Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
File: DbPDFk09jCZEzymzI2dhpXHuWLo.mft (raw, json)
Hash identifier: 8Uu6HwcSTyzBeGUY3EQXnaH/SC+cSVL89YSdR/nQX0I=
Subject key identifier: 39:AE:0F:24:8F:E2:31:BF:70:28:67:A6:5D:22:F9:0F:AE:B0:D1:F0
Authority key identifier: 0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA
Certificate issuer: /CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba
Certificate serial: 0199FC582FA6B7DE517E1589DDC77556CF0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
Manifest number: 0CE9
Signing time: Sun 19 Oct 2025 12:01:01 +0000
Manifest this update: Sun 19 Oct 2025 12:01:01 +0000
Manifest next update: Mon 20 Oct 2025 12:01:01 +0000
Files and hashes: 1: DbPDFk09jCZEzymzI2dhpXHuWLo.crl (hash: 9Jl7FEr3S78NjuIes1rNCBZ5XpW5l10z2iuivQOSuxk=)
2: VCOPnV4kZuweFLb_llPPHRAXNUA.roa (hash: cRLhBmbu/yT6hrLfR7qsKhKnC8knJg7oOO9Ome0I9Gw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:2f:a6:b7:de:51:7e:15:89:dd:c7:75:56:cf:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba
Validity
Not Before: Oct 19 12:01:01 2025 GMT
Not After : Oct 20 12:01:01 2025 GMT
Subject: CN=39ae0f248fe231bf702867a65d22f90faeb0d1f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:91:29:51:e8:a7:ee:e7:eb:ab:dc:54:18:6c:
53:c0:e8:81:05:4c:28:59:d2:3f:c7:cc:de:e0:1c:
6e:be:79:21:c5:6d:72:91:c7:0b:01:43:e2:7b:ab:
7f:25:cf:ee:10:8b:61:c9:46:7a:6b:30:3a:ae:a8:
48:c3:f5:15:c2:6d:f5:a3:de:1b:d5:d2:03:21:61:
c4:99:37:94:ed:0a:95:c7:1d:8c:1b:bd:a0:b4:b1:
e4:2b:a1:18:3c:aa:81:f3:d1:35:da:8d:09:24:d0:
84:0b:a0:ef:1f:fc:90:1d:b0:db:31:59:8c:12:75:
a9:96:c3:76:37:6c:83:ac:0d:40:e3:b4:c9:25:de:
99:b3:1b:a7:8e:07:c3:9c:34:f0:02:0f:bc:ef:01:
87:93:20:6f:14:f0:37:4c:6f:20:52:3f:25:9b:da:
9c:2d:41:85:c1:9e:c7:98:c0:bd:67:c8:be:77:87:
b2:e6:4e:fc:62:51:57:41:f1:29:b6:e7:cf:8c:a5:
ec:58:ef:25:ce:c0:22:2d:55:d9:b9:8a:4c:c3:98:
55:2b:a9:00:ba:bf:92:80:54:41:c1:16:3f:73:69:
3f:4b:22:66:5a:f6:e4:7e:4b:fa:25:77:ff:cc:29:
4d:93:52:a9:83:9e:c3:57:67:98:57:1f:78:e7:b2:
62:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:AE:0F:24:8F:E2:31:BF:70:28:67:A6:5D:22:F9:0F:AE:B0:D1:F0
X509v3 Authority Key Identifier:
keyid:0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:d6:97:69:bb:af:0e:63:d2:b5:c0:d9:b0:40:af:18:01:9d:
92:af:d9:8a:3e:04:cb:3d:c3:ad:d9:bb:4c:c1:72:e2:c3:7d:
c7:b1:0d:d4:49:08:19:2f:9c:17:a5:e8:5a:ff:38:c7:b8:4a:
cb:df:de:e6:bc:03:be:58:af:f2:f8:d1:fd:d9:77:ef:ec:cb:
00:86:f0:44:f4:c8:da:67:ba:87:f9:3e:94:7f:bd:64:f0:25:
2a:7d:59:51:86:40:ea:1e:b0:28:f9:0d:40:1c:f0:f0:03:e8:
13:2b:a7:ba:94:8c:f7:10:89:a8:9d:ba:82:90:67:c6:1b:86:
b6:66:fe:e2:01:5d:ae:d5:33:b5:53:55:4a:65:38:71:1c:9e:
47:e5:e0:63:a4:f1:ef:ed:00:71:2f:58:bc:c6:85:0e:1a:af:
31:91:9e:e3:2c:a6:c3:cf:fd:bd:c6:c3:24:2d:da:db:d1:b9:
9d:9b:d6:9d:0e:04:18:6f:9b:09:2f:2d:9a:4d:57:91:e1:81:
6f:4c:b3:73:1f:95:49:09:67:35:4e:eb:2f:c9:da:bb:7f:2c:
91:05:ef:18:10:8e:8c:af:40:f6:a1:aa:1f:ac:ee:d8:97:a9:
f7:6e:48:28:8f:b8:fa:9e:3f:a8:62:43:18:56:cb:37:6b:30:
38:40:28:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:54:47 2025 by rpki-client