Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
File: dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json)
Hash identifier: 7q6bhwn58x+WSPZDnKw4SZZd17Ycj1hv7kr9XJKKSLU=
Subject key identifier: A1:30:BD:C4:73:4F:1B:F8:A9:0C:74:37:C9:AE:CE:CE:57:11:A0:E1
Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
Certificate issuer: /CN=75714b581ada196e3551c08ce76243be058b44eb
Certificate serial: 0199FB0EE4D83C6D58CDD11DFD924FBB99C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 06:01:21 +0000
Manifest this update: Sun 19 Oct 2025 06:01:21 +0000
Manifest next update: Mon 20 Oct 2025 06:01:21 +0000
Files and hashes: 1: 0dwLJQRpdsuNfuiofPA4PjO0U8c.roa (hash: xvhwiBzc6sj9frR0O87jctOS5dj3sqKjh7OcpHO4MQo=)
2: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: 1il3xgc2o7/JF/pRUIQOHoFeZFbs0CVyNgPwrvFX4H8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:e4:d8:3c:6d:58:cd:d1:1d:fd:92:4f:bb:99:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb
Validity
Not Before: Oct 19 06:01:21 2025 GMT
Not After : Oct 20 06:01:21 2025 GMT
Subject: CN=a130bdc4734f1bf8a90c7437c9aecece5711a0e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:4f:ee:7c:c5:58:b8:49:c7:1f:6d:ff:34:5f:
58:20:f6:ed:c4:b5:11:bc:b7:27:32:c0:eb:18:21:
9a:5b:6c:50:d8:c5:aa:d5:8c:94:b9:a1:e5:80:6b:
6a:b5:43:cb:05:0c:c8:1d:e0:59:ce:1c:0f:e7:35:
52:49:79:24:6c:d2:0d:6a:ed:05:16:4f:8a:70:5d:
65:4b:ee:4d:a0:c8:a7:15:2e:3d:e8:7e:9b:af:67:
d4:89:ad:97:0b:a1:1d:2f:e9:3a:77:3d:11:50:9d:
45:59:38:76:a0:b4:cf:86:b0:d2:90:03:69:3a:91:
38:f3:a9:1a:f4:6c:ee:70:4d:50:73:11:80:04:6b:
2a:8b:e2:bc:18:72:59:58:23:49:6d:91:b5:c6:cd:
88:f6:76:78:59:84:1e:ad:7b:f3:f4:d8:a9:51:0c:
0f:5d:2d:eb:7a:f1:c5:d0:05:c7:bc:96:a4:44:16:
d4:a9:3d:fb:d3:0f:be:c3:85:16:73:05:b4:da:fc:
89:04:c2:ed:63:1b:00:72:e9:f2:8c:89:75:b8:7d:
6a:d6:dc:79:bb:70:ab:e5:c1:4e:f9:77:a3:79:28:
f0:8e:34:2a:c9:51:1e:1c:4b:65:63:57:ce:08:ff:
df:eb:48:78:72:ca:ec:96:57:a9:c0:1d:81:24:2e:
cb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:30:BD:C4:73:4F:1B:F8:A9:0C:74:37:C9:AE:CE:CE:57:11:A0:E1
X509v3 Authority Key Identifier:
keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:80:c2:21:fe:da:4f:94:d2:3d:9e:ab:70:33:24:96:e6:64:
ef:63:27:63:c0:ed:2a:b9:60:02:45:91:77:1d:3e:0a:54:dd:
08:23:36:bb:7f:5d:c2:87:0a:ad:50:bb:6c:49:4c:c4:53:f0:
ef:88:5a:58:d2:a7:5e:88:a8:76:1e:92:8d:63:2b:db:de:8e:
08:83:e9:14:f4:d0:92:32:69:67:c5:3e:a8:2d:28:6d:5e:b8:
39:7b:c1:e5:59:34:ed:5d:18:51:00:90:8c:5c:36:60:87:37:
95:8e:3b:8c:f1:65:74:78:8c:19:57:53:30:8a:40:5e:fa:0b:
1a:08:b7:b0:c0:0f:83:a3:00:aa:6f:a4:1b:7b:bd:81:d6:98:
78:c6:0c:19:48:56:1c:fd:ff:6b:7d:cf:4e:5e:3d:2a:56:8f:
62:ac:58:0c:14:eb:d2:16:b5:aa:1f:72:56:29:92:ae:36:62:
3b:e8:95:26:12:9e:fc:7d:25:61:38:9e:56:d9:45:52:bf:88:
03:20:0e:2f:30:8c:14:80:52:8b:d7:ed:64:23:ec:19:95:94:
3f:fb:4d:48:e8:36:2b:f5:13:2f:b0:24:aa:df:b3:c7:9e:20:
c1:78:f8:25:1e:95:de:9d:b6:e3:a3:93:75:34:76:52:5b:b4:
61:3e:6a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:09 2025 by rpki-client