Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
File: dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft (raw, json)
Hash identifier: og91JhukL2zcSbXygelNd4Cl68vGWcSb46sWNd50nbg=
Subject key identifier: 6B:26:3B:11:80:2B:E5:37:84:CD:B7:FC:CD:F0:29:BF:FE:12:B1:9E
Authority key identifier: 76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
Certificate issuer: /CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Certificate serial: 0199FBEB32362C12FC5974E07C23B19397AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
Manifest number: 050D
Signing time: Sun 19 Oct 2025 10:01:58 +0000
Manifest this update: Sun 19 Oct 2025 10:01:58 +0000
Manifest next update: Mon 20 Oct 2025 10:01:58 +0000
Files and hashes: 1: dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl (hash: FcD6Q1DLd7VCWmXD+tssxiNMvovEaH+Az0h8lBoQwsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:32:36:2c:12:fc:59:74:e0:7c:23:b1:93:97:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Validity
Not Before: Oct 19 10:01:58 2025 GMT
Not After : Oct 20 10:01:58 2025 GMT
Subject: CN=6b263b11802be53784cdb7fccdf029bffe12b19e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:40:8c:ab:d0:ce:82:1f:72:4a:68:89:28:87:
94:d7:e9:35:24:6f:94:60:0c:9c:e7:ac:da:3b:7f:
54:0a:08:df:01:08:dc:8a:9c:96:97:f1:65:f8:ab:
0f:97:07:b1:02:a7:ff:85:69:74:e4:02:c6:9f:aa:
4c:10:0b:b8:4c:bf:d8:13:82:1e:e6:8a:d9:f5:74:
db:86:40:c9:13:3b:99:ce:3f:25:cb:51:4a:b4:0d:
9b:49:e7:28:eb:aa:a2:df:4a:1e:e0:cf:a7:66:7e:
96:89:5e:03:be:de:17:88:29:ab:97:f9:27:00:06:
09:6f:51:9b:2c:ff:8b:a5:27:16:2c:1b:70:ea:2c:
c4:c9:7c:91:09:03:88:29:a0:61:70:28:84:1f:68:
fa:81:f1:28:9a:3c:0c:d0:06:bd:0d:f0:83:30:25:
b2:7a:e5:81:11:b7:9c:f1:2d:31:c0:0d:d3:47:0c:
eb:ee:d6:69:de:ba:44:ea:b3:6b:54:3c:ac:08:cb:
2c:16:26:71:66:70:08:2e:82:5e:75:07:94:7f:28:
ed:bd:c9:ec:75:72:7e:2d:6c:46:a3:3b:ab:ed:64:
15:3e:f5:d4:5f:b9:4d:68:e4:32:cb:f3:1c:a4:8f:
da:8e:0e:04:d8:bc:ad:8a:fb:2c:b4:e4:d2:4e:31:
5b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:26:3B:11:80:2B:E5:37:84:CD:B7:FC:CD:F0:29:BF:FE:12:B1:9E
X509v3 Authority Key Identifier:
keyid:76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:5a:34:8a:ed:66:c0:a0:6f:e5:40:1a:aa:34:58:85:21:05:
dc:7d:c7:8a:4f:76:d8:72:26:4d:c7:c7:b9:8d:74:f7:83:86:
fc:fe:29:6a:b5:b5:ba:48:c3:1c:ab:dc:b7:c0:6f:01:46:67:
96:4c:33:c0:7a:c3:68:dd:50:20:b2:d0:53:3c:df:49:c5:35:
6e:d9:88:44:71:d1:a9:76:7c:d5:2e:8b:9e:62:59:f0:0e:70:
5f:a2:82:9a:8b:6b:f5:5f:67:1c:98:b7:cc:a9:93:4f:63:e3:
71:e2:31:68:cd:7a:a9:a3:ee:56:a3:06:53:32:38:a8:ac:33:
84:7c:b4:22:b5:bb:10:49:9a:49:05:cc:48:55:35:bd:41:69:
59:17:00:03:7e:f1:cd:07:b5:02:86:f9:7f:53:e4:ce:b9:4a:
8d:42:c0:4f:5c:1c:9b:a3:94:34:3c:37:c8:f8:4a:bc:81:1d:
0c:62:c9:13:24:4b:7b:ad:ed:6b:51:ce:cb:c4:ba:52:b7:d7:
0b:61:51:2c:c1:c5:1d:d8:bb:7d:ad:c8:40:b8:f8:9d:34:9a:
e7:5f:d4:72:ab:bc:9a:0c:82:91:00:50:a4:b5:d2:b2:f0:76:
00:7a:28:79:00:8c:80:dd:06:4f:82:be:9b:42:74:49:6a:0e:
16:c3:96:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:15 2025 by rpki-client