Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
File: D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft (raw, json)
Hash identifier: OIyS3uRBgXhkqczimsb2Vuj4OcoKGTa6gjQcMRfH1eI=
Subject key identifier: B4:A4:20:EB:A7:FD:ED:50:8B:C8:DE:CA:37:30:1A:EB:3D:7A:4A:52
Authority key identifier: 0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3
Certificate issuer: /CN=0f671fec38f00c402f3066f13c792e1a0ed16db3
Certificate serial: 0199FBEB94AF2632B04035CC06C6851189CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
Manifest number: 0F48
Signing time: Sun 19 Oct 2025 10:02:24 +0000
Manifest this update: Sun 19 Oct 2025 10:02:24 +0000
Manifest next update: Mon 20 Oct 2025 10:02:24 +0000
Files and hashes: 1: D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl (hash: R0SpJV2EYC1jP3Q3uC2M7JWNz6hoGaIHE6CClXmTKB4=)
2: FIHDrOZdPItJ1g7-VrAk_uoQnSo.roa (hash: 1BVoM3pIwN+Dth/AavDroFy4/aBiv0LMqKNh/mLZqqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:94:af:26:32:b0:40:35:cc:06:c6:85:11:89:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f671fec38f00c402f3066f13c792e1a0ed16db3
Validity
Not Before: Oct 19 10:02:24 2025 GMT
Not After : Oct 20 10:02:24 2025 GMT
Subject: CN=b4a420eba7fded508bc8deca37301aeb3d7a4a52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:36:e1:72:0b:09:03:83:f3:14:90:d7:5d:98:
2d:28:06:3a:f6:21:3d:77:fb:9b:ed:36:28:dd:8a:
7f:c5:fc:e5:21:a7:41:08:ff:d6:cb:b2:df:70:d1:
2e:49:73:a3:aa:48:85:07:37:3d:5e:d4:44:9e:de:
fa:3d:2c:ee:23:59:7a:b2:52:a3:a5:f0:a6:f3:ae:
6c:89:40:d4:fd:ad:ae:a4:0a:86:38:93:b6:5e:a1:
31:02:7b:69:0b:e3:b5:4c:55:de:06:18:8b:11:10:
73:bc:35:b4:d4:a5:88:4b:d7:54:d3:44:05:80:e1:
17:c8:2a:83:81:6d:9a:5a:4a:12:66:26:fe:96:4c:
b9:f8:e4:d7:40:07:cc:25:63:ce:4d:41:62:ec:50:
21:31:cf:52:98:f8:0f:02:33:ec:fd:ce:96:f9:7e:
96:0a:5a:64:06:5b:4d:aa:bb:5f:80:fb:2d:e3:a6:
3a:e3:ae:12:36:9f:78:32:ae:e3:3a:4e:57:95:d5:
15:aa:79:83:99:d2:45:dc:29:8e:ac:3a:a8:37:b7:
ca:5e:46:37:3e:35:f4:01:4e:0d:66:08:99:13:ff:
1a:17:87:be:80:de:42:ef:1c:5e:64:c3:75:2c:6e:
63:81:dc:36:ed:3a:81:34:5d:86:87:ba:4b:48:6b:
c6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A4:20:EB:A7:FD:ED:50:8B:C8:DE:CA:37:30:1A:EB:3D:7A:4A:52
X509v3 Authority Key Identifier:
keyid:0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:b7:32:b1:07:e4:84:3b:a0:7a:df:15:fc:4d:bd:2f:83:ca:
81:09:8a:41:c1:d5:81:64:d9:0b:2b:d2:a9:31:c2:a6:f5:d8:
f6:dc:97:6f:1d:9b:a3:87:8a:c8:ec:68:a2:54:0d:a0:42:3c:
79:6b:9b:90:9d:99:b1:f3:2a:cc:ea:65:02:96:2f:b1:f5:40:
3f:f0:af:e7:3d:82:49:28:d4:4d:dc:8e:69:e9:c7:84:94:c0:
6d:82:01:01:9a:8d:d0:64:4f:ec:19:52:c5:c0:00:c0:f5:d4:
e2:73:89:2e:64:da:e2:93:e4:85:0f:f8:df:34:ed:97:6e:44:
ec:10:13:11:70:94:e2:4d:c0:10:84:3b:ab:24:42:b8:56:a7:
05:47:42:7b:f0:23:d2:40:89:bb:f1:72:0e:a3:42:40:2e:76:
bc:39:71:bf:18:b6:3c:a7:8a:a2:eb:50:78:7f:44:3b:58:25:
db:ba:44:8d:25:a6:1b:86:f2:9e:43:af:70:9d:86:08:29:25:
d4:0e:53:1f:c9:ee:5e:a0:30:fe:99:76:c7:5c:97:72:d9:b3:
57:66:39:8d:ef:31:01:fe:18:d2:4b:5e:c3:bf:54:2c:3e:37:
dc:85:64:0c:62:2e:51:64:35:90:1a:2c:6e:c1:e3:81:49:87:
58:c9:15:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:27:10 2025 by rpki-client