Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
File: DIZmK3UsijvnLoVEOU_5JvaPv34.mft (raw, json)
Hash identifier: fW5xjNGVh8HaC+qhuzHuah/h6MTgz9Xc/hOVW39INk8=
Subject key identifier: B4:38:ED:BB:CB:5E:4C:57:38:3F:27:60:9B:ED:0D:C6:C8:FE:A9:C3
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 019A4F98EBD6708F8C4BEF458C575D58FC41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
Manifest number: 16A1
Signing time: Tue 04 Nov 2025 16:00:13 +0000
Manifest this update: Tue 04 Nov 2025 16:00:13 +0000
Manifest next update: Wed 05 Nov 2025 16:00:13 +0000
Files and hashes: 1: DIZmK3UsijvnLoVEOU_5JvaPv34.crl (hash: sGI+R6jVdrzgF3exVofAKsDnmWOl3mNDZYgRM4c6RqI=)
2: OKYG51ny4JzR_NLTt0NMC5jjs5w.roa (hash: q7wWYvvmDZVEwvT4mSRrL9j7EyJqRlFav3ZfehvFtAs=)
3: ZQQ0gAGZL_jGDDuR_dzAPHQgjqs.roa (hash: 1IkjnF/CrXtM+w2XOvbsVxbee7zsKOEnEqn8FcXAMF8=)
4: qLpskkGdWMp75uesslOqcJ0MWnE.roa (hash: X4MuNwdwba0DvT/WVM9tY1i1XGTLnQOuEconDao1Nw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:98:eb:d6:70:8f:8c:4b:ef:45:8c:57:5d:58:fc:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Nov 4 16:00:13 2025 GMT
Not After : Nov 5 16:00:13 2025 GMT
Subject: CN=b438edbbcb5e4c57383f27609bed0dc6c8fea9c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ce:b6:c6:30:6a:06:e7:61:d4:5a:d2:ff:c9:
55:5f:7f:e9:31:7e:1c:a8:94:2e:53:ba:63:ec:77:
71:2d:f0:d3:dc:13:28:a4:b8:53:02:30:e3:8b:e4:
89:4e:2c:02:91:70:e4:8e:3e:65:4f:5d:f0:eb:c6:
96:e7:b6:f6:24:46:fb:a9:ca:f0:94:6b:20:2f:42:
cf:18:46:ec:b2:0f:f8:df:ba:5c:ef:ec:77:71:50:
76:65:ac:f6:fd:16:ab:33:58:1b:35:e0:36:fc:02:
d9:0a:99:1e:83:86:85:e9:6c:88:1e:69:04:85:df:
30:2b:19:f2:95:84:40:1a:e0:1e:1b:7a:43:b8:96:
93:9a:c0:20:98:29:33:46:1c:1e:53:9d:37:3d:27:
7d:2d:0e:58:31:63:fa:11:df:0b:b0:03:c0:c9:21:
10:34:44:9c:8b:67:fb:60:d8:ea:7d:26:0b:f4:2c:
9d:27:7f:06:91:ee:b5:b5:1c:5c:b5:10:c9:52:04:
ec:5a:6e:aa:c6:8c:cd:69:14:57:7b:a2:b1:31:7b:
83:93:44:c4:61:d1:72:f1:7b:4b:d0:62:b0:c6:21:
54:42:b8:43:74:bf:61:a9:ba:08:88:88:ad:c7:d0:
52:91:7d:7c:ca:f7:f0:11:bd:7f:d0:45:47:43:da:
24:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:38:ED:BB:CB:5E:4C:57:38:3F:27:60:9B:ED:0D:C6:C8:FE:A9:C3
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:c5:bf:19:48:bd:ba:87:59:c1:34:7c:bb:62:4a:8d:86:88:
8f:8e:dd:46:5e:c4:b4:0f:d1:2f:ef:81:b7:3a:ab:c5:9b:50:
0c:6e:73:45:7e:11:31:c3:bb:43:1a:89:80:f8:e5:ba:81:63:
8f:2a:f5:6a:84:52:28:68:3f:11:0f:41:80:bb:61:c9:f7:2b:
b6:f2:07:d3:11:eb:cc:ea:16:c3:29:56:8d:a5:86:38:c5:76:
f8:de:3d:a0:a8:81:2c:ad:08:c0:01:52:d6:0b:d8:61:c1:f8:
24:16:3b:dc:66:92:d1:89:c1:58:56:ed:4f:2f:38:1f:b7:da:
3e:78:33:0d:32:50:62:2b:6b:28:a9:aa:e2:3a:b2:45:9c:cf:
66:f7:44:ab:26:48:69:28:d8:4d:b0:a1:41:c6:4f:b7:89:2c:
aa:04:ce:b4:10:29:6b:45:98:4c:42:93:80:3e:02:52:bf:cd:
f8:5f:93:e8:c1:33:83:8d:54:8a:15:5f:9e:1d:0a:74:a8:db:
7d:dd:cf:9a:02:3a:5a:6e:c6:1c:f1:2e:a0:1c:da:a1:4c:80:
17:29:0c:ff:86:7e:a6:14:11:62:25:00:90:e8:f5:a0:79:8f:
cd:1b:20:97:11:bc:4c:37:c6:e2:e8:58:bc:b6:ae:aa:2e:99:
5a:e4:f7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:46:06 2025 by rpki-client