Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft
File: dnECLoKiznV3Drwajw1F9E8scxY.mft (raw, json)
Hash identifier: EZf1JOAszYGG4Mu9JjgkEFd+0BXvINDUXjs2hB/TN7M=
Subject key identifier: E5:D1:06:7E:1E:B5:28:C7:0D:CC:E9:ED:ED:FA:35:D5:40:4E:EF:83
Authority key identifier: 76:71:02:2E:82:A2:CE:75:77:0E:BC:1A:8F:0D:45:F4:4F:2C:73:16
Certificate issuer: /CN=7671022e82a2ce75770ebc1a8f0d45f44f2c7316
Certificate serial: 0199FDDA546DA228DCCE4C426D350C0B4AB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnECLoKiznV3Drwajw1F9E8scxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 19:02:48 +0000
Manifest this update: Sun 19 Oct 2025 19:02:48 +0000
Manifest next update: Mon 20 Oct 2025 19:02:48 +0000
Files and hashes: 1: dnECLoKiznV3Drwajw1F9E8scxY.crl (hash: qzc89pQy3TrDpaJyMDUmK16JYwpDcv9zeeXdEEasz7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnECLoKiznV3Drwajw1F9E8scxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:54:6d:a2:28:dc:ce:4c:42:6d:35:0c:0b:4a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7671022e82a2ce75770ebc1a8f0d45f44f2c7316
Validity
Not Before: Oct 19 19:02:48 2025 GMT
Not After : Oct 20 19:02:48 2025 GMT
Subject: CN=e5d1067e1eb528c70dcce9ededfa35d5404eef83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ef:ab:31:38:c5:5a:57:db:07:35:df:f4:89:
04:be:b7:c8:6c:fa:88:0a:dc:c9:d9:0f:7c:47:9f:
0a:c2:d1:b7:8f:23:43:5c:9b:c5:0b:9f:10:41:f7:
f5:29:7c:18:6c:24:eb:d5:ab:03:4e:f8:c8:71:63:
77:b0:c5:06:01:3e:62:85:60:de:c1:1b:72:2e:25:
1a:86:da:b8:fa:49:07:18:6d:47:66:7e:f8:af:ad:
b0:6a:5a:f5:12:8c:4b:cc:32:23:5f:d5:28:78:c7:
47:02:1b:af:f6:6a:b0:1c:03:15:7e:61:7d:50:7b:
87:7b:bc:74:ac:60:6b:8a:5e:d1:57:75:e3:27:b2:
a2:63:37:66:38:84:d8:35:57:ce:2b:b2:1a:dc:3b:
b6:0e:4d:14:4d:e0:0b:15:4d:e0:42:0a:1e:86:ca:
6c:94:f6:0c:52:8e:a7:87:11:57:9b:10:f2:a8:af:
7d:2b:f5:e1:5a:d4:6e:8b:f1:3f:6d:9f:8a:b3:10:
53:dd:73:cd:05:f6:59:f9:39:0c:ff:c8:15:73:c9:
62:d8:10:cd:9c:69:ec:7b:28:53:26:23:d9:64:94:
ea:7d:71:b7:b0:cc:da:b7:e0:46:d3:78:08:02:7e:
c0:07:9a:83:e0:bf:a8:88:45:8d:66:f9:c5:a5:76:
59:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D1:06:7E:1E:B5:28:C7:0D:CC:E9:ED:ED:FA:35:D5:40:4E:EF:83
X509v3 Authority Key Identifier:
keyid:76:71:02:2E:82:A2:CE:75:77:0E:BC:1A:8F:0D:45:F4:4F:2C:73:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnECLoKiznV3Drwajw1F9E8scxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:39:da:a6:33:df:50:16:4b:1a:2b:75:3e:a0:83:f4:ad:43:
6f:10:6c:70:ba:9c:c4:95:b9:6d:75:35:b7:ce:d0:4e:7d:ae:
87:94:0d:f6:b7:9b:97:d1:a4:98:82:6b:06:28:79:62:bc:46:
04:61:93:ca:08:72:1f:3a:04:88:24:05:ef:d8:9d:8d:40:6d:
ce:34:a2:ba:ff:42:23:a6:3c:c1:0d:c9:c1:10:e1:0b:2b:fa:
9d:3c:7d:32:6a:a4:b4:fb:6d:ba:14:48:13:ba:ca:7c:04:e3:
71:cb:61:a9:aa:47:7f:3f:60:a3:09:df:e3:dc:7d:f6:5e:0f:
f4:e7:08:d6:f8:79:a1:3d:bf:3c:0d:22:20:62:62:ad:b3:59:
fe:5f:9a:5d:15:a4:21:3b:23:68:2f:0c:db:81:3f:45:61:c9:
d7:09:99:0b:01:6b:ba:c7:05:5a:37:14:de:ea:47:56:fb:1a:
7e:44:31:5e:b0:cb:f4:7d:0b:ba:0a:39:18:e4:11:34:14:58:
04:ec:ba:ff:c3:e9:c9:d4:9d:17:6c:5f:69:19:74:64:37:c4:
d8:8e:ac:ab:68:33:02:57:96:5e:60:b5:00:4f:b8:aa:6d:03:
fd:80:d6:72:5e:b9:56:1d:cf:7a:35:de:d8:da:dd:18:20:ee:
6f:e7:2e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:07:11 2025 by rpki-client