Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
File: DXtk3YGIxSbrXrReqB6mqK-cWek.mft (raw, json)
Hash identifier: 5d1DAKAwARw5jEAUqWEBn7Wb1Q2FDjhQZJZ0Lr9IKDg=
Subject key identifier: 8A:24:E1:98:0F:57:4C:B0:E4:EF:6A:E9:28:D4:38:31:D7:A0:CE:D4
Authority key identifier: 0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
Certificate issuer: /CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Certificate serial: 019A4F62285FFCC60140DDEB0F7DBFCC82D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
Manifest number: 0393
Signing time: Tue 04 Nov 2025 15:00:24 +0000
Manifest this update: Tue 04 Nov 2025 15:00:24 +0000
Manifest next update: Wed 05 Nov 2025 15:00:24 +0000
Files and hashes: 1: DXtk3YGIxSbrXrReqB6mqK-cWek.crl (hash: XVY72r/bZAimYdTzNVxSZmFzLtE+Y23aRv9yPNBURqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:28:5f:fc:c6:01:40:dd:eb:0f:7d:bf:cc:82:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Validity
Not Before: Nov 4 15:00:24 2025 GMT
Not After : Nov 5 15:00:24 2025 GMT
Subject: CN=8a24e1980f574cb0e4ef6ae928d43831d7a0ced4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:65:08:ff:22:07:4f:2c:82:4f:4e:fb:a3:34:
63:c6:52:bc:4a:e0:65:4a:8b:80:9c:a2:05:4d:54:
63:f1:bb:50:9e:ce:b1:af:6a:f3:9d:33:42:61:dc:
f9:19:d3:64:5b:71:13:64:e6:4e:17:ea:d2:43:17:
76:8f:b9:05:9a:a3:21:e4:04:fa:df:9c:24:ba:73:
32:72:e3:08:fd:d7:a1:87:1e:fd:c4:23:8d:1f:c1:
e5:56:7a:84:c8:a5:e4:be:6d:d6:44:6a:71:81:58:
0c:73:c9:44:ba:ec:e7:8a:0d:50:90:c3:1c:d0:5d:
1c:44:c4:2e:29:31:4d:88:b0:34:33:e7:1c:e0:94:
61:61:7a:83:ab:58:44:cd:9c:87:a6:9c:1d:6c:7c:
51:12:69:65:11:07:dc:51:d4:1b:d4:c0:f7:a7:89:
dd:5d:b8:47:47:c0:3d:f7:f8:d2:38:ee:8d:56:f4:
0e:04:ae:c2:84:27:49:63:b5:b1:ac:e8:fb:45:f4:
a9:07:bc:a0:b8:9c:e4:4b:7e:ed:93:1c:be:9c:0f:
ff:5a:cc:0b:5f:a2:aa:b0:33:a8:c3:d3:d0:ff:8a:
4d:6e:1e:c0:14:b9:24:7b:9c:3c:64:7e:29:6d:ea:
79:07:25:28:47:4f:8e:43:da:b8:56:8a:af:20:f1:
1f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:24:E1:98:0F:57:4C:B0:E4:EF:6A:E9:28:D4:38:31:D7:A0:CE:D4
X509v3 Authority Key Identifier:
keyid:0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:bd:e5:9e:60:10:af:37:f4:60:fa:9c:60:0a:ca:55:5b:7f:
34:7c:e3:b9:30:bd:5e:f9:44:14:4a:47:6b:d7:ff:0a:a3:2d:
31:91:31:ca:0f:97:0f:51:6e:03:38:60:6d:17:d7:05:e7:62:
