Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
File: dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft (raw, json)
Hash identifier: 09v4iESNgRaS7m/K2E1VfFkERIG8LK48UP7hjSTWrF4=
Subject key identifier: B9:7B:EA:81:E5:8F:45:16:A9:AA:BA:35:50:EC:DB:33:4B:FF:10:6A
Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Certificate serial: 0199FCFD7EC343F72B361DBBCB5536B16C8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
Manifest number: 142D
Signing time: Sun 19 Oct 2025 15:01:35 +0000
Manifest this update: Sun 19 Oct 2025 15:01:35 +0000
Manifest next update: Mon 20 Oct 2025 15:01:35 +0000
Files and hashes: 1: P5ZnswUpMLyVjWj9pVZS-hlIw7A.roa (hash: 3hJsA3Q3EQecJR3hJHgLTYYEIcnWflx0DcKeSfNvhRM=)
2: dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl (hash: ZrvfwoF97TqoLN+Xo1URzdfvoFBR2+iXKUxIFmq3jR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:7e:c3:43:f7:2b:36:1d:bb:cb:55:36:b1:6c:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Validity
Not Before: Oct 19 15:01:35 2025 GMT
Not After : Oct 20 15:01:35 2025 GMT
Subject: CN=b97bea81e58f4516a9aaba3550ecdb334bff106a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:56:f0:ea:1b:94:93:4e:be:25:24:e7:af:56:
e3:40:fa:7f:e0:2f:66:6d:3d:09:e7:bb:ef:df:c0:
8a:14:bd:59:3d:4a:ce:f2:8f:8b:00:6d:3d:a4:29:
ee:e0:ad:df:48:7c:50:72:90:22:56:6a:e0:cb:56:
62:88:35:f2:fa:a4:0f:70:b1:98:af:ed:fa:88:9b:
19:a9:19:5f:1b:6a:30:53:80:7b:cc:86:08:ab:79:
23:82:8d:31:2c:4d:e3:e4:63:f9:9d:8a:81:33:14:
61:80:d2:08:8c:15:15:4e:29:fe:27:d7:06:80:e1:
2b:cc:ef:fb:a2:67:9a:77:f9:0b:33:68:33:d4:d0:
01:9e:bb:52:ae:60:fb:65:02:04:b1:56:33:54:c7:
63:0a:5f:fe:64:c0:c4:91:f1:e8:30:cd:b0:d6:e4:
58:48:01:63:bf:a3:fe:2a:0f:1b:86:ae:39:a9:30:
8f:f7:02:d5:35:87:77:41:a2:6e:42:ab:92:84:10:
86:95:90:a9:21:f3:4b:e5:6b:c1:e9:ab:c3:45:bf:
d6:2a:5e:5c:ad:ef:10:c4:6c:07:e5:b3:1e:e5:84:
2f:ef:b2:5c:8e:d7:48:ba:55:ed:3d:fe:d1:2e:87:
b2:2f:c4:ae:54:90:fa:03:1b:93:4d:63:2c:1c:62:
6d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7B:EA:81:E5:8F:45:16:A9:AA:BA:35:50:EC:DB:33:4B:FF:10:6A
X509v3 Authority Key Identifier:
keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:44:c8:d0:18:7e:50:40:8e:41:3f:01:34:ce:c7:58:4e:f1:
6a:ce:b4:21:a8:06:a5:28:bf:90:2d:49:d5:3d:fc:15:b5:16:
17:f5:aa:d4:9a:4d:5a:82:bd:56:22:83:d1:27:03:7f:b3:93:
27:0b:d3:e7:2a:b9:4c:65:44:61:51:48:50:bc:d3:0a:0e:b1:
5a:20:e4:ee:0d:05:51:23:80:46:bc:a3:35:de:4c:1f:d3:55:
da:d3:00:0f:4a:f1:4b:29:cc:18:cc:a3:40:78:e0:0e:ae:d4:
93:e3:76:06:bb:30:e4:42:b6:c0:63:82:f0:96:5e:18:01:56:
cd:dc:9e:c4:71:e3:96:22:99:b4:48:e7:80:d7:20:b6:78:81:
9d:ef:ce:43:7b:34:35:ee:8f:42:2d:1c:a7:85:2b:d4:dc:1d:
28:9b:63:42:2c:51:71:d2:5d:7f:b5:f6:ac:31:8f:59:7e:e7:
91:6e:ff:0f:3f:b9:ef:de:8c:8e:4a:bd:5a:1b:ef:ee:7d:75:
74:81:92:b3:99:91:f4:43:f7:eb:ae:33:7e:fa:88:24:40:87:
1c:4f:80:51:d6:43:d5:a4:ab:34:7c:93:bc:88:a2:ad:ca:88:
c9:71:3b:9a:5c:f0:18:0e:a3:86:13:2f:dd:14:9f:d3:ef:83:
f3:48:f8:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:45 2025 by rpki-client