Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
File: DpXDrONm20G83CVsXVs75JCk92E.mft (raw, json)
Hash identifier: RkyjwgJRQwcuFQ2qPCAlVYZJh8quJ1sE9R6qZbQlKUI=
Subject key identifier: 07:AE:E4:93:30:C2:BA:EE:FD:29:9B:48:9D:7D:DD:C6:5B:8A:EA:7B
Authority key identifier: 0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
Certificate issuer: /CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Certificate serial: 019A56AE1C41C31C78727AC17662385263F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
Manifest number: 0B69
Signing time: Thu 06 Nov 2025 01:00:42 +0000
Manifest this update: Thu 06 Nov 2025 01:00:42 +0000
Manifest next update: Fri 07 Nov 2025 01:00:42 +0000
Files and hashes: 1: 1ILl-_jBl8vTjilNwWyLb_6kN84.roa (hash: ecF4kJW8L9z29VWA5l2Xp4iuCOJ3lYvBbDFUMxXyKfo=)
2: DpXDrONm20G83CVsXVs75JCk92E.crl (hash: zC+yiM4DXEkzkSVJV3oPuEGXKpmuriZzY9Pwdptn3Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:ae:1c:41:c3:1c:78:72:7a:c1:76:62:38:52:63:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Validity
Not Before: Nov 6 01:00:42 2025 GMT
Not After : Nov 7 01:00:42 2025 GMT
Subject: CN=07aee49330c2baeefd299b489d7dddc65b8aea7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:55:c3:6f:d3:19:d8:61:6d:39:21:70:4b:26:
20:f3:a9:12:46:60:78:fe:ff:b2:12:82:d2:b3:d9:
c5:ca:f9:23:f0:17:c7:65:a1:68:e2:93:23:65:06:
10:4d:5d:13:12:73:d8:7b:2b:08:8f:43:90:e3:63:
80:40:25:d2:e3:12:9e:35:23:0a:3b:f5:22:ce:02:
1a:d8:a4:75:a8:91:25:fe:3e:3d:84:3d:ae:36:b9:
71:6f:5b:27:72:c7:8c:8e:22:fb:59:d9:08:8d:8b:
04:94:fd:b1:c1:a7:0d:0c:b8:af:ed:d2:01:a0:4d:
c9:37:61:7d:f7:14:dc:52:dc:90:5b:c5:a4:7f:c5:
ff:cf:1a:73:ad:ef:19:dc:0a:60:f4:b5:92:46:0f:
11:14:af:c7:64:b6:b9:5f:f8:f0:c8:c7:d4:af:5a:
b2:ed:66:82:12:3a:ad:41:66:2e:75:f3:fd:f5:07:
c6:ee:04:18:5c:2e:7d:85:7f:14:d2:62:07:0a:c9:
a1:9e:73:df:d6:f7:d9:87:50:c3:02:5a:60:21:1f:
5f:b9:5e:7a:0d:99:9d:57:84:6e:44:15:66:c2:ec:
15:50:83:35:19:9e:2a:b7:89:3d:d0:2e:92:d1:c1:
0d:bb:d3:2b:79:08:72:67:76:5d:90:2f:ae:29:fc:
fb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AE:E4:93:30:C2:BA:EE:FD:29:9B:48:9D:7D:DD:C6:5B:8A:EA:7B
X509v3 Authority Key Identifier:
keyid:0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:f3:2c:42:d4:2d:d2:c7:59:0b:b2:40:71:2f:67:ed:7e:34:
c6:f5:ff:8e:4d:86:7a:aa:f3:af:00:3b:ca:0a:20:9b:aa:be:
