Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
File: DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft (raw, json)
Hash identifier: dCCZtaoIvg3X3GT7MnrCLWc+4mPurryLeyI66kZ8RvU=
Subject key identifier: 29:2B:85:3F:FA:88:E8:3F:7C:55:6A:34:00:A3:A5:A2:52:4C:74:57
Authority key identifier: 0D:DC:50:9B:4D:B3:52:03:AB:61:6F:47:81:F8:5D:D5:86:04:43:D8
Certificate issuer: /CN=0ddc509b4db35203ab616f4781f85dd5860443d8
Certificate serial: 0199FDD9D7A6650AE46562A08CA78F695248
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
Manifest number: 141B
Signing time: Sun 19 Oct 2025 19:02:16 +0000
Manifest this update: Sun 19 Oct 2025 19:02:16 +0000
Manifest next update: Mon 20 Oct 2025 19:02:16 +0000
Files and hashes: 1: DdxQm02zUgOrYW9Hgfhd1YYEQ9g.crl (hash: MSoBK4R3FxoNhtOXBKeozq9Th0aNGsP+dQsbmvEcnis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:d7:a6:65:0a:e4:65:62:a0:8c:a7:8f:69:52:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ddc509b4db35203ab616f4781f85dd5860443d8
Validity
Not Before: Oct 19 19:02:16 2025 GMT
Not After : Oct 20 19:02:16 2025 GMT
Subject: CN=292b853ffa88e83f7c556a3400a3a5a2524c7457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:45:d1:24:c5:41:0b:17:11:a1:5d:37:cf:c1:
38:59:ea:8d:ce:09:4b:71:c2:d0:e6:92:ca:3a:43:
79:7a:b0:4d:6a:31:47:1d:a7:3b:c8:83:99:8d:7d:
6c:f5:be:42:46:39:12:25:fc:29:ff:a9:cc:73:9d:
cb:60:d7:55:7e:2c:3d:d7:29:ed:93:56:59:79:d3:
c6:bc:68:4a:cf:67:3e:7b:9c:90:d3:c1:d2:b5:cc:
54:8e:a9:2d:08:99:a3:44:0b:22:14:ba:58:ad:29:
87:0e:8f:8e:7b:0c:53:ec:b9:ba:c2:74:72:a0:22:
6a:5f:68:d2:54:a4:94:41:d6:f6:21:3f:17:df:5d:
a1:3b:b8:f0:7c:3a:b5:1d:a1:5a:63:a3:7d:1a:b1:
f8:33:4c:fe:83:60:93:88:bd:eb:5f:44:31:ec:1b:
81:9c:a6:d5:ec:ad:eb:6d:54:f6:6f:b7:55:b5:7a:
21:ce:f3:9e:ab:f8:22:11:10:b7:58:dd:d2:2e:88:
2b:55:a3:91:27:1d:7f:3c:61:61:c6:34:cc:a2:24:
9c:69:8b:c0:35:4a:29:3e:60:30:f3:d6:36:e3:db:
99:86:96:d7:f9:39:9e:ba:a5:4c:84:d9:f5:96:b2:
7b:7d:d4:c7:d8:ce:85:b7:77:a5:0e:38:4b:fc:94:
40:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:2B:85:3F:FA:88:E8:3F:7C:55:6A:34:00:A3:A5:A2:52:4C:74:57
X509v3 Authority Key Identifier:
keyid:0D:DC:50:9B:4D:B3:52:03:AB:61:6F:47:81:F8:5D:D5:86:04:43:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:1f:b5:38:14:29:81:bc:73:7b:17:a5:7a:bc:c1:e9:9b:b5:
21:10:c8:b2:6a:77:8e:f3:38:be:9a:00:c0:23:01:b6:6e:68:
6a:f2:cc:d6:32:a3:47:f3:5c:56:7c:49:b7:ee:67:65:8c:68:
40:f6:1b:29:b1:5b:9d:e5:16:07:23:11:ff:1a:20:76:c3:a5:
e4:0c:f0:9d:c6:65:50:10:e9:e9:9a:08:75:7e:b1:aa:b0:c0:
06:f5:4d:34:2d:88:33:40:3a:d0:2f:47:69:36:bb:c5:f3:94:
69:14:6f:23:44:5d:55:c0:de:c9:1b:2f:86:c3:17:7d:a7:b0:
93:cf:ec:8e:c1:f0:9f:df:b4:00:74:19:20:28:e3:ad:60:8e:
3c:62:c0:ad:a0:57:96:89:9e:54:d6:85:8c:5e:2c:c3:dd:73:
d4:f3:5d:54:f1:c4:0e:7d:bd:fc:db:84:d2:d0:a1:9f:b8:6b:
80:6c:1c:26:ad:ba:e8:e2:23:a1:19:0b:83:18:ac:27:d6:f0:
1d:ca:24:27:e6:37:7b:2f:03:d2:7c:7c:1d:52:68:52:8f:be:
07:0b:18:56:e4:af:91:b4:35:34:19:aa:e4:1a:fd:29:bf:5b:
04:60:42:fa:11:26:4d:63:c7:74:bc:ac:3d:67:6d:9c:a1:5f:
ec:f5:b4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:48:49 2025 by rpki-client