
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
File: dzW3DconD8uOS5CStyADZBOPXfE.mft (raw, json)
Hash identifier: cJ23XQ3rEjcoAY9OZRr689kk7pRZuPJhPuL78Equ2uA=
Subject key identifier: 6E:66:88:F1:3D:51:E1:55:D7:5D:82:B3:F4:32:B9:6E:ED:BE:ED:34
Authority key identifier: 77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
Certificate issuer: /CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Certificate serial: 0199FBEB54AAF081D427999F496B6102C2E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 10:02:07 +0000
Manifest this update: Sun 19 Oct 2025 10:02:07 +0000
Manifest next update: Mon 20 Oct 2025 10:02:07 +0000
Files and hashes: 1: dzW3DconD8uOS5CStyADZBOPXfE.crl (hash: AxMvcld1qrDMVN/+DhCsfo03wlsmg/6jyEkKvOqBCrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:54:aa:f0:81:d4:27:99:9f:49:6b:61:02:c2:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Validity
Not Before: Oct 19 10:02:07 2025 GMT
Not After : Oct 20 10:02:07 2025 GMT
Subject: CN=6e6688f13d51e155d75d82b3f432b96eedbeed34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e8:58:cb:02:d3:61:ba:5f:45:72:c6:95:17:
bc:5c:1d:e5:ef:4e:5c:e3:83:2c:d8:82:c3:8e:4d:
d1:0f:1f:fb:3b:fd:3c:75:37:89:93:74:0c:fb:12:
96:b4:12:f1:08:71:aa:f4:a0:b5:72:36:73:d0:62:
55:e0:eb:12:3a:a0:0e:58:dc:ca:56:e9:c7:5b:0c:
75:db:34:ad:a2:13:59:90:53:4f:64:99:5f:0a:cc:
92:a7:90:32:b0:76:eb:7a:e7:a5:ff:a8:17:78:7e:
7d:f8:77:b2:25:de:c1:c1:64:f1:58:b5:58:21:fd:
37:e4:f8:6d:26:07:f6:d9:8c:e8:67:04:14:4f:90:
71:28:62:23:02:f4:d1:83:5c:41:38:56:79:35:79:
df:01:b0:32:d4:ae:8a:81:a6:60:74:30:c7:71:13:
7f:c1:e9:36:5e:48:da:58:a0:19:1c:73:2e:be:0d:
95:71:7c:16:54:f1:31:00:a3:e1:22:e1:ce:b4:fc:
ab:85:05:3e:b4:2c:70:39:14:ec:56:e1:7b:46:f5:
b9:ff:83:67:e2:5c:23:f5:59:91:5a:18:93:1e:6b:
a4:84:c4:fc:47:91:c0:48:62:da:53:d4:dd:0a:61:
c0:b8:a6:58:61:10:bd:64:40:0e:2d:83:4b:c3:67:
a9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:66:88:F1:3D:51:E1:55:D7:5D:82:B3:F4:32:B9:6E:ED:BE:ED:34
X509v3 Authority Key Identifier:
keyid:77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:03:c5:fb:35:b6:42:d2:94:52:6e:d2:46:13:2d:8f:59:fb:
3f:21:88:55:44:13:fb:01:9f:38:53:03:03:ec:e9:a9:38:6f:
ed:22:41:1e:b0:bb:85:af:ce:6b:61:e5:44:ee:ee:72:66:7b:
5f:a4:ba:8a:c2:37:23:51:11:1e:6c:26:91:7c:ea:ea:d2:f4:
a0:ec:c8:23:16:c4:e6:5c:b1:fe:2c:71:49:d2:6f:94:af:6e:
d9:57:6f:a0:a2:5e:84:46:57:01:a6:fe:54:7a:e0:a9:7d:3a:
f1:13:db:c5:83:2b:62:d4:c3:29:e1:d8:ec:0f:88:49:8f:76:
89:0f:4c:f7:59:27:d2:04:65:c0:0a:e7:d2:2e:fa:a7:a2:af:
df:f4:4f:75:f2:c2:6e:78:56:56:9d:9a:4c:14:c2:97:5d:f1:
45:5e:1f:a4:7f:15:e6:14:48:42:10:88:ef:aa:e3:13:2a:70:
53:c8:2b:c9:5b:02:f4:38:de:e0:44:46:93:b0:fe:40:d2:44:
cd:75:cb:22:f8:d6:4f:97:f9:64:81:03:fe:48:75:ef:1b:e9:
82:3f:6f:63:ff:0f:1f:45:6e:ce:c6:0a:ae:3c:bf:55:0e:c0:
5f:3c:70:8e:5b:5b:a6:58:67:48:94:e1:0a:d5:84:1e:d0:d1:
ce:b5:f9:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:15:13 2025 by rpki-client