Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
File: dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft (raw, json)
Hash identifier: sUOmQWF2USIPUEwNxeiVXNwjUQpNuUSMQwKTWP9yjTc=
Subject key identifier: E6:EE:C9:A5:BD:E3:23:AA:9C:CF:89:22:F5:0E:57:D8:EB:4F:EA:62
Authority key identifier: 74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
Certificate issuer: /CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Certificate serial: 019A5187C5B6F47E69FB272698DC5AAC1E62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
Manifest number: 86
Signing time: Wed 05 Nov 2025 01:00:43 +0000
Manifest this update: Wed 05 Nov 2025 01:00:43 +0000
Manifest next update: Thu 06 Nov 2025 01:00:43 +0000
Files and hashes: 1: 9aSGIa-WEC1bN7Ni4E8-efLmGGQ.roa (hash: 9siiR4LDQpp3LbxItU8xD6C1s0IOvLTqKZo+clC6imU=)
2: dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl (hash: owyiBg5C2oWG0Blfv+Qq8kJwtyoAfNodWKgjlkQDBtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:c5:b6:f4:7e:69:fb:27:26:98:dc:5a:ac:1e:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749d8a4328930b938fa86018b1e447ee4d8da8f9
Validity
Not Before: Nov 5 01:00:43 2025 GMT
Not After : Nov 6 01:00:43 2025 GMT
Subject: CN=e6eec9a5bde323aa9ccf8922f50e57d8eb4fea62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:84:89:b4:9b:85:f2:29:79:26:f7:c9:ab:6a:
c5:e7:87:29:ef:5a:8f:fc:6c:50:1e:7e:14:6a:cd:
1e:75:16:0d:98:61:cf:06:c5:6a:66:35:4c:0e:01:
ac:e9:ca:2b:e4:46:4b:d6:dd:88:50:ae:24:0b:24:
c0:4b:67:d0:74:7b:34:47:52:5e:e9:92:e1:91:7e:
97:3d:ae:a8:77:22:24:f2:b2:9d:8a:2c:87:d9:63:
d8:53:23:ab:83:36:d2:e8:15:5e:43:dd:80:07:58:
08:be:a0:ab:54:65:a8:82:fe:34:90:d2:ba:e9:65:
40:95:cf:6c:2b:a6:51:aa:56:e5:a2:c3:92:8a:3e:
a8:c1:3a:6d:df:37:58:0f:ce:d4:f3:d9:c1:fd:9c:
40:0a:2a:5c:5e:c0:75:a0:91:44:01:f1:87:80:84:
22:67:60:0c:ef:6a:28:02:a4:d4:84:b5:f8:c5:ba:
70:58:3b:98:ee:b7:86:29:51:5a:2c:65:59:0a:86:
b9:6b:22:73:b0:cf:e8:e0:fd:ca:0d:f3:87:f4:99:
42:a3:ec:f1:88:2b:28:b6:8d:a0:73:40:d0:e3:9a:
f5:c0:58:62:89:0d:b7:94:6d:10:6e:d9:b3:1e:e5:
6e:49:ca:e4:98:03:4e:ff:15:17:19:d8:bb:fd:7d:
1a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EE:C9:A5:BD:E3:23:AA:9C:CF:89:22:F5:0E:57:D8:EB:4F:EA:62
X509v3 Authority Key Identifier:
keyid:74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:75:3f:a7:e7:d9:11:54:c6:0f:fd:cd:56:55:7c:69:35:ab:
b1:e8:9a:d0:28:d3:5f:ee:22:23:31:77:69:d4:2f:f8:5a:6c:
d7:7a:00:28:57:8b:25:8c:1d:df:51:16:ec:55:a3:c1:ea:09:
52:60:f1:d1:97:34:2d:2a:46:25:0a:25:09:c8:12:80:59:d2:
4b:bc:c3:79:0a:d4:3d:6f:1d:6a:13:47:c9:dd:8a:15:ab:9c:
06:eb:5e:b9:08:71:52:81:2d:cc:47:3b:e7:2e:6f:72:3f:9c:
06:09:99:9f:f5:08:c5:a8:43:4c:bb:ed:5c:ed:56:cf:fb:16:
8f:ac:4b:66:11:87:d7:8e:43:b6:b8:5d:a0:3a:f6:02:cc:43:
54:1f:3c:74:1f:a8:f3:e1:6a:a3:62:6d:84:a6:b1:2c:c5:aa:
7a:e5:fb:51:2b:ac:5c:01:fe:c0:32:fa:c5:f9:d7:ca:3a:57:
d4:4f:ca:32:65:17:a7:51:23:46:4b:76:e8:09:12:8a:c8:73:
e0:75:91:39:a8:00:81:ae:0f:eb:07:99:48:fe:bb:c8:61:a0:
eb:18:c2:09:88:b9:db:71:25:58:1c:68:cb:27:20:c4:e9:bb:
d2:20:54:1c:d6:15:ef:3d:18:d0:e2:28:1c:53:63:14:eb:c1:
ff:db:ab:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:08:07 2025 by rpki-client