Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
File: DNpch0NU2Dgm5DwlNbduINW2GwU.mft (raw, json)
Hash identifier: Ivc3TsVMx9qIwap//vHY2/wr+w1tT8MW3VLzdk3YU3g=
Subject key identifier: 22:BB:A1:51:27:75:A5:24:4A:53:2F:87:15:E5:07:38:19:88:45:E2
Authority key identifier: 0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05
Certificate issuer: /CN=0cda5c874354d83826e43c2535b76e20d5b61b05
Certificate serial: 0199FBEB1FE456927C6D63DFBD94B77E09A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
Manifest number: 16ED
Signing time: Sun 19 Oct 2025 10:01:54 +0000
Manifest this update: Sun 19 Oct 2025 10:01:54 +0000
Manifest next update: Mon 20 Oct 2025 10:01:54 +0000
Files and hashes: 1: 32CQUiCUfdquX7Jbo_dmPVa4RAU.roa (hash: FAfiLPwl0dHpiVR3Uys5QcBsWLGjmkF+BWAYhU6veIk=)
2: DNpch0NU2Dgm5DwlNbduINW2GwU.crl (hash: EEExdSkp9a1MQigyS7livptY6+f0SYBCB4jOC6dChJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:1f:e4:56:92:7c:6d:63:df:bd:94:b7:7e:09:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cda5c874354d83826e43c2535b76e20d5b61b05
Validity
Not Before: Oct 19 10:01:54 2025 GMT
Not After : Oct 20 10:01:54 2025 GMT
Subject: CN=22bba1512775a5244a532f8715e50738198845e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f4:32:bd:81:7a:3f:c1:9c:bd:6f:98:10:66:
ed:3c:fb:5a:9c:70:9f:3a:cf:df:ee:1b:ea:6c:4d:
13:28:62:f0:80:ae:31:39:93:49:2c:35:86:4a:fa:
d0:03:d2:8d:98:04:3d:50:c2:63:2f:d5:fd:79:5a:
0e:f0:90:46:a9:f3:dd:45:4e:7c:26:23:29:1c:6b:
9e:a9:61:a3:a7:77:78:22:1a:8d:6f:08:df:83:62:
0c:b5:aa:c6:28:51:dd:29:69:76:cc:d6:44:b6:df:
69:18:1d:9c:98:c4:91:fc:c0:f3:6e:f9:1a:3a:c9:
27:18:3a:8a:af:1f:a4:e4:bf:31:ff:d0:7e:90:1e:
08:72:28:72:52:10:35:ea:c1:f0:09:84:fb:a5:80:
75:e9:7a:11:00:84:82:f2:08:60:bd:55:82:a3:76:
06:1a:da:62:d0:7a:a8:c6:1f:ab:1c:3f:b5:c1:b2:
12:a0:72:59:a8:2e:ee:58:37:1a:d6:c6:06:d8:be:
39:cb:70:14:c9:14:ef:36:21:8c:23:bc:49:ce:98:
95:15:e0:69:f0:bf:a0:fd:6b:38:0f:14:13:ff:8f:
89:83:b2:d6:83:0a:19:30:5f:50:9a:8b:10:59:97:
02:36:a1:70:5b:f4:23:09:78:4c:c8:dc:79:70:36:
9c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BB:A1:51:27:75:A5:24:4A:53:2F:87:15:E5:07:38:19:88:45:E2
X509v3 Authority Key Identifier:
keyid:0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:bb:3a:9f:ed:13:1e:ef:ef:5f:ef:16:46:52:0a:ef:25:51:
ad:2f:7d:ea:e8:e6:1a:90:98:f9:df:4f:cd:fe:5c:be:dd:30:
45:de:2b:30:5d:56:1c:21:45:5d:b9:ad:c7:63:b5:93:c3:d5:
8e:e6:9a:c2:d3:5c:ff:cd:d7:a4:d8:30:74:98:16:3e:42:1d:
38:bc:63:80:a5:8f:be:7f:74:3e:18:49:d6:e5:48:7e:3c:df:
d9:37:8d:c8:1c:08:57:a1:ee:a7:1f:02:fb:74:af:e2:ed:82:
76:0f:5b:a9:59:af:45:76:3c:3e:5b:8c:1c:f3:98:06:68:41:
ac:57:62:1c:67:e3:9f:dd:e2:78:19:df:d2:71:bf:80:ba:87:
e0:68:ba:7c:23:19:a8:dc:2f:76:26:a5:f2:dd:e3:db:5a:ce:
70:1d:be:cf:97:a7:e5:7f:f4:4e:38:d2:ab:1b:6a:2b:ed:52:
bf:0d:99:b7:d9:4d:2e:9a:c4:56:e2:d4:af:75:90:79:68:71:
2c:a8:13:05:9b:c1:f2:fe:1b:7e:6e:5a:4e:3d:c5:1e:ce:26:
ec:a4:b1:46:63:a1:3d:f4:66:f4:b6:c3:94:f9:38:9c:a2:8a:
47:5b:d5:65:7a:2e:28:8f:2c:18:6e:89:4a:b2:f1:71:ef:e4:
5a:9b:bd:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:25 2025 by rpki-client