Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.mft
File: dPYRYnGtLREZYKLZYaqcFi-VgKY.mft (raw, json)
Hash identifier: anUGdGIyoJwtLeNwtMwNZoHHeRZ+b7gcRPcMqIavfXY=
Subject key identifier: 9F:2B:C3:19:C3:28:E3:70:2C:5B:A6:8D:A7:21:62:72:D4:AD:88:72
Authority key identifier: 74:F6:11:62:71:AD:2D:11:19:60:A2:D9:61:AA:9C:16:2F:95:80:A6
Certificate issuer: /CN=74f6116271ad2d111960a2d961aa9c162f9580a6
Certificate serial: 019A52D1FD220A042178CB09C91D398BDE88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dPYRYnGtLREZYKLZYaqcFi-VgKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.mft
Manifest number: 1107
Signing time: Wed 05 Nov 2025 07:01:24 +0000
Manifest this update: Wed 05 Nov 2025 07:01:24 +0000
Manifest next update: Thu 06 Nov 2025 07:01:24 +0000
Files and hashes: 1: dPYRYnGtLREZYKLZYaqcFi-VgKY.crl (hash: Hw39wpEHw7OVMX/ZSMlmb6Eb595IGpQDm90jOj1vMJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dPYRYnGtLREZYKLZYaqcFi-VgKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:fd:22:0a:04:21:78:cb:09:c9:1d:39:8b:de:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74f6116271ad2d111960a2d961aa9c162f9580a6
Validity
Not Before: Nov 5 07:01:24 2025 GMT
Not After : Nov 6 07:01:24 2025 GMT
Subject: CN=9f2bc319c328e3702c5ba68da7216272d4ad8872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6b:a8:76:cd:fa:ad:b6:6b:7e:ff:f1:39:af:
fa:25:bd:17:50:81:bc:71:ee:f3:e4:5d:6c:79:9c:
73:c9:fd:94:3e:04:d7:e8:91:f2:27:c1:66:0d:d9:
df:0b:cd:7f:cb:69:0f:14:d5:14:1e:cf:55:85:6f:
0d:9f:e3:67:05:8a:54:e3:00:1d:8a:7c:0d:e3:da:
4c:df:66:7c:39:f0:47:6f:77:69:96:19:eb:58:32:
5e:45:2c:53:39:62:63:e5:cb:dd:60:26:65:8e:11:
17:b3:78:3a:56:1c:98:47:75:a9:b7:96:2f:77:a1:
07:74:17:7f:54:21:e6:af:7f:f6:40:08:d9:e7:a2:
6f:65:23:7c:de:67:f1:6c:89:5b:95:fe:61:2c:35:
68:65:2f:96:fc:d6:6c:48:2d:b6:de:97:51:67:a4:
ab:0d:54:80:87:df:2e:f5:92:a1:b3:ab:2b:23:94:
29:7c:ba:0c:b8:57:f4:58:b6:57:a0:03:af:f8:92:
29:7d:5b:de:6f:0b:6f:c2:c8:6c:c3:c5:88:22:7b:
54:de:99:e8:dc:77:fb:c1:d8:4e:22:9f:c2:32:40:
e3:9a:e2:8d:81:ef:2d:30:b7:23:9a:9e:f1:08:0a:
25:63:01:3a:e2:54:af:68:44:eb:a0:0f:af:9a:15:
99:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:2B:C3:19:C3:28:E3:70:2C:5B:A6:8D:A7:21:62:72:D4:AD:88:72
X509v3 Authority Key Identifier:
keyid:74:F6:11:62:71:AD:2D:11:19:60:A2:D9:61:AA:9C:16:2F:95:80:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dPYRYnGtLREZYKLZYaqcFi-VgKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ca:d1:e3:d2:8f:04:88:83:74:1c:a4:fa:0a:c2:0c:b8:7b:
9e:b3:0a:a5:66:fe:fe:3b:7b:ac:d8:52:1d:ea:22:cc:82:12:
aa:2b:c1:b4:01:80:0b:46:19:51:ae:4c:13:f1:67:e6:6d:24:
81:f9:e2:d1:4b:cd:b1:f7:ce:8c:cd:60:98:e8:a7:35:4f:89:
c4:e5:98:a3:79:ef:57:f2:4e:11:bd:11:c3:1e:5c:32:f0:b8:
9b:39:ae:69:04:d6:ca:59:eb:88:b1:c1:ef:c1:77:c8:1e:35:
51:e9:74:5e:cf:15:f3:b2:98:4b:3c:63:da:16:4f:9d:c8:22:
70:3a:e7:c5:e6:71:5d:35:5f:4c:22:37:04:2b:5c:62:30:88:
d0:9c:fd:de:a8:c0:a5:42:81:15:4c:02:97:90:4c:e1:79:5b:
8d:08:ee:c9:7a:db:d4:6b:14:3d:c3:3d:b7:c3:84:1f:66:1f:
e1:a2:cc:60:2a:ae:ba:9f:41:e4:51:0e:08:e4:f9:3b:84:13:
33:2f:46:b2:75:75:8f:a8:34:e9:fc:f0:07:2a:dc:d5:6c:3e:
65:db:f7:16:6d:f2:11:16:1e:ae:3d:71:19:a7:ac:b2:d1:3a:
be:9d:b5:60:94:c3:14:86:14:b9:ca:f5:a3:ae:89:84:de:8c:
d5:05:f0:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:09:07 2025 by rpki-client