Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: LQLC1mXG7knUxZQdJ1EJ5awMSWaZ3RLDdovpivXLmro=
Subject key identifier: 64:CA:2A:02:FC:D0:D9:8F:9F:43:45:CD:8A:E2:58:63:F6:0B:B1:68
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 0199FB7C7639CAD7EC3645633C1274A94586
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 08:01:01 +0000
Manifest this update: Sun 19 Oct 2025 08:01:01 +0000
Manifest next update: Mon 20 Oct 2025 08:01:01 +0000
Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=)
2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: 8wjuxy4yli3BWSPi/HAQ+WNx5wUXzqIoFLasUDODK/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:76:39:ca:d7:ec:36:45:63:3c:12:74:a9:45:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Oct 19 08:01:01 2025 GMT
Not After : Oct 20 08:01:01 2025 GMT
Subject: CN=64ca2a02fcd0d98f9f4345cd8ae25863f60bb168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6c:af:50:49:cd:ea:7c:c9:83:a0:9f:44:83:
a0:26:b7:64:f5:f8:35:a5:d9:2f:13:11:c9:4a:47:
40:35:5f:5f:c7:2d:c9:71:f7:38:c8:65:e1:bb:2f:
1c:ac:5a:94:3e:98:b6:db:ef:33:3e:20:a5:e1:de:
03:88:00:a3:ba:e6:9f:05:34:4a:ee:73:9e:8b:63:
22:1a:3a:23:6d:d5:3e:8a:7d:66:94:50:7b:ef:6f:
5c:e4:58:fc:95:9f:c0:82:f0:c8:12:7b:3c:7a:e6:
d5:14:00:f2:01:b9:5b:8c:88:52:1d:b5:75:a0:f7:
f9:d6:88:a7:db:b1:c9:81:6d:24:7d:aa:29:c1:25:
4a:e3:55:0c:4a:8e:15:91:4e:e0:32:ad:70:23:82:
ea:a5:12:06:45:b8:b9:ed:34:c2:07:d3:f4:f0:72:
aa:6b:8a:37:d5:fd:78:18:e8:75:1f:02:46:19:3a:
37:34:02:ba:10:37:27:84:ab:f6:1a:e7:19:08:c7:
62:c4:b4:bd:15:ee:ce:ad:73:ef:29:57:20:70:2f:
da:5f:dc:15:82:90:bd:b2:45:8f:74:9c:48:a3:c7:
b7:2a:b4:c1:c2:03:ad:8e:0e:e2:90:bd:93:6a:64:
73:bb:c8:ea:b5:28:b5:1e:09:a7:1a:b4:69:b5:8b:
da:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:CA:2A:02:FC:D0:D9:8F:9F:43:45:CD:8A:E2:58:63:F6:0B:B1:68
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:88:fe:fa:57:4a:68:66:7d:1a:a6:40:b1:0d:d1:86:8d:f3:
8f:93:c2:e0:80:e4:38:61:9d:58:13:a6:40:0e:23:75:17:db:
49:97:55:18:d2:f1:4f:95:f7:64:e1:89:85:8d:91:a7:20:1f:
08:6e:00:83:f4:db:d4:d0:8a:98:8c:df:8f:43:0e:f8:7f:c0:
2e:19:9f:35:51:55:9f:41:7e:55:b3:85:20:26:dd:7a:b0:bf:
f0:23:ae:ac:1e:9e:d1:2e:99:5c:5c:7c:b0:80:67:4a:b3:71:
43:9d:6d:84:94:07:94:8c:d6:a7:4a:2e:49:21:c9:4e:a4:86:
9f:56:e0:d5:11:69:f6:65:d3:ac:dd:8f:d9:b6:65:6c:ab:b1:
ef:a7:61:4c:94:be:b9:89:48:3d:5d:c6:3b:70:df:d5:ae:63:
88:b4:c4:61:c0:6c:4c:d9:12:49:8f:62:02:b9:11:c2:e8:ee:
84:dd:03:7a:bd:c5:a8:2e:6e:e4:b1:61:3e:e9:eb:10:96:cb:
e1:04:fa:85:5a:b3:53:54:17:f1:f7:14:62:68:84:ac:bd:78:
13:34:00:0b:1c:67:ef:69:d3:39:76:80:75:9c:48:c6:07:7b:
b9:a5:92:02:85:3a:9a:ef:2a:d7:15:c1:56:a9:ab:4f:b5:dd:
c9:3c:b4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:48:54 2025 by rpki-client