Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: XumsOaZ1mvQqroVOmWveiQzBCuJsovpZyAvoD34cYh4=
Subject key identifier: 31:18:B0:59:90:94:19:2B:C2:1B:AE:56:CB:EE:34:AB:AA:DF:78:0F
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 0199FB7CB976445F2AEB71C194FB1B17E613
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 0E45
Signing time: Sun 19 Oct 2025 08:01:19 +0000
Manifest this update: Sun 19 Oct 2025 08:01:19 +0000
Manifest next update: Mon 20 Oct 2025 08:01:19 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: lUR00CLfku2UTpDRkm3zGdfU7HBzn7x1J39N27dEnDM=)
2: zo9Y2aPXtg0v5rw18Mi_WOQc36Y.roa (hash: v9STSvD6P0pmUA0gxCp1HPZofea00hykboqUh1BCCCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:b9:76:44:5f:2a:eb:71:c1:94:fb:1b:17:e6:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Oct 19 08:01:19 2025 GMT
Not After : Oct 20 08:01:19 2025 GMT
Subject: CN=3118b0599094192bc21bae56cbee34abaadf780f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2d:5e:a6:f5:8d:dd:2b:d8:9f:06:27:eb:74:
ed:02:21:c6:9d:de:28:23:2e:60:56:9f:c5:8f:59:
08:36:fe:49:c1:bc:24:41:a1:b1:15:c1:38:c4:ca:
c5:1c:b0:29:9f:25:e7:5d:1a:b1:b3:bd:6c:f4:dc:
8a:1f:dc:bc:05:7e:20:0b:14:f1:ab:7b:70:5a:5c:
8d:ea:e0:4c:fc:a1:8a:bb:b2:0d:12:29:77:ba:e1:
7d:a9:b8:73:70:aa:ac:c2:ee:d5:eb:a0:fb:28:39:
44:cc:b5:b9:89:d1:c2:be:45:8f:41:cb:a6:c4:1f:
00:f9:80:00:86:64:84:df:dc:96:97:15:bd:8e:ff:
d2:b4:a8:ed:d9:dc:ca:ba:52:cd:0b:91:1b:b5:6d:
02:12:33:04:8f:ec:2f:58:6f:61:d2:88:94:f3:f3:
86:d5:1d:a8:19:7d:83:40:7c:34:30:ee:ee:c9:b2:
ab:a3:04:44:40:b5:9f:e4:57:3a:5c:20:4b:c3:8c:
2d:74:af:d9:17:b0:85:39:8b:cd:e1:d9:c9:58:8c:
79:4e:23:99:22:5e:e3:03:ef:d7:68:86:44:df:46:
2f:36:e8:d7:a7:7c:55:82:ae:ca:6a:57:d7:e2:15:
7d:08:4b:8a:54:f9:54:33:1f:e6:fc:c2:b4:fe:98:
f9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:18:B0:59:90:94:19:2B:C2:1B:AE:56:CB:EE:34:AB:AA:DF:78:0F
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:d9:da:a8:5d:59:bd:89:68:d9:33:df:7e:37:66:c0:64:77:
4e:d9:50:a5:4d:60:b5:70:4b:73:30:cf:3c:7a:57:51:4c:92:
e0:ab:3f:9a:e2:e5:17:aa:64:bf:fd:6f:f4:15:1a:3a:98:d4:
c5:b5:26:44:af:be:45:4e:0d:22:e3:ef:77:b7:13:75:d3:7c:
17:68:89:0e:43:c6:b8:dd:50:6a:e2:78:03:1e:55:66:81:c6:
9a:b8:f3:c7:5c:2d:93:35:34:d8:1f:ac:d3:60:cc:17:f7:c9:
76:ab:61:f5:85:9f:3a:47:5d:d3:31:4d:23:b9:93:e5:30:e9:
6c:b4:ab:6d:09:ed:1e:c2:eb:ba:c5:0c:f1:95:34:f3:40:45:
fd:25:5d:60:e6:0b:e7:d7:82:bc:09:08:69:6e:c4:ab:22:1d:
fe:b9:46:42:70:5b:c2:ba:ab:e0:e6:4d:22:45:3c:96:23:c6:
24:dc:32:21:ea:25:d6:81:27:9c:e4:2b:84:8d:8d:7a:32:44:
f7:59:bc:f3:c4:fa:7e:61:3a:07:b0:5b:c0:53:d5:76:a6:60:
aa:87:44:a3:bd:d1:0f:2c:00:25:e6:21:50:43:5b:b2:b3:fe:
93:94:ed:cf:99:4f:62:64:ad:fb:d7:b3:9e:fe:2b:a4:d5:2e:
4b:2e:4f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:26 2025 by rpki-client