7e:c8:f8:50:66:f1:61:c8:11:79:85:64:fa:f6:a4:c7:ea:d3:
34:fd:be:30:ae:8f:3a:77:2e:55:b5:55:2f:a2:d4:27:53:b7:
99:5f:65:b5:08:67:55:8b:23:e0:e8:10:f0:8c:82:c1:60:2f:
94:fa:cc:4d:1a:1c:37:57:45:c0:37:e9:a7:ac:19:d7:fe:df:
ac:b7:7a:dc:92:33:d7:97:2f:7a:eb:b8:44:49:28:50:1d:74:
4f:38:63:5e:fe:f4:8c:ac:a6:1e:56:1d:d0:43:57:33:93:d6:
91:d3:99:2b:07:fc:80:24:23:63:10:9a:96:85:90:38:c2:71:
f4:97:38:ba:2e:26:bd:93:3b:1f:38:f8:08:68:a7:46:e3:e6:
2b:b4:7f:34:6e:7f:8c:1d:fa:05:37:f3:76:0a:ca:89:10:59:
eb:a8:7c:b7:c4:14:26:6d:7b:10:9f:ff:ae:64:ea:85:42:b3:
85:69:3a:4d:83:31:bd:54:b6:c2:b9:b3:82:19:2e:c9:90:39:
4e:be:93:65:24:3b:44:c5:e5:58:7d:71:f5:94:de:13:c6:fc:
2c:e9:31:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpWrhxBwxx4cnrBdmI4UmPxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlOTVjM2FjZTM2NmRiNDFiY2RjMjU2YzVkNWIzYmU0OTBh
NGY3NjEwHhcNMjUxMTA2MDEwMDQyWhcNMjUxMTA3MDEwMDQyWjAzMTEwLwYDVQQD
EygwN2FlZTQ5MzMwYzJiYWVlZmQyOTliNDg5ZDdkZGRjNjViOGFlYTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0lXDb9MZ2GFtOSFwSyYg86kSRmB4
/v+yEoLSs9nFyvkj8BfHZaFo4pMjZQYQTV0TEnPYeysIj0OQ42OAQCXS4xKeNSMK
O/UizgIa2KR1qJEl/j49hD2uNrlxb1sncseMjiL7WdkIjYsElP2xwacNDLiv7dIB
oE3JN2F99xTcUtyQW8Wkf8X/zxpzre8Z3Apg9LWSRg8RFK/HZLa5X/jwyMfUr1qy
7WaCEjqtQWYudfP99QfG7gQYXC59hX8U0mIHCsmhnnPf1vfZh1DDAlpgIR9fuV56
DZmdV4RuRBVmwuwVUIM1GZ4qt4k90C6S0cENu9MreQhyZ3ZdkC+uKfz7AwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAeu5JMwwrru/SmbSJ193cZbiup7MB8GA1UdIwQY
MBaAFA6Vw6zjZttBvNwlbF1bO+SQpPdhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHBYRHJPTm0yMEc4M0NWc1hWczc1SkNrOTJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8xY2Q5MDctNDRkMi00NmIxLThiZWMt
ZjUzZTUxYzA5NzRmLzEvRHBYRHJPTm0yMEc4M0NWc1hWczc1SkNrOTJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8xY2Q5MDctNDRkMi00NmIxLThiZWMtZjUzZTUxYzA5NzRm
LzEvRHBYRHJPTm0yMEc4M0NWc1hWczc1SkNrOTJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk/MsQtQt
0sdZC7JAcS9n7X40xvX/jk2GeqrzrwA7ygogm6q+fsj4UGbxYcgReYVk+vakx+rT
NP2+MK6POncuVbVVL6LUJ1O3mV9ltQhnVYsj4OgQ8IyCwWAvlPrMTRocN1dFwDfp
p6wZ1/7frLd63JIz15cveuu4REkoUB10TzhjXv70jKymHlYd0ENXM5PWkdOZKwf8
gCQjYxCaloWQOMJx9Jc4ui4mvZM7Hzj4CGinRuPmK7R/NG5/jB36BTfzdgrKiRBZ
66h8t8QUJm17EJ//rmTqhUKzhWk6TYMxvVS2wrmzghkuyZA5Tr6TZSQ7RMXlWH1x
9ZTeE8b8LOkxjg==
-----END CERTIFICATE-----
Generated at Thu Nov 6 06:07:40 2025 by rpki-client