Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
File: DdIkCGSH7IZmumFcFdyPR532pI0.mft (raw, json)
Hash identifier: pDlhGA5lYHPRePw9GCsqk5syc2BN9DI5A4LCNxCpPME=
Subject key identifier: 9B:46:85:7F:82:0D:3C:3B:54:27:3A:AC:08:7E:9E:BF:AC:DD:BE:54
Authority key identifier: 0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
Certificate issuer: /CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Certificate serial: 0199FC58F1B5F457065E2D5A3493EC29F9CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
Manifest number: 0515
Signing time: Sun 19 Oct 2025 12:01:51 +0000
Manifest this update: Sun 19 Oct 2025 12:01:51 +0000
Manifest next update: Mon 20 Oct 2025 12:01:51 +0000
Files and hashes: 1: DdIkCGSH7IZmumFcFdyPR532pI0.crl (hash: d4I4Q/VrTSLkMknwAepQce1r2TNdbacx3kQ8g0iXOOQ=)
2: DsQ3XuL18x6JXJPIAS7Bywor1FI.roa (hash: YgD4/obT5P1W7ZaQyQBLHDkI0d6d+gx0ix2vsYYOe7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:f1:b5:f4:57:06:5e:2d:5a:34:93:ec:29:f9:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Validity
Not Before: Oct 19 12:01:51 2025 GMT
Not After : Oct 20 12:01:51 2025 GMT
Subject: CN=9b46857f820d3c3b54273aac087e9ebfacddbe54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d7:0d:56:06:29:ea:cd:be:c1:ec:bf:4d:76:
7e:b5:d6:33:fb:b2:b7:3a:5a:65:cc:d6:b4:ff:a1:
09:b5:f6:f3:c7:e4:c6:c3:dd:57:79:53:e5:9f:05:
36:e9:91:f5:f0:05:a1:68:e6:f5:34:6f:c6:4d:a8:
a4:d4:9d:f4:2c:3c:fe:b5:1b:87:d7:e4:18:1b:8e:
85:ca:08:2e:37:15:1d:e6:da:2a:0f:a7:ce:35:8b:
4d:a6:18:17:22:a7:8b:b1:37:85:6f:99:ba:90:77:
91:0a:10:5f:d7:74:79:7f:a7:f9:23:40:f9:01:53:
42:33:67:dd:ff:28:b0:3c:81:fa:4a:a8:9e:5e:0e:
8c:b3:06:24:70:d3:e4:f5:76:50:a5:c9:ad:37:d4:
60:4d:80:cf:c8:29:0b:30:53:b1:1f:34:8a:c0:ae:
cf:93:5e:1e:17:9d:45:e3:9d:16:d2:f6:20:10:c4:
cf:33:4e:19:72:1b:94:6d:c5:a5:d7:11:a1:ec:93:
7f:f2:94:6d:e4:20:bc:b4:f7:a3:81:07:e0:00:d0:
8d:b3:79:d4:4f:37:94:a6:a8:9d:c2:e6:31:b0:c0:
8b:77:37:74:09:84:d2:22:45:a2:a0:70:87:b8:f6:
a5:11:e9:7c:3e:07:e1:2b:c5:30:db:5a:37:05:2c:
a6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:46:85:7F:82:0D:3C:3B:54:27:3A:AC:08:7E:9E:BF:AC:DD:BE:54
X509v3 Authority Key Identifier:
keyid:0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:b0:9b:5f:29:cd:4d:4e:dc:b8:10:85:e0:b4:d5:ff:49:4a:
23:a2:18:de:f7:d6:a5:7d:8d:fc:e1:ed:f9:b3:df:72:9c:33:
89:bb:05:d1:9b:8c:c8:9f:97:ab:75:34:0a:14:f7:68:b2:15:
5d:b8:9b:e0:d8:a2:4f:8d:f2:e0:b8:99:55:9d:fa:92:fd:43:
73:07:67:09:8a:aa:50:c4:c7:6f:7c:65:ec:67:5c:29:33:db:
84:e8:18:d5:98:ec:f3:b0:f7:dd:3e:43:27:88:1a:96:ae:a6:
7c:9b:3e:8d:5a:f2:cf:3c:83:da:4c:a0:4d:15:67:0b:45:25:
1e:b4:a8:79:a9:45:49:98:5a:0e:b4:b6:2c:59:cd:08:d8:c9:
d9:c5:99:8e:97:3e:fd:5b:2b:72:57:f2:31:f2:e9:e2:37:fc:
0b:6d:4f:7f:a6:24:19:90:24:1b:5c:90:2e:11:5d:7d:e4:5b:
ac:3a:9d:85:a7:04:a9:ac:12:78:4d:04:34:98:78:84:a1:4c:
c7:e0:49:46:e5:1b:65:80:73:92:ba:8a:a1:2e:87:5a:b1:b4:
66:37:76:a3:1c:10:af:7e:2d:e5:21:37:db:73:55:81:d7:42:
68:fb:6b:ef:8c:48:5b:c5:3d:82:5a:76:50:ae:55:18:a0:a3:
70:7f:0f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:05 2025 by rpki-client