Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
File: dbh4BinZITNXwHDBwBBgU0dIg8E.mft (raw, json)
Hash identifier: +wRWj9qeoEf7KP5LBOrd+vB/9b5Fp6SNNUUuJvLN6nI=
Subject key identifier: E9:08:15:A3:07:58:1B:99:6F:01:9C:22:A7:6F:B6:2F:CB:B7:CF:31
Authority key identifier: 75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1
Certificate issuer: /CN=75b8780629d9213357c070c1c0106053474883c1
Certificate serial: 019A01B606123F37F20B2EB53C2C35734D34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
Manifest number: 0D09
Signing time: Mon 20 Oct 2025 13:01:37 +0000
Manifest this update: Mon 20 Oct 2025 13:01:37 +0000
Manifest next update: Tue 21 Oct 2025 13:01:37 +0000
Files and hashes: 1: dbh4BinZITNXwHDBwBBgU0dIg8E.crl (hash: 4yfSSAbaVZm3gqSjBzfG80S391/EcKxIgvaTE+Py8LI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b6:06:12:3f:37:f2:0b:2e:b5:3c:2c:35:73:4d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75b8780629d9213357c070c1c0106053474883c1
Validity
Not Before: Oct 20 13:01:37 2025 GMT
Not After : Oct 21 13:01:37 2025 GMT
Subject: CN=e90815a307581b996f019c22a76fb62fcbb7cf31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:be:14:a3:cf:20:da:a9:d6:94:0d:0e:ac:75:
b9:cc:b1:da:ac:23:f6:5f:65:f1:5d:fc:14:c2:29:
d2:10:61:68:33:3b:96:01:72:f8:1f:e3:50:f6:c5:
99:20:dc:83:41:b8:33:e0:ed:0c:13:1a:76:b7:fd:
44:8a:63:a1:72:25:e5:18:11:62:9d:ab:52:1a:f9:
1f:00:e6:82:2b:75:1a:22:15:f9:d6:38:26:d0:0e:
39:99:1b:0c:1e:5a:ca:af:48:b1:3b:86:8a:70:08:
34:54:7b:04:6b:d3:b8:7b:34:bb:ad:ac:1b:b9:60:
df:03:7e:f1:74:9f:81:b8:4e:10:91:cc:af:65:a8:
e9:bc:bb:89:41:dc:29:c6:08:17:bc:fd:29:29:d9:
35:59:5a:f7:56:fc:6f:1f:f3:77:61:51:91:bd:e1:
87:e8:a9:cb:a6:b0:fb:f4:4f:8a:85:a3:10:2b:23:
81:0d:ff:43:aa:80:1a:4a:8a:bd:13:80:2a:36:74:
c0:c3:90:6b:79:54:03:77:b7:b7:9a:cf:2d:6b:53:
d9:24:b2:ff:97:c2:3f:d9:1f:6d:27:83:43:bb:ff:
20:d6:84:1e:f2:3e:46:b8:11:d0:6a:11:b7:17:7d:
6f:25:74:ce:49:60:d2:81:e4:0f:fe:ab:af:6c:86:
ce:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:08:15:A3:07:58:1B:99:6F:01:9C:22:A7:6F:B6:2F:CB:B7:CF:31
X509v3 Authority Key Identifier:
keyid:75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:f2:04:07:e7:b6:4d:93:9f:74:1e:98:08:46:85:89:8c:37:
d8:d4:6b:45:10:15:f2:35:61:f4:5f:e9:79:7e:72:66:e0:bf:
00:e6:65:6e:96:bf:89:20:05:9d:65:4d:e1:be:8a:9a:66:ee:
85:d7:73:a1:11:22:a7:c0:62:76:7b:51:4d:93:6b:0f:e3:15:
89:5d:73:72:f1:ca:a7:c9:4f:0c:64:0a:84:43:5f:a9:8b:3a:
fb:3c:94:5f:9e:56:ec:b1:d2:79:21:71:8c:da:43:1c:51:5a:
0e:ad:20:25:35:53:df:cf:eb:d9:fc:63:c2:14:a1:f6:15:8f:
86:36:f8:60:91:8a:33:36:c6:7b:1a:25:77:fe:a1:3a:f2:71:
25:ab:23:c0:b3:1a:ad:15:a3:ae:96:fd:0b:a3:82:76:4f:91:
88:66:36:b8:8a:40:d3:7b:36:44:9c:e3:5b:9f:d1:bc:0b:e3:
84:a8:7b:fe:69:53:0d:b1:50:c9:74:9d:6a:73:1b:70:bc:58:
1d:d6:6e:3a:39:8f:27:23:bc:25:ec:29:90:3c:1e:1e:7e:ce:
e7:a3:a6:bb:99:91:b7:71:50:6f:0c:28:d5:ff:dc:ad:a5:86:
48:e8:1f:a0:0d:fc:69:be:93:68:b8:ef:23:b0:fc:a7:b7:26:
b9:f6:58:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 15:42:57 2025 by rpki-client