Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
File: 25Kd7FwPI63Zuu7qe7OayHpykIM.mft (raw, json)
Hash identifier: EKyqNmmBHg18GnE7pGDs1tZQvgJDwNfQttoe6gp/vNA=
Subject key identifier: F4:01:22:CD:0E:4C:BE:D8:E6:70:95:A5:22:EB:71:4A:CF:82:47:49
Authority key identifier: DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
Certificate issuer: /CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Certificate serial: 0199FDD9C936B2469581DA56A7C25EA21700
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
Manifest number: 16E7
Signing time: Sun 19 Oct 2025 19:02:12 +0000
Manifest this update: Sun 19 Oct 2025 19:02:12 +0000
Manifest next update: Mon 20 Oct 2025 19:02:12 +0000
Files and hashes: 1: 25Kd7FwPI63Zuu7qe7OayHpykIM.crl (hash: au6+EW/1EnbCXrUMxRMckrMYZ0+phopkFCjavKQOjV8=)
2: N4n5sfqwVKR0MtRKu60VkuVT8t8.roa (hash: 7oA83Z9SKqiyh1q+LTyv1yKzsMJNh3uvhrwtOfQSMtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:c9:36:b2:46:95:81:da:56:a7:c2:5e:a2:17:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Validity
Not Before: Oct 19 19:02:12 2025 GMT
Not After : Oct 20 19:02:12 2025 GMT
Subject: CN=f40122cd0e4cbed8e67095a522eb714acf824749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:05:53:62:d5:c6:7a:37:30:cc:19:e5:c3:16:
be:1f:c4:8a:69:ed:ae:fd:20:79:ee:46:07:85:ab:
f6:50:1f:9d:d2:06:fa:f2:6f:18:5f:99:e0:d4:c0:
5c:dd:37:34:5e:ae:02:81:35:da:92:b8:7d:1c:36:
fb:f3:a8:11:23:5e:35:d7:1a:57:4c:c2:d4:06:e9:
0f:fa:cc:a4:7d:11:e3:b7:0e:bb:bd:75:9f:8e:0a:
38:74:da:dd:5d:ed:89:f0:a7:2b:e7:1d:96:fd:ce:
0a:b1:01:40:05:fd:37:d7:39:91:ed:9f:10:55:5d:
16:69:7d:dc:18:fb:02:04:a3:dd:30:12:3e:a7:06:
ec:e9:d3:a2:e5:94:79:62:e1:4a:48:a7:ce:37:ad:
49:35:2f:75:db:89:f0:65:eb:68:07:30:08:58:76:
3d:a5:f5:ea:68:18:d7:73:1a:db:f8:96:ee:2d:9f:
53:b7:e9:a2:20:a7:c0:df:3d:cd:bb:7a:10:55:56:
4c:1d:61:4a:ca:2e:39:82:eb:fa:eb:e1:c8:de:91:
87:59:67:14:12:38:5f:e6:75:c8:2f:ba:e3:8e:0d:
84:99:98:05:e6:04:1a:ac:3c:c2:1b:d2:44:23:60:
a5:47:b2:6c:bc:ee:38:d0:76:73:5b:99:0d:b1:d5:
43:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:01:22:CD:0E:4C:BE:D8:E6:70:95:A5:22:EB:71:4A:CF:82:47:49
X509v3 Authority Key Identifier:
keyid:DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:18:a4:13:7b:bf:57:2a:7d:f2:a0:6e:3d:5c:99:4c:a0:8c:
b2:fe:99:ce:cd:24:4e:fd:c3:64:49:9a:6d:01:f9:8d:94:31:
d5:fe:79:84:d6:e0:80:54:6f:1e:f5:e5:b3:38:28:a3:ba:5f:
79:1a:8a:7d:76:f1:c6:70:e6:b0:cd:42:5f:08:e1:f7:66:60:
b5:5f:70:e1:62:cd:bc:cf:ea:b1:c5:40:13:2a:e3:a5:7a:46:
7c:6a:be:83:7f:68:d8:87:b0:82:f7:8d:a9:9f:c2:59:d6:17:
65:49:35:d4:b7:ba:e2:58:ee:3d:3e:18:ab:c2:4c:1c:42:09:
f0:1b:89:69:c4:b8:f9:c8:4d:74:73:d8:51:33:cd:89:3c:c6:
d9:46:c9:eb:6b:93:91:be:a9:f6:75:54:c7:1d:a9:7d:bd:ba:
e0:1c:ec:3d:2a:b4:62:c2:8d:b0:3f:a1:9a:1a:d8:26:92:ad:
a5:d9:9c:9d:a9:97:cb:ea:ce:b6:6c:3b:2b:41:2b:8b:ac:cf:
80:f6:4f:f6:b4:1b:6b:1b:18:fa:95:e6:2c:ba:30:93:65:0c:
42:be:7f:b1:c7:28:77:4d:a0:25:7c:af:a5:3b:ff:03:8f:f7:
9d:f6:9f:10:27:1d:9c:20:7b:fd:18:d6:9e:f5:fd:1a:10:a5:
48:47:fb:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:02:36 2025 by rpki-client