Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
File: 29B3gCIiIDwWzo6v1Z8LCsHb58M.mft (raw, json)
Hash identifier: wTuLsAJVtOVbVpamSFqTrnPABxV4sKfu5iMaX7LGyJE=
Subject key identifier: 6B:D9:4D:6F:B8:2B:8C:33:25:B1:F1:27:0B:91:80:25:7B:6E:50:22
Authority key identifier: DB:D0:77:80:22:22:20:3C:16:CE:8E:AF:D5:9F:0B:0A:C1:DB:E7:C3
Certificate issuer: /CN=dbd077802222203c16ce8eafd59f0b0ac1dbe7c3
Certificate serial: 0199FBEC2D7AB0335080FFAD96482680AE41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
Manifest number: 0F97
Signing time: Sun 19 Oct 2025 10:03:03 +0000
Manifest this update: Sun 19 Oct 2025 10:03:03 +0000
Manifest next update: Mon 20 Oct 2025 10:03:03 +0000
Files and hashes: 1: 29B3gCIiIDwWzo6v1Z8LCsHb58M.crl (hash: MDRXbCa/RGrLmMPEHBfgMh0aIVsqy9hK1exw29BlxxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:03:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:2d:7a:b0:33:50:80:ff:ad:96:48:26:80:ae:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbd077802222203c16ce8eafd59f0b0ac1dbe7c3
Validity
Not Before: Oct 19 10:03:03 2025 GMT
Not After : Oct 20 10:03:03 2025 GMT
Subject: CN=6bd94d6fb82b8c3325b1f1270b9180257b6e5022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:67:20:3c:87:76:9e:d8:0f:66:ce:72:c8:98:
da:58:36:4f:be:96:a4:9d:a8:aa:ce:22:d2:95:f7:
72:80:2b:19:2e:9e:5e:9a:3d:14:f8:c4:59:45:47:
e5:aa:08:72:b1:a8:7b:58:8b:c1:51:d6:8f:65:3c:
b1:87:3c:eb:19:7e:88:b7:87:10:e3:9d:f6:cc:3b:
a3:fb:0c:0d:3a:16:9b:17:24:d9:4e:6b:30:c2:63:
2b:a3:44:21:83:b3:82:57:75:09:11:43:5f:02:a9:
2d:2d:0c:54:bc:0e:db:b6:f1:92:cf:7c:18:00:30:
77:6a:67:0f:2d:48:23:85:2f:f2:c3:64:45:fe:34:
50:5e:c8:e2:38:68:2c:f5:ee:cb:e9:eb:0c:99:88:
88:d6:04:28:4e:b8:c8:ed:7c:b2:6d:66:96:81:31:
da:80:a9:90:27:4e:8c:df:90:25:8b:ac:ab:87:04:
81:40:56:40:ab:91:0b:32:ac:91:d9:e7:67:c4:a9:
a9:0e:3c:b0:eb:1f:b3:12:34:b8:84:d3:52:b1:f3:
7c:97:49:a0:40:44:f4:da:e2:bc:a2:8b:48:17:83:
37:5b:82:d2:b2:25:0a:04:15:df:db:e2:23:c7:6a:
6e:10:99:ef:84:d6:f0:c1:5c:d1:58:f1:4c:1d:e8:
03:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D9:4D:6F:B8:2B:8C:33:25:B1:F1:27:0B:91:80:25:7B:6E:50:22
X509v3 Authority Key Identifier:
keyid:DB:D0:77:80:22:22:20:3C:16:CE:8E:AF:D5:9F:0B:0A:C1:DB:E7:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:d1:01:a7:b5:1b:31:f0:9b:7e:e8:f9:31:85:93:7c:af:11:
c7:56:5a:6d:2c:32:65:8f:62:fb:00:25:63:cf:cb:57:7f:1c:
6d:c2:c8:f9:ca:98:1c:79:ff:13:b0:fb:93:2e:8b:37:d4:02:
c6:36:61:ac:b7:9c:bf:1b:ca:82:cb:81:6f:c6:5d:ae:a7:24:
f6:23:99:61:21:de:15:7a:02:96:76:5b:51:44:97:0b:a9:c6:
5c:73:5c:94:44:22:ee:2d:ef:51:78:d4:e7:64:73:a3:cd:cd:
50:77:89:66:fd:e1:43:87:25:88:11:84:0b:63:cc:61:4a:85:
b8:cc:54:53:c1:b1:8e:17:4f:dd:e5:43:09:25:76:07:5c:97:
47:3f:8f:e5:f2:09:36:ff:d1:26:25:0b:09:e0:84:dc:bc:fb:
ab:e3:40:0f:eb:31:34:c3:2e:1b:f9:bc:6c:7a:14:dc:e0:8e:
60:3b:96:46:4a:b9:5d:6a:e9:c8:2c:02:34:1e:74:e4:4d:f8:
98:cd:6e:91:37:92:6c:f0:10:ab:ed:52:31:d0:5a:e3:10:49:
e5:2f:a6:55:a0:58:27:a2:75:6d:56:72:77:62:a0:49:83:25:
da:3a:7d:32:83:f9:e7:68:3f:e7:53:20:39:df:9b:64:2c:ea:
10:91:be:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:31:31 2025 by rpki-client