Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
File: dZxU7z8HSxxmiPmXVM2KONmfbKw.mft (raw, json)
Hash identifier: 7bjzAEtJZ8uiws7SgZhNIc95gG2WGiCxWfvmoJy1OaA=
Subject key identifier: D0:AE:49:94:A1:29:65:5A:FE:48:7A:C8:AA:D9:19:E9:F7:24:46:05
Authority key identifier: 75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
Certificate issuer: /CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Certificate serial: 019A006C17B0AC995000B7BA8EE7CEF1F7E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
Manifest number: 0A84
Signing time: Mon 20 Oct 2025 07:01:15 +0000
Manifest this update: Mon 20 Oct 2025 07:01:15 +0000
Manifest next update: Tue 21 Oct 2025 07:01:15 +0000
Files and hashes: 1: dZxU7z8HSxxmiPmXVM2KONmfbKw.crl (hash: gMoh/uC5zREbXw7FnLOvgZ5jTnl1LKoFO3qVUzoTOyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 07:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:17:b0:ac:99:50:00:b7:ba:8e:e7:ce:f1:f7:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Validity
Not Before: Oct 20 07:01:15 2025 GMT
Not After : Oct 21 07:01:15 2025 GMT
Subject: CN=d0ae4994a129655afe487ac8aad919e9f7244605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6a:df:fa:fd:14:5f:4b:e1:7f:90:f3:f4:50:
3c:02:94:d6:ec:c9:d8:e8:bf:7c:e8:21:f6:42:db:
40:bb:da:80:8a:a1:93:b7:f8:51:b6:47:91:88:5a:
32:4c:58:64:52:4f:ec:9f:39:b1:1f:cf:79:7b:04:
e5:07:b5:d9:37:8f:a6:e8:34:8c:3d:fe:91:0d:e5:
98:c5:ed:54:ae:e9:cc:d0:06:f6:90:91:70:c3:c7:
c9:47:94:96:24:b3:fe:7c:b8:7e:a1:3c:0d:31:b8:
3f:7d:73:2e:aa:6b:3b:f2:a5:18:04:af:86:dc:2b:
e0:0a:9b:0d:44:e5:86:c3:e9:bf:1f:83:2c:ab:24:
f8:ec:4e:50:ed:65:7a:b1:98:39:6d:25:be:63:76:
36:09:2e:ed:59:e0:37:0e:91:c8:06:c7:82:46:d9:
fe:4c:55:d0:3d:bb:0b:96:1c:d9:ed:b2:eb:37:a0:
e1:6f:1b:76:cf:28:60:f1:28:cc:f0:20:5a:53:b8:
8d:c1:68:1a:83:1a:2c:b0:2e:4b:27:6c:39:96:a3:
68:b6:da:ee:f9:87:54:b2:36:20:8e:d8:f3:ec:20:
ac:ac:9b:77:18:b7:47:52:10:b5:af:17:14:23:9a:
a5:d8:dd:25:66:72:d1:60:2a:90:c5:f4:56:ae:f9:
83:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:AE:49:94:A1:29:65:5A:FE:48:7A:C8:AA:D9:19:E9:F7:24:46:05
X509v3 Authority Key Identifier:
keyid:75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:26:ab:13:cc:d8:69:f1:cd:46:ab:04:22:c5:81:e9:5b:06:
10:d0:a3:3e:54:a0:4b:ba:56:2a:eb:1e:be:32:1c:7d:70:31:
c4:a5:ea:e2:c9:7b:dd:23:23:4f:61:20:4d:14:08:04:a9:96:
c6:a7:c6:76:15:44:d8:d6:4c:42:d3:79:37:dd:e1:5a:2f:77:
38:8c:10:84:35:1e:b3:6c:d2:73:c8:f5:38:b3:22:c5:9b:8d:
88:1d:05:49:ae:9f:02:0f:28:ab:86:0e:27:98:3a:ba:02:d1:
61:ba:cd:ec:3b:85:fe:d7:3b:11:14:30:34:0e:98:69:6b:1c:
74:2a:a7:57:31:bb:6e:72:f1:88:9f:f0:29:de:7f:4a:bc:0e:
8d:6f:d3:e8:1a:3c:c4:c3:bb:0f:1b:5e:40:dd:6b:96:d8:93:
f0:69:f5:f8:4a:66:68:7e:db:10:8d:89:4f:d3:d2:3c:3f:1e:
a6:d5:f0:c9:0e:65:4a:5d:5b:20:f9:c6:70:fc:e7:85:cf:18:
36:37:5e:f3:dd:0c:f6:38:7d:67:d4:33:e1:64:f6:14:ea:f7:
59:0f:e7:56:ff:61:46:af:4c:62:78:7c:95:07:13:1e:54:0e:
b6:9b:93:42:24:3f:ab:f0:37:9d:ce:b1:90:02:1b:b0:87:4d:
19:ec:eb:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:32:52 2025 by rpki-client