezpHck.roa (hash: ILdWDEHhnQvuxpeMgx2XCbjW7CQm2ybVgtMQih2P4NU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:4e:55:d8:54:0b:ab:a2:01:9a:4c:a9:83:d1:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Oct 19 13:01:13 2025 GMT
Not After : Oct 20 13:01:13 2025 GMT
Subject: CN=b76b84fc71e3fe64b57ce8140213b653ff485c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d2:97:03:4e:91:a5:80:62:85:91:19:46:b0:
21:6d:9f:46:78:b5:07:84:59:ff:96:a8:0e:5e:a6:
4f:c3:b6:82:a9:17:97:c0:1e:0b:d9:21:7d:21:33:
5f:6b:56:0b:f7:89:77:76:ea:49:af:e5:0f:66:e9:
b7:93:60:a8:03:f1:c8:45:78:cb:7a:45:7e:d2:aa:
7f:73:a6:dd:1b:df:8f:68:d2:4e:6a:e3:b1:15:00:
c7:7a:5d:c5:dd:cf:cd:0f:18:50:c9:c0:78:85:15:
ef:4a:e7:e1:05:b2:02:a4:f2:c0:30:1a:f5:07:65:
6e:bf:0a:df:6a:1f:a9:9e:09:2d:f3:16:63:ed:4b:
f5:81:32:69:27:9b:86:16:ef:40:2d:f3:41:49:d5:
05:65:66:30:27:29:5b:99:01:eb:7d:12:f6:fb:3e:
29:2e:a3:d2:7b:a4:66:12:4d:21:72:03:7d:3f:4c:
69:95:13:94:77:f1:78:9e:25:d6:59:cc:15:92:eb:
37:01:ef:a6:d7:23:68:00:91:9b:09:e0:de:5e:40:
e0:ee:73:f9:b1:86:ec:1f:59:c1:68:82:2d:28:86:
c4:c1:5a:58:47:d4:dd:d6:62:02:de:08:5f:22:55:
a2:80:b8:05:e5:22:cd:be:f7:33:12:d8:61:75:df:
b6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:6B:84:FC:71:E3:FE:64:B5:7C:E8:14:02:13:B6:53:FF:48:5C:90
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:f5:ec:47:22:96:58:5c:d9:46:e9:e2:33:94:39:b7:40:5e:
74:43:06:0b:b5:aa:b4:4a:fd:8b:91:3f:46:da:4a:88:71:82:
d6:5c:84:8c:c9:a7:57:e8:f9:d7:0f:c4:76:c0:a2:40:cb:f4:
ee:0f:19:1e:81:6f:3f:1e:43:51:31:f6:64:d7:17:2b:98:f1:
2f:a1:fb:c8:d2:fd:00:bb:f6:3d:f5:10:76:7a:35:5d:5e:27:
a8:2c:0f:83:3f:ad:5e:93:b6:1b:26:2c:92:c2:77:15:78:9c:
e9:b7:2b:9a:77:39:83:57:1b:36:b5:63:e1:43:d7:3f:d1:2c:
2f:3c:13:59:a2:2f:f5:58:42:73:00:9e:64:28:c1:7a:93:0e:
9d:9a:ec:06:2a:df:72:a3:ff:15:bc:6f:51:29:4e:2d:f0:5d:
37:2d:59:9d:f3:18:0a:7b:73:62:bb:e8:a9:9e:fe:d8:14:9c:
69:20:26:8d:f6:38:d4:f2:35:c7:c8:86:97:24:f8:71:36:3a:
1d:61:92:fd:52:cd:62:d0:f0:04:fe:63:a0:e0:6d:76:1f:2f:
7c:32:a2:29:51:e3:39:33:24:b5:1e:11:fc:64:e8:1c:aa:5a:
1e:fe:8c:d2:a0:d2:14:e7:21:33:fe:cc:02:2d:89:16:fc:66:
d4:f8:a7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:05 2025 by rpki-client