Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
File: drTT6JcTIsZNegRYurdFqJreTeU.mft (raw, json)
Hash identifier: 95ov95zjsH6GRuM0wXGqfv7zy+P0uoAavMx89mypKEM=
Subject key identifier: DE:89:60:83:4B:81:AA:94:84:A8:D0:5A:E5:77:30:0B:2F:95:66:73
Authority key identifier: 76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
Certificate issuer: /CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Certificate serial: 0199FBEAE8D4F46C5EE3AE00450E98CFA873
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
Manifest number: 0365
Signing time: Sun 19 Oct 2025 10:01:40 +0000
Manifest this update: Sun 19 Oct 2025 10:01:40 +0000
Manifest next update: Mon 20 Oct 2025 10:01:40 +0000
Files and hashes: 1: ZYX1Qhws2vdCl-u2QXbSsdG6zUs.roa (hash: 1Yas72g5IvT1A6G5CoyKopOr6adZNC8arOgG6BPNF2I=)
2: drTT6JcTIsZNegRYurdFqJreTeU.crl (hash: FG6J2YR3TU0XXfD60qMbjRoAYh4lszJjopfuct2AlRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:e8:d4:f4:6c:5e:e3:ae:00:45:0e:98:cf:a8:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Validity
Not Before: Oct 19 10:01:40 2025 GMT
Not After : Oct 20 10:01:40 2025 GMT
Subject: CN=de8960834b81aa9484a8d05ae577300b2f956673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:34:59:56:71:43:f4:00:86:0f:08:dc:40:f0:
eb:b8:e1:ea:d0:f3:94:db:c0:77:21:55:34:78:c9:
78:79:72:8b:d8:31:1c:ac:49:a5:54:26:18:42:c7:
87:4c:90:65:0f:b5:a8:de:c3:df:21:56:5e:df:7f:
fe:59:63:45:cd:e7:4e:8b:c0:30:3d:0c:a1:2f:0e:
87:2e:1b:f9:6b:97:e1:a4:86:91:2c:22:12:b1:4f:
6c:0d:2c:09:fe:b1:da:16:ae:2d:c5:ca:ec:bd:0a:
cb:0e:f8:aa:bf:5f:4c:af:a6:60:dd:c7:74:b2:5e:
21:10:3a:0c:ce:a4:c9:ff:cb:e4:2f:1f:57:db:af:
e6:3c:b1:3a:32:65:a6:1b:e6:55:a5:76:c8:4f:51:
ce:cb:c8:ab:ba:66:c5:cc:0e:fc:df:3f:2c:b7:33:
1b:4f:03:d6:5e:c6:61:3f:24:59:61:c2:c7:f0:70:
9e:59:3c:14:0b:bd:66:8b:f0:c3:b3:3a:cd:75:88:
aa:d2:3d:6a:94:8d:09:69:af:61:96:af:60:b1:84:
b2:45:1a:79:7c:23:e0:7d:82:11:72:3d:8e:28:98:
20:86:b8:67:bd:7d:4a:7a:88:c7:8c:c7:cf:90:52:
91:79:47:39:ed:50:ee:52:86:ca:f4:4d:e3:40:7f:
99:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:89:60:83:4B:81:AA:94:84:A8:D0:5A:E5:77:30:0B:2F:95:66:73
X509v3 Authority Key Identifier:
keyid:76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:09:a0:09:55:b2:93:e4:02:93:95:cb:be:fe:d3:a8:17:58:
b9:15:01:ef:4d:3d:0b:bb:8c:77:e0:77:3a:90:ad:a4:da:0b:
11:b6:06:f1:ed:a4:2b:24:14:63:a5:ae:be:fe:a6:f6:cf:c5:
e2:0a:36:55:19:2c:3b:2d:1d:b6:a3:f9:10:14:82:e1:67:d0:
23:36:6a:f1:28:db:fe:5b:ac:24:87:82:0f:d3:b2:c9:d7:77:
b0:fa:6e:e8:78:e4:e7:23:78:7c:33:db:43:b1:61:63:4e:6a:
5c:85:9d:ab:00:f2:bf:68:f1:e7:72:15:e6:01:6b:2d:33:0a:
4a:fd:aa:c4:a5:28:12:21:d6:27:f9:8e:49:42:22:97:b6:b2:
ee:00:fb:58:9b:31:f0:56:2c:6d:6a:70:c2:0e:ce:30:0d:73:
50:4a:29:eb:d6:a7:3e:85:6e:d3:4e:7d:f9:12:0e:05:54:3a:
59:e2:91:15:1b:c0:89:3a:d9:67:07:c9:fb:ac:cc:24:c6:c9:
b7:20:e8:87:0e:c5:62:ea:30:2f:ec:26:d3:af:58:93:a9:17:
42:80:c4:ea:d0:da:13:0c:ad:7b:a6:9b:ff:78:a5:59:a2:a9:
19:61:a1:6d:84:a6:4b:46:80:48:d7:61:79:83:27:01:e9:e0:
f8:85:f1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:25:40 2025 by rpki-client