Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
File: dQRxYHUyqMev1g1PMXqtxJDrogY.mft (raw, json)
Hash identifier: yabkGBqL4hMIiVN331npunkyqgwtid7J5+ioWqvbhKQ=
Subject key identifier: 5C:F9:89:95:7D:10:2D:AB:89:7B:A6:32:F2:A5:EA:25:F2:20:C2:AC
Authority key identifier: 75:04:71:60:75:32:A8:C7:AF:D6:0D:4F:31:7A:AD:C4:90:EB:A2:06
Certificate issuer: /CN=750471607532a8c7afd60d4f317aadc490eba206
Certificate serial: 019A4EF44BB68A71F0D680F455ACE374842B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
Manifest number: 1709
Signing time: Tue 04 Nov 2025 13:00:24 +0000
Manifest this update: Tue 04 Nov 2025 13:00:24 +0000
Manifest next update: Wed 05 Nov 2025 13:00:24 +0000
Files and hashes: 1: dQRxYHUyqMev1g1PMXqtxJDrogY.crl (hash: BT5KoYsdgQFjuuw1YSG82Vp3hkh4bURnZVSK7L0nbKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:4b:b6:8a:71:f0:d6:80:f4:55:ac:e3:74:84:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=750471607532a8c7afd60d4f317aadc490eba206
Validity
Not Before: Nov 4 13:00:24 2025 GMT
Not After : Nov 5 13:00:24 2025 GMT
Subject: CN=5cf989957d102dab897ba632f2a5ea25f220c2ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e0:f5:15:6d:d3:95:77:86:9a:41:67:08:43:
f0:b8:85:32:24:d9:40:e0:cd:88:e1:90:a9:7d:18:
4d:10:fb:2e:d0:9d:16:bd:e4:69:56:4d:b4:84:0a:
ee:4a:c5:b8:1c:56:a5:f1:ec:b4:62:74:72:81:fc:
de:81:e7:0d:c7:5d:7f:6f:43:59:d5:8a:a4:a9:50:
57:06:b0:fb:fc:ca:17:74:89:9b:d4:36:a3:be:c7:
28:1f:50:af:05:57:44:4a:6c:85:d4:a1:d0:37:03:
91:61:90:ca:97:09:6a:72:14:33:5a:73:fe:69:e5:
c9:07:a7:47:b1:ce:17:96:f6:a0:81:bf:87:39:17:
ec:e3:82:f7:21:01:b9:dc:d7:ee:8a:b8:27:ff:19:
e8:c5:c3:66:1e:34:94:43:0d:4a:48:57:a7:c8:41:
6f:46:0b:64:97:be:e7:f0:a7:34:2e:0b:7b:ff:7b:
35:6e:18:a0:e1:5f:20:1a:8f:0e:c0:fa:7a:d3:42:
09:f6:d4:e9:2f:de:dd:21:4f:df:ef:91:f8:21:8d:
f6:0d:08:f7:93:65:8a:00:1a:0c:c9:f5:c1:74:f3:
a7:16:8a:ad:da:ad:3b:78:ce:a3:71:86:f6:d9:86:
22:25:bb:70:a6:ea:5d:0e:19:ae:53:30:70:76:d1:
7c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F9:89:95:7D:10:2D:AB:89:7B:A6:32:F2:A5:EA:25:F2:20:C2:AC
X509v3 Authority Key Identifier:
keyid:75:04:71:60:75:32:A8:C7:AF:D6:0D:4F:31:7A:AD:C4:90:EB:A2:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:f7:96:b1:b1:20:7c:e1:76:09:95:14:34:81:58:93:2c:53:
f6:e9:3f:23:78:28:c3:47:00:78:cd:7c:43:de:3a:55:60:76:
cd:24:91:20:11:cf:93:af:52:64:f7:f1:29:19:5b:5f:fd:9b:
9b:d7:5f:81:e8:a1:cb:66:69:00:f4:f3:52:a6:81:9a:b1:16:
a1:24:df:e8:c5:fe:23:4e:27:cc:7b:42:52:8c:ef:c1:ae:53:
b6:62:cc:03:f8:23:93:14:af:7d:47:d6:28:d7:c2:4b:f8:db:
3d:c9:89:2c:fd:ec:04:ab:93:12:f6:b2:e1:5f:f1:e3:80:d8:
be:51:b3:f7:06:69:a6:cc:4a:a5:a0:45:50:aa:e0:2d:cb:e6:
1a:17:94:5f:56:d3:b5:61:01:7f:15:89:8f:09:da:72:80:bc:
55:4f:bb:c9:3d:a6:6a:16:b9:7f:a0:4b:eb:a7:3f:ce:da:c2:
8d:53:12:49:31:ca:e1:fa:02:85:9c:74:f2:97:55:f0:1d:ea:
85:c0:ca:03:b3:21:bf:68:ce:03:72:1d:0f:15:93:37:b2:07:
27:ad:b3:d8:c4:1e:e4:8b:a3:36:cc:b2:84:45:97:82:ff:2b:
98:0c:8b:5d:35:af:10:90:62:3b:8b:14:72:7f:98:a5:2d:4d:
36:55:fa:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:51 2025 by rpki-client