06:23:62:b2:41:89:f6:41:b3:43:ae:39:24:b9:26:63:c9:b8:
78:fb:3f:f1:75:c5:ef:a6:b5:fa:c3:68:61:bb:a9:63:80:2a:
0c:71:83:e5:0b:f7:4f:d1:c0:e9:ea:8c:6a:60:f5:29:a2:5c:
b8:14:66:03:d8:65:5f:a8:ce:c2:c4:6a:28:0f:b5:02:7f:25:
28:d3:2f:e5:6b:0e:2d:00:d1:fc:f1:06:22:a4:95:e0:03:d9:
a2:8c:cf:88:25:54:22:87:0b:8a:71:3b:99:e5:ac:6e:62:da:
04:64:42:25:28:11:56:2a:0d:eb:10:ee:4d:a5:c2:6f:23:b4:
ab:9c:a4:af:c3:ea:40:7f:48:c1:21:aa:19:69:7c:30:de:d7:
4f:7c:cd:a4:3a:bc:d3:1d:e1:5d:4f:eb:32:4d:5c:92:31:65:
ad:9c:eb:2c:7b:e8:31:b1:32:fa:a1:96:7a:fb:5a:ca:ef:c7:
41:fd:69:2c:bd:07:ae:d0:d4:b8:7b:3f:5e:43:43:d7:b8:3f:
02:db:83:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYihf/MYBQN3rD32/zILSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkN2I2NGRkODE4OGM1MjZlYjVlYjQ1ZWE4MWVhNmE4YWY5
YzU5ZTkwHhcNMjUxMTA0MTUwMDI0WhcNMjUxMTA1MTUwMDI0WjAzMTEwLwYDVQQD
Eyg4YTI0ZTE5ODBmNTc0Y2IwZTRlZjZhZTkyOGQ0MzgzMWQ3YTBjZWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA42UI/yIHTyyCT077ozRjxlK8SuBl
SouAnKIFTVRj8btQns6xr2rznTNCYdz5GdNkW3ETZOZOF+rSQxd2j7kFmqMh5AT6
35wkunMycuMI/dehhx79xCONH8HlVnqEyKXkvm3WRGpxgVgMc8lEuuznig1QkMMc
0F0cRMQuKTFNiLA0M+cc4JRhYXqDq1hEzZyHppwdbHxREmllEQfcUdQb1MD3p4nd
XbhHR8A99/jSOO6NVvQOBK7ChCdJY7WxrOj7RfSpB7yguJzkS37tkxy+nA//WswL
X6KqsDOow9PQ/4pNbh7AFLkke5w8ZH4pbep5ByUoR0+OQ9q4VoqvIPEfMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIok4ZgPV0yw5O9q6SjUODHXoM7UMB8GA1UdIwQY
MBaAFA17ZN2BiMUm6160XqgepqivnFnpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFh0azNZR0l4U2JyWHJSZXFCNm1xSy1jV2VrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9iYzkxZDItZTIwOS00YTFkLTlmNzgt
MzNkMzEyOTNmMGUxLzEvRFh0azNZR0l4U2JyWHJSZXFCNm1xSy1jV2VrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9iYzkxZDItZTIwOS00YTFkLTlmNzgtMzNkMzEyOTNmMGUx
LzEvRFh0azNZR0l4U2JyWHJSZXFCNm1xSy1jV2VrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhr3lnmAQ
rzf0YPqcYArKVVt/NHzjuTC9XvlEFEpHa9f/CqMtMZExyg+XD1FuAzhgbRfXBedi
BiNiskGJ9kGzQ645JLkmY8m4ePs/8XXF76a1+sNoYbupY4AqDHGD5Qv3T9HA6eqM
amD1KaJcuBRmA9hlX6jOwsRqKA+1An8lKNMv5WsOLQDR/PEGIqSV4APZoozPiCVU
IocLinE7meWsbmLaBGRCJSgRVioN6xDuTaXCbyO0q5ykr8PqQH9IwSGqGWl8MN7X
T3zNpDq80x3hXU/rMk1ckjFlrZzrLHvoMbEy+qGWevtayu/HQf1pLL0HrtDUuHs/
XkND17g/AtuDuQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:45:03 2025 by rpki-client