Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
File: DpXDrONm20G83CVsXVs75JCk92E.mft (raw, json)
Hash identifier: hsuXKY3ADqmoull4Ed5n8rS/jeyTHniGBqFSwD7rTHs=
Subject key identifier: 8C:89:AE:16:33:EF:5E:61:70:02:61:C6:90:DB:11:B5:C3:D2:01:0B
Authority key identifier: 0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
Certificate issuer: /CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Certificate serial: 019A52D1747650BFBB14E8F8C9B969E4B9E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
Manifest number: 0B67
Signing time: Wed 05 Nov 2025 07:00:49 +0000
Manifest this update: Wed 05 Nov 2025 07:00:49 +0000
Manifest next update: Thu 06 Nov 2025 07:00:49 +0000
Files and hashes: 1: 1ILl-_jBl8vTjilNwWyLb_6kN84.roa (hash: ecF4kJW8L9z29VWA5l2Xp4iuCOJ3lYvBbDFUMxXyKfo=)
2: DpXDrONm20G83CVsXVs75JCk92E.crl (hash: Ccx/5xPEyxG0nJzXStMOgWT8uEB11DWlVYgErNgl7x4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:74:76:50:bf:bb:14:e8:f8:c9:b9:69:e4:b9:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Validity
Not Before: Nov 5 07:00:49 2025 GMT
Not After : Nov 6 07:00:49 2025 GMT
Subject: CN=8c89ae1633ef5e61700261c690db11b5c3d2010b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a9:cf:d2:2c:f4:3e:13:19:93:74:f9:29:85:
5b:f1:f5:f7:fe:6d:f5:a8:c4:a5:d5:60:6b:35:d2:
04:2f:bc:9e:31:25:7c:fa:02:48:bf:50:5c:15:e2:
86:e4:b0:f4:e8:b0:6a:dd:58:b0:67:fc:b4:ab:a6:
99:34:0d:2b:5a:2a:34:b3:4b:aa:10:2e:ba:43:0b:
da:d8:18:a1:99:ff:8d:31:8f:7c:f7:05:38:b9:b3:
57:53:78:4b:82:8b:93:fd:44:d9:7b:0b:0a:b5:20:
74:ee:c4:26:52:4d:9e:10:7d:ae:a0:79:ca:b6:20:
69:77:64:4a:64:db:2e:57:d3:40:4e:65:f6:76:10:
bb:69:d8:8b:a0:9f:c6:26:ba:82:29:97:96:e3:a5:
25:55:cb:4f:88:35:1c:34:c0:5d:ae:9e:10:3e:c3:
4b:2e:22:5f:6a:66:df:4d:97:3d:53:76:b7:60:fa:
75:b6:ac:a3:59:f1:ca:32:a3:93:f3:fd:78:0a:5a:
89:53:6b:a9:43:93:fc:61:ea:b9:4b:ee:42:4b:35:
1c:e6:9e:64:fc:af:a2:a6:8a:6f:d7:0b:a2:6e:18:
f0:7a:97:7d:61:42:db:4a:c4:78:a1:50:e7:b9:a2:
91:9d:93:e6:cf:4d:38:c4:40:a0:18:62:84:6a:fa:
94:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:89:AE:16:33:EF:5E:61:70:02:61:C6:90:DB:11:B5:C3:D2:01:0B
X509v3 Authority Key Identifier:
keyid:0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:4f:df:71:1c:00:b9:3d:8f:b6:cd:7d:9b:7b:71:96:11:19:
f4:ed:c3:6f:b2:b1:8a:dd:73:c3:27:62:4f:77:64:5e:49:66:
a7:9d:01:4e:ed:9d:57:35:ef:2b:d5:cb:f5:ca:be:95:ab:38:
63:88:6f:62:3d:d6:65:91:49:52:a8:70:0f:54:67:5c:0f:41:
f7:b9:13:da:8b:d6:19:ac:cf:17:de:5c:05:46:73:f5:33:f0:
ac:03:50:e5:5f:f3:f3:c5:46:e5:e3:ed:24:52:93:7d:95:83:
ec:ed:16:4c:03:7e:d5:51:79:c1:54:cc:85:ba:20:59:1b:d3:
31:1e:78:04:ce:3c:1b:af:a6:1c:65:f0:ef:13:17:75:d0:21:
1c:8d:5f:d4:c4:e0:de:8c:4f:a4:a8:5c:c0:0b:31:e3:6c:37:
d0:8f:33:84:53:fd:02:7a:4e:e8:51:48:6d:2a:cc:40:1f:49:
4e:5a:c6:97:d3:e2:5f:71:72:a5:0f:65:34:0e:bc:f3:c8:c8:
80:7a:63:df:cd:58:3b:9d:40:c9:b3:47:8b:da:a8:21:bf:7a:
1f:36:24:66:08:91:8b:36:b3:95:70:de:19:44:18:6c:d5:01:
91:d1:9c:a6:6f:e1:be:d6:ce:bc:4d:2a:5e:e7:69:28:d9:68:
20:6b:9c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:39:10 2025 by rpki-client