Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft
File: dZ27tMoEMpvFCdbdHNULk1atiQY.mft (raw, json)
Hash identifier: Ed+rE+C2nM4nxO/9zea6Xbg1+gIjBCZTlrVBh5CulVE=
Subject key identifier: B7:61:6A:9D:B8:7D:08:9B:56:E7:24:15:9B:AD:5A:F6:2F:29:9B:51
Authority key identifier: 75:9D:BB:B4:CA:04:32:9B:C5:09:D6:DD:1C:D5:0B:93:56:AD:89:06
Certificate issuer: /CN=759dbbb4ca04329bc509d6dd1cd50b9356ad8906
Certificate serial: 0199FB0F16BCCB0CF692C603608ECCCA4C67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft
Manifest number: 69
Signing time: Sun 19 Oct 2025 06:01:34 +0000
Manifest this update: Sun 19 Oct 2025 06:01:34 +0000
Manifest next update: Mon 20 Oct 2025 06:01:34 +0000
Files and hashes: 1: dZ27tMoEMpvFCdbdHNULk1atiQY.crl (hash: sB3/5sIvnEf9kS1PH7OYSojLQDCNqI1oBx6XlY/bjWU=)
2: rOJqhADJ5rc7U_0FXgnllg311Uw.roa (hash: Cbl9MsCAqt+xAwhZCVrGdH/26tfRlYC7HA90lZevZDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:16:bc:cb:0c:f6:92:c6:03:60:8e:cc:ca:4c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759dbbb4ca04329bc509d6dd1cd50b9356ad8906
Validity
Not Before: Oct 19 06:01:34 2025 GMT
Not After : Oct 20 06:01:34 2025 GMT
Subject: CN=b7616a9db87d089b56e724159bad5af62f299b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7e:c7:d0:c3:4f:85:c3:b4:b9:2b:f5:e3:66:
32:bf:11:9c:58:c9:ca:1b:43:d8:3a:57:f5:45:55:
1b:0a:69:6e:0b:e0:ad:d8:15:68:a5:e7:25:2d:15:
67:97:af:d6:e2:c3:64:a7:ae:f1:51:91:41:a4:0c:
57:44:5b:74:56:3b:1d:3e:5d:36:9f:4e:6b:87:15:
40:11:a5:63:3e:fe:b0:4e:44:0d:dc:a4:74:2f:61:
af:cc:90:23:ff:e2:8f:ea:0e:61:da:71:b5:a4:22:
0b:76:bd:ef:a7:e7:68:f4:10:41:e2:f4:c6:02:80:
2b:0f:d8:84:97:55:0a:c7:af:1c:71:6d:f1:4f:9c:
11:fa:0d:c9:ea:90:df:0e:bb:0b:81:21:e7:5d:52:
57:f2:c5:29:c2:26:a5:0c:1b:0a:5a:ed:1a:ae:56:
c3:27:59:95:6c:93:4d:0a:de:8c:95:c3:58:7d:6a:
c2:49:bc:0c:93:76:aa:b1:d0:29:0f:95:68:52:80:
7e:e2:3b:92:2a:5a:64:88:55:2e:a1:3a:8e:b6:eb:
c7:6c:51:bb:13:7c:2c:51:57:55:3e:89:d8:1c:da:
cc:22:24:a8:1c:50:14:04:01:14:c3:3d:96:d3:4d:
c5:91:c5:f0:1d:c8:94:4a:85:ab:28:00:e5:98:c6:
bc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:61:6A:9D:B8:7D:08:9B:56:E7:24:15:9B:AD:5A:F6:2F:29:9B:51
X509v3 Authority Key Identifier:
keyid:75:9D:BB:B4:CA:04:32:9B:C5:09:D6:DD:1C:D5:0B:93:56:AD:89:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:03:8c:f5:9d:b8:4d:78:d9:e9:ba:7f:77:07:e0:17:f2:da:
3c:b1:e3:9a:6c:5b:06:81:07:aa:3a:69:e4:b4:f7:26:e4:d4:
3a:38:2b:18:14:0c:7e:1d:c4:ad:9e:c3:c7:a7:ec:f1:5c:56:
dc:a4:18:a9:cb:cf:ac:96:9f:48:c3:3e:ea:40:bb:d1:34:a6:
b6:f7:0f:7d:db:c7:84:24:a5:76:39:d6:c4:4c:5e:6d:e8:27:
65:3d:1b:2a:0d:1c:ea:c7:c3:f2:32:92:a6:4a:a6:4c:1a:3c:
b4:8b:de:bc:ad:03:35:8f:63:7b:35:07:79:dd:71:ce:72:47:
90:a9:f5:09:db:ce:b1:ff:bd:45:a4:29:e1:8f:2e:cc:9a:4c:
3a:2b:17:d7:1e:07:6e:3b:a3:b5:66:f9:b0:6f:12:b0:64:5a:
f2:75:ee:d8:32:21:32:05:11:12:51:0f:ad:e2:b7:86:46:68:
8c:e2:6a:05:04:90:7e:e1:97:e6:51:c3:84:33:fe:d3:ff:b9:
b6:34:69:ca:12:24:ee:77:57:07:90:f3:10:4a:80:3b:3b:6c:
02:4b:1e:fc:2c:04:24:d8:9a:20:51:dd:3e:ba:2f:93:e9:85:
cc:74:75:d1:6c:28:fe:8a:56:25:44:58:c3:91:bb:c0:1c:1b:
04:6c:1a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:47 2025 by rpki-client