
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
File: ddl3qipMEMe0evKt2WgESH4idKk.mft (raw, json)
Hash identifier: zeVWrnm/EZgMmOgS3GNXBuxy44HNPeYLEpxCjmM85Vo=
Subject key identifier: 59:35:6F:C9:78:08:F2:E3:53:DB:B7:60:71:21:23:8A:48:84:1F:CC
Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Certificate serial: 0199FA6A77E80D184C646C415C4E055916FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 03:01:45 +0000
Manifest this update: Sun 19 Oct 2025 03:01:45 +0000
Manifest next update: Mon 20 Oct 2025 03:01:45 +0000
Files and hashes: 1: d1djO8IkOk-DAQF-B5CVMX1fEOA.roa (hash: ObQ/agHgncZ7LWNprlr11FO8JEBhRFid61XXKnLc8Hc=)
2: ddl3qipMEMe0evKt2WgESH4idKk.crl (hash: zma5SjEDDqPSi2jzo43ACNIPAc6ojpamQ+pr7U8cYkA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 03:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:6a:77:e8:0d:18:4c:64:6c:41:5c:4e:05:59:16:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Validity
Not Before: Oct 19 03:01:45 2025 GMT
Not After : Oct 20 03:01:45 2025 GMT
Subject: CN=59356fc97808f2e353dbb7607121238a48841fcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:13:22:fd:65:2c:f0:0b:a6:fa:2d:ea:93:ea:
57:04:d9:91:57:fe:f6:6f:7d:d3:8c:79:7d:4a:49:
34:22:fa:0b:2e:7d:31:0b:2c:aa:c8:af:44:a0:3c:
08:ee:b1:1e:ac:4f:5e:e4:2d:23:92:ce:20:f4:d2:
1e:9a:d6:ac:db:ad:fe:9f:9e:9d:04:d9:fb:fa:e5:
b0:2f:99:48:79:06:e5:51:e4:29:96:8d:1c:fb:20:
c6:45:e0:f7:83:35:e8:be:88:fd:ff:8c:af:7d:c9:
19:4a:5e:db:a5:af:49:f7:91:6c:f1:01:b8:a6:bc:
da:7a:c4:e1:7a:1d:40:6e:c3:90:0d:11:68:af:67:
a7:e3:6b:dc:c6:ac:fb:36:fa:46:d9:92:e7:0d:61:
11:d3:c4:16:56:53:4b:6f:0a:30:63:31:e7:aa:a6:
f5:e8:6c:0f:6b:4a:0b:28:b9:7f:e4:77:12:c1:54:
78:d9:7c:f2:9e:7a:f0:56:09:73:d6:f7:a7:c5:ae:
89:7c:65:fb:d5:5d:a5:43:03:05:a6:bc:a7:ef:2b:
f8:e2:ff:8f:b6:d3:1f:51:a7:14:b4:5d:75:d4:84:
0b:f0:f6:81:ac:3b:06:56:0b:a5:45:23:44:92:30:
ec:3c:25:c6:51:8e:cb:78:78:1b:93:38:d7:f3:64:
98:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:35:6F:C9:78:08:F2:E3:53:DB:B7:60:71:21:23:8A:48:84:1F:CC
X509v3 Authority Key Identifier:
keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:b7:aa:6e:d4:bc:4e:69:07:de:7a:ac:02:bf:45:9f:a5:24:
61:8e:18:60:31:9a:df:86:4d:52:a8:34:a3:41:a0:20:da:78:
d5:76:a1:3b:4f:2a:72:13:ea:81:1a:d1:6a:e0:93:bd:02:00:
57:d8:e0:98:99:6a:9d:6c:8b:b5:4a:11:c7:12:ae:cc:c8:b1:
6a:e9:4c:f0:e5:80:85:f5:9b:03:f2:7e:b3:e8:e3:af:cc:28:
63:94:e9:55:8c:f1:ac:11:58:75:97:3e:94:a9:60:a0:4f:ec:
fe:69:ee:8f:85:ee:7f:c9:4d:e1:de:b4:cd:10:f3:62:5c:db:
d0:bf:55:f5:92:05:ad:b6:42:9b:dc:fd:eb:c8:61:77:b5:48:
2e:a0:b7:07:b7:8c:97:86:c3:29:1a:a8:41:05:e3:9a:d8:0c:
f5:58:b1:53:bd:64:4f:52:a8:e2:71:83:c1:a1:f7:3e:df:47:
46:f6:9c:f5:0e:f7:33:aa:36:04:65:3e:f9:ae:ed:e7:79:84:
e0:14:24:70:fd:ea:e6:f4:0b:a5:5e:09:bf:fc:f2:e2:49:5b:
6b:b5:5c:ef:f9:82:9b:1e:f2:ef:b2:62:0c:61:42:7c:14:85:
bd:88:89:ce:38:be:d1:c4:c9:81:e9:b5:ac:68:ab:58:44:26:
63:b2:72:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:07:40 2025 by rpki-client