Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json)
Hash identifier: NApN3aQmapscRdPnJbYcvVET8hGwShkwEb2Y/nwxgXM=
Subject key identifier: 1D:48:CA:00:83:E4:CA:EC:70:C9:73:ED:46:F8:6E:0B:C4:65:B2:E6
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 019A4DAAB673C56ED1A11FAA481216E72569
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
Manifest number: 0983
Signing time: Tue 04 Nov 2025 07:00:24 +0000
Manifest this update: Tue 04 Nov 2025 07:00:24 +0000
Manifest next update: Wed 05 Nov 2025 07:00:24 +0000
Files and hashes: 1: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: DmyzcePD8Obo2qi9TWLuuGChUIt/jDJ7XCvvhLFBIu0=)
2: IAritswAhqNQe77s1GDg_ezpHck.roa (hash: ILdWDEHhnQvuxpeMgx2XCbjW7CQm2ybVgtMQih2P4NU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:aa:b6:73:c5:6e:d1:a1:1f:aa:48:12:16:e7:25:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Nov 4 07:00:24 2025 GMT
Not After : Nov 5 07:00:24 2025 GMT
Subject: CN=1d48ca0083e4caec70c973ed46f86e0bc465b2e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ef:95:9b:7c:e1:30:19:76:70:10:27:df:4d:
58:52:f2:56:80:ec:77:d7:16:f8:8e:24:16:d8:2d:
dd:00:48:c3:8c:27:87:c9:be:a8:7c:0f:f3:10:7e:
2a:32:ed:61:a2:5f:1c:59:08:56:b9:2e:5d:c7:8e:
e4:21:21:f9:5b:0e:96:81:49:52:5c:56:9d:72:9b:
ea:2f:54:1a:37:58:11:3c:6c:9c:8f:3e:41:ee:4a:
23:c4:ca:03:0d:ad:65:fa:b5:dc:6e:6c:f1:b8:1e:
df:06:05:39:04:0d:da:31:af:63:2d:0d:dc:08:77:
9e:ab:be:6c:f8:ff:2e:76:13:e7:71:40:c8:5e:e5:
b8:11:f8:6f:59:e2:44:6a:e4:22:d9:49:f4:ea:7b:
a2:bd:92:e5:5c:24:cf:c9:12:f8:07:04:fd:75:d8:
8f:07:7e:fd:3b:94:c9:f1:d9:39:5e:ee:05:54:df:
eb:d3:ad:16:db:5d:80:27:2a:a2:9d:b3:62:15:ca:
4e:ce:d2:ea:6a:1b:d6:a8:2b:d8:db:38:47:b3:a5:
cd:05:84:49:c8:93:44:34:87:e3:c5:56:e3:ea:a9:
1c:9f:19:55:9e:ae:29:c2:00:bc:92:b8:fc:75:59:
76:5a:4e:3d:d2:03:68:fa:b8:04:91:ed:90:3b:d0:
9f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:48:CA:00:83:E4:CA:EC:70:C9:73:ED:46:F8:6E:0B:C4:65:B2:E6
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:ff:bb:f8:34:77:f6:bd:6f:26:47:87:e0:c5:a8:05:e3:03:
3c:8d:15:ff:50:19:5f:3c:b4:b7:43:47:51:4d:04:ce:1e:03:
e3:f5:31:92:e6:d3:ba:c2:2d:f5:3b:6d:fd:e3:5a:a1:0f:bd:
8a:13:05:84:88:a3:25:40:5a:29:6e:71:0e:91:e4:e7:2c:b6:
a1:e1:8c:1f:76:06:66:49:55:be:f7:56:78:47:95:5a:29:13:
5b:b2:91:1a:a5:c1:6e:2d:92:69:df:5f:7e:fd:34:1b:4f:c3:
8a:04:ec:64:e6:41:00:6e:07:4e:3d:51:33:25:24:47:df:dd:
a7:30:81:f3:36:d4:07:33:1f:36:07:50:a3:36:ee:66:4c:25:
19:fd:b8:6c:19:ec:98:94:81:34:69:34:a3:20:4e:6e:78:2c:
67:b9:03:70:0a:2d:82:ab:98:e1:4f:37:51:99:bf:36:72:2d:
9a:c7:57:b3:a9:53:2f:4f:21:1d:8d:6d:c3:21:ea:a2:41:80:
e4:8d:2f:24:ff:db:c5:66:fb:cb:ba:43:1c:5b:32:85:91:48:
a2:b7:17:de:63:ef:c4:f2:d4:98:4c:d4:30:4e:37:d3:b8:46:
47:9d:63:8f:d5:a8:c8:a7:73:53:fa:ef:3a:27:bb:5e:7e:54:
39:bb:75:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNqrZzxW7RoR+qSBIW5yVpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMTgzMjZlMDAxYWE3ZmM1NmY4MzUzMTMxNTM3NmY5ZWFh
ZTA5ODgwHhcNMjUxMTA0MDcwMDI0WhcNMjUxMTA1MDcwMDI0WjAzMTEwLwYDVQQD
EygxZDQ4Y2EwMDgzZTRjYWVjNzBjOTczZWQ0NmY4NmUwYmM0NjViMmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp++Vm3zhMBl2cBAn301YUvJWgOx3
1xb4jiQW2C3dAEjDjCeHyb6ofA/zEH4qMu1hol8cWQhWuS5dx47kISH5Ww6WgUlS
XFadcpvqL1QaN1gRPGycjz5B7kojxMoDDa1l+rXcbmzxuB7fBgU5BA3aMa9jLQ3c
CHeeq75s+P8udhPncUDIXuW4EfhvWeJEauQi2Un06nuivZLlXCTPyRL4BwT9ddiP
B379O5TJ8dk5Xu4FVN/r060W212AJyqinbNiFcpOztLqahvWqCvY2zhHs6XNBYRJ
yJNENIfjxVbj6qkcnxlVnq4pwgC8krj8dVl2Wk490gNo+rgEke2QO9CfXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB1IygCD5MrscMlz7Ub4bgvEZbLmMB8GA1UdIwQY
MBaAFA8YMm4AGqf8Vvg1MTFTdvnqrgmIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYt
NmI4MTM2OTNiYzhjLzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9hN2U0NWMtZjI5Ny00NTIwLWFiZTYtNmI4MTM2OTNiYzhj
LzEvRHhneWJnQWFwX3hXLURVeE1WTjItZXF1Q1lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABP+7+DR3
9r1vJkeH4MWoBeMDPI0V/1AZXzy0t0NHUU0Ezh4D4/UxkubTusIt9Ttt/eNaoQ+9
ihMFhIijJUBaKW5xDpHk5yy2oeGMH3YGZklVvvdWeEeVWikTW7KRGqXBbi2Sad9f
fv00G0/DigTsZOZBAG4HTj1RMyUkR9/dpzCB8zbUBzMfNgdQozbuZkwlGf24bBns
mJSBNGk0oyBObngsZ7kDcAotgquY4U83UZm/NnItmsdXs6lTL08hHY1twyHqokGA
5I0vJP/bxWb7y7pDHFsyhZFIorcX3mPvxPLUmEzUME4307hGR51jj9WoyKdzU/rv
Oie7Xn5UObt1aQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:27:33 2025 by rpki-client