Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
File: dUI-b2St_Fh6CPgawqySYOsu1hU.mft (raw, json)
Hash identifier: aSyJ4tc7waj8HIozq6+Pzn/BVsss8KthiMH5qbC+Sm0=
Subject key identifier: F6:DD:F2:3E:C8:8D:0C:63:D5:C4:B5:06:70:15:D6:B8:BA:81:06:08
Authority key identifier: 75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15
Certificate issuer: /CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615
Certificate serial: 019A52D1D5B69976A5A5EAF37FC90962B6EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
Manifest number: 0D80
Signing time: Wed 05 Nov 2025 07:01:14 +0000
Manifest this update: Wed 05 Nov 2025 07:01:14 +0000
Manifest next update: Thu 06 Nov 2025 07:01:14 +0000
Files and hashes: 1: dUI-b2St_Fh6CPgawqySYOsu1hU.crl (hash: nbD1XFZYonKaSH4mNVRfW5Y+jmYPpmNEClhvRtqLDHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:d5:b6:99:76:a5:a5:ea:f3:7f:c9:09:62:b6:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615
Validity
Not Before: Nov 5 07:01:14 2025 GMT
Not After : Nov 6 07:01:14 2025 GMT
Subject: CN=f6ddf23ec88d0c63d5c4b5067015d6b8ba810608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:f0:8b:41:38:48:29:cb:54:98:6e:9f:76:
61:4d:c3:71:f8:d4:6d:82:74:13:63:7e:89:ba:60:
73:a8:36:52:f5:7a:a6:02:af:fc:62:61:7e:68:73:
99:36:07:13:a4:7e:3f:85:13:b1:9b:24:bf:d7:b8:
92:38:0d:8a:98:33:bc:6c:be:0f:8a:3f:97:09:f3:
80:43:e4:bc:61:b8:67:15:1c:73:4d:07:e8:5c:51:
cf:7b:bc:34:c7:99:78:33:dd:fd:99:1b:94:da:1b:
3a:9e:82:cd:f0:54:1c:30:92:07:53:7a:e6:f0:a1:
52:ea:25:c3:f3:47:b6:2f:94:8c:86:fa:64:a5:dc:
fd:35:37:65:ef:9a:f2:dc:90:7f:4f:ef:62:58:90:
5b:26:c6:44:ce:c5:af:39:b7:49:0a:66:3f:5b:2c:
5a:9e:bd:b1:8e:68:e7:57:70:35:2d:ee:c9:21:ee:
48:26:a6:23:cf:1e:db:bc:45:04:e5:94:0b:aa:6f:
6f:e8:39:af:c2:17:d6:64:07:e8:e4:fc:c4:be:57:
3d:df:29:4d:01:66:95:9c:ef:51:8b:a4:5a:de:51:
ad:93:c9:61:a2:f9:ee:0a:a4:96:4d:3a:1f:ca:e0:
b0:0c:30:99:c2:52:43:48:26:84:15:db:a7:c3:d5:
0c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:DD:F2:3E:C8:8D:0C:63:D5:C4:B5:06:70:15:D6:B8:BA:81:06:08
X509v3 Authority Key Identifier:
keyid:75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:e6:84:be:b7:7e:fa:48:22:58:0b:1f:14:14:29:67:c7:4f:
fc:c2:d8:69:ec:75:90:44:57:db:58:b0:58:4e:22:ef:94:f2:
3a:5c:05:85:c1:26:29:79:e6:a9:fd:7d:6e:70:4c:8c:86:80:
f8:8d:e2:d2:97:01:f0:62:18:a4:b5:be:46:b6:09:c5:b8:7c:
0e:3e:75:b6:f9:40:01:7c:a0:94:81:b7:da:51:cd:3c:45:a4:
92:79:06:98:b6:5c:5a:50:6b:a5:98:f0:13:8d:74:ed:44:0c:
e1:49:07:1c:4b:d7:48:03:f7:c9:69:56:ab:2e:30:82:85:44:
af:e4:28:e1:2f:a7:c1:f6:c4:a6:67:5e:c8:64:fc:0f:82:13:
b2:b9:a2:cf:eb:fa:f5:d0:1c:da:1b:21:36:4a:9e:66:b9:fd:
cc:49:2a:dc:f2:6b:c7:6a:62:f2:53:2b:95:be:d7:23:c7:9f:
25:29:8b:48:26:1f:52:ae:d1:88:6b:8c:31:b8:39:53:e2:4c:
20:53:3c:5c:4d:26:05:f7:b3:49:fb:cf:20:79:ed:f0:b1:f4:
d5:40:83:c6:34:0e:af:61:e1:f3:c0:15:63:d1:cd:2a:e0:a8:
47:29:64:ed:64:4b:55:70:14:e3:4c:77:ab:32:2c:ef:30:02:
71:5f:05:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:57:51 2025 by rpki-client