Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
File: dxLiD1ELIrghfN8NIRSWsbnB7bg.mft (raw, json)
Hash identifier: WvViR+6lxZ696RpJu5kQmuGQvK9eGAQLD+Xs2cc3FgE=
Subject key identifier: 77:43:E2:E4:85:A2:69:84:C5:0E:89:11:1C:42:11:FB:49:8C:BA:9A
Authority key identifier: 77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
Certificate issuer: /CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Certificate serial: 0199FC21CB774C4481E6C2E77EE288667602
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 11:01:37 +0000
Manifest this update: Sun 19 Oct 2025 11:01:37 +0000
Manifest next update: Mon 20 Oct 2025 11:01:37 +0000
Files and hashes: 1: 0bjBu50yRFSQQCpaSDnz4Da59n0.roa (hash: EpIJkfUrUz0ncMqveTDKjCXPCU3oKNIvzwGQlVcXpbY=)
2: dxLiD1ELIrghfN8NIRSWsbnB7bg.crl (hash: GEgl2oME8+9xbCbxLfN5BU53djhTq+5h1iBpUxbJsc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:cb:77:4c:44:81:e6:c2:e7:7e:e2:88:66:76:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Validity
Not Before: Oct 19 11:01:37 2025 GMT
Not After : Oct 20 11:01:37 2025 GMT
Subject: CN=7743e2e485a26984c50e89111c4211fb498cba9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:9d:15:10:78:4b:72:d4:5f:c0:d3:d9:36:74:
88:1f:09:cf:98:6f:09:d7:97:6f:d2:54:bb:e5:b1:
b2:fa:8b:85:2d:b9:c2:3b:86:91:7e:c3:23:2a:ff:
0a:19:de:e9:65:85:1d:91:e2:7b:82:67:c1:a4:10:
0c:d9:97:49:a8:81:a6:60:f6:d4:06:f5:ed:69:50:
63:b2:0a:da:b6:56:a0:97:ae:b2:45:05:7c:d3:38:
67:d0:46:ec:fe:4e:23:2b:79:cb:f9:74:c6:b7:ca:
4c:25:95:90:04:50:40:3f:f7:b0:75:da:e1:b8:bb:
2f:2e:ca:b6:50:72:9e:d8:20:91:7b:4f:10:1d:72:
1a:28:ee:7e:03:6a:45:ee:38:4a:e1:51:0f:d0:03:
7e:6b:23:7b:22:75:89:05:29:61:ab:93:1c:3d:e1:
21:93:d5:74:5b:c9:ce:9b:05:f5:42:6a:78:e4:4e:
45:17:41:e9:66:24:7d:ac:ad:9d:56:ce:1e:76:f4:
aa:16:47:34:f3:6c:fc:e4:a9:3c:06:57:7b:e6:02:
56:22:9a:16:95:80:ad:15:88:9d:9f:be:3a:7e:ff:
f6:18:ba:68:67:f1:2c:53:05:ab:19:0e:8b:c8:f9:
fc:f5:d1:e6:4a:67:3d:72:b0:9d:0a:4e:e0:41:66:
47:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:43:E2:E4:85:A2:69:84:C5:0E:89:11:1C:42:11:FB:49:8C:BA:9A
X509v3 Authority Key Identifier:
keyid:77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:da:70:8f:a5:cf:f9:44:aa:db:c5:78:31:05:a4:22:9f:01:
07:f1:3c:fb:34:5d:d2:b5:ad:ec:e4:9d:9b:10:14:6b:f6:5d:
31:fc:cc:83:d2:0e:c6:94:1e:9e:40:7b:b2:1f:55:e5:d6:fa:
83:85:00:10:e5:90:98:0c:fe:1c:71:a1:f1:16:65:c9:bc:34:
24:af:02:b6:8b:3d:a0:cb:b4:d6:17:0f:4c:c5:7b:f7:dd:80:
6a:c1:b0:fe:11:7a:8c:7c:5d:78:d0:52:bd:c0:49:d1:da:38:
1e:fe:82:e0:9d:a6:91:b5:a8:03:a9:8e:c7:ca:b4:62:ba:5a:
6f:62:25:b5:ca:5d:fa:cb:5a:4b:31:a6:9b:bf:d4:74:95:cd:
cb:ef:00:f5:01:4f:d0:03:c0:56:e6:50:85:8e:63:ae:8d:8a:
04:c9:39:9c:12:ef:c4:71:a0:32:d4:67:e3:6f:89:e6:89:b3:
b2:0f:51:44:26:79:3e:45:14:4b:09:39:43:61:d0:4f:99:de:
d1:b9:4e:a0:40:8d:1a:3b:7d:1b:5e:bf:30:14:14:dc:f5:55:
43:82:c2:39:46:2f:b1:56:0b:53:0f:98:57:71:f3:47:19:ca:
1a:fd:4f:ef:3c:4b:12:1e:96:71:97:58:74:34:1f:d2:ec:6c:
92:61:60:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:21 2025 by rpki-client