Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: xb6LDyOzXmZP0B61ndSgS8Iwxwx0n8Ix+e4kJQj2SqQ=
Subject key identifier: 32:2E:5C:BB:8A:C7:A7:3B:3A:10:0E:70:FB:E9:E6:AC:45:8D:18:5E
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 019A4E862B359A45F828CFA698CABB621693
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 0E70
Signing time: Tue 04 Nov 2025 11:00:06 +0000
Manifest this update: Tue 04 Nov 2025 11:00:06 +0000
Manifest next update: Wed 05 Nov 2025 11:00:06 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: 0Q2/3AVB6amKWdDB7AXxD+dvDBjkImheva2AqiCwYOg=)
2: zo9Y2aPXtg0v5rw18Mi_WOQc36Y.roa (hash: v9STSvD6P0pmUA0gxCp1HPZofea00hykboqUh1BCCCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 11:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:2b:35:9a:45:f8:28:cf:a6:98:ca:bb:62:16:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Nov 4 11:00:06 2025 GMT
Not After : Nov 5 11:00:06 2025 GMT
Subject: CN=322e5cbb8ac7a73b3a100e70fbe9e6ac458d185e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:eb:c9:76:01:39:b9:0d:0b:26:23:20:31:98:
72:34:ec:e2:c1:df:b5:75:b8:a5:1f:f5:bf:11:2f:
f0:34:d1:c3:ae:60:62:1d:fe:41:07:a7:77:f3:0b:
cf:ad:61:3e:1b:55:14:7a:83:ad:34:0b:5f:69:a9:
37:3d:2f:86:d5:42:bc:7e:64:ff:d8:0d:4a:a5:27:
27:49:41:6b:70:9d:56:67:4e:12:4e:a0:0d:68:7e:
92:bc:81:29:20:6b:0f:2d:db:94:05:9e:c1:e7:b6:
34:7c:62:74:eb:f5:21:d0:2d:26:98:e5:65:a3:22:
ec:35:8e:07:24:5e:1c:55:a9:f0:6f:ae:8d:01:00:
a6:1f:55:de:67:96:72:5a:09:4a:40:f4:73:0c:ee:
fb:30:8e:f6:d0:73:ef:d6:d4:1f:0b:ea:bc:10:70:
8c:b5:3c:06:e0:f0:58:20:a6:75:0b:71:11:2b:2a:
c0:0d:02:d3:a6:5d:8e:8e:5d:84:22:2c:b0:49:bf:
ae:cc:ce:eb:b7:4c:fa:39:3d:46:74:b2:44:03:69:
df:4a:11:04:18:34:fe:5a:cf:16:69:97:5e:3a:47:
ec:90:d8:57:27:42:c9:cb:db:2d:74:d4:a8:6b:bc:
7c:14:c7:9d:43:af:12:dd:62:42:16:96:ff:d4:85:
a2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:2E:5C:BB:8A:C7:A7:3B:3A:10:0E:70:FB:E9:E6:AC:45:8D:18:5E
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:6b:53:c5:da:8e:04:aa:fc:b8:33:de:c1:7e:1e:5c:48:38:
3f:6e:dd:8e:3a:6c:a8:2d:b1:4a:48:42:99:7c:ae:67:90:9b:
04:f0:bc:cf:fb:37:6c:f8:19:6f:b3:22:a7:0d:f6:f8:8d:ac:
b3:aa:28:d7:ab:e8:18:05:f5:f7:e0:7f:e9:e0:1a:f7:95:39:
34:65:16:4a:4f:44:01:11:5d:61:a0:cf:fe:9c:d2:3e:e5:2f:
bf:63:3e:1c:7c:3d:5a:9d:af:40:c8:51:dd:d6:8e:cc:f8:a2:
ea:ae:1f:69:68:5c:5d:40:52:bc:27:17:91:dc:82:32:f8:b9:
fd:fe:92:6a:98:6e:36:58:9b:ea:7d:71:8d:39:5e:6d:70:9c:
8e:c0:0d:ed:b9:b3:b2:2b:3b:a0:ce:e5:f5:6e:38:71:da:75:
4e:fe:07:84:d4:13:39:b4:13:ae:13:2f:cb:be:3f:bc:b0:d9:
e4:88:da:2e:0e:2d:44:b2:6c:b0:6c:ba:92:26:e7:63:aa:7d:
92:30:34:99:b4:f4:c0:a1:0b:e7:27:0a:f8:99:99:39:27:a0:
a4:a3:f1:92:e7:57:c8:de:af:1f:e1:35:45:6f:57:07:47:43:
b5:4a:c6:e4:b0:1c:40:a5:3f:20:5f:b2:f3:5e:43:ef:c3:09:
b7:67:a0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:22:47 2025 by rpki-client