Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
File: 1DNtXnTx-LfbEynwC7hXJBrnTRk.mft (raw, json)
Hash identifier: 2BZwVr/21e6rufEQPoDHNWL20H63rg6dSPis1DhvYVA=
Subject key identifier: 12:19:F6:7C:A5:C3:BD:0E:01:FB:55:9C:A9:6B:F9:F6:24:D1:87:EA
Authority key identifier: D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
Certificate issuer: /CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Certificate serial: 019A4F62CF1CBB12CA0079BF9E6EE1CA1778
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
Manifest number: 0496
Signing time: Tue 04 Nov 2025 15:01:06 +0000
Manifest this update: Tue 04 Nov 2025 15:01:06 +0000
Manifest next update: Wed 05 Nov 2025 15:01:06 +0000
Files and hashes: 1: 1DNtXnTx-LfbEynwC7hXJBrnTRk.crl (hash: 3NUf+RyS8rKSfCx7Z0hfHBHfQ7hz+3wLffLagmhCXUM=)
2: L86Czh-hgFnJfXYShvX9w1KKWEg.roa (hash: UlpXjqDOYfOCQf+VBo1cHNYWZUpj4u/uB6dnGVYlbBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:cf:1c:bb:12:ca:00:79:bf:9e:6e:e1:ca:17:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Validity
Not Before: Nov 4 15:01:06 2025 GMT
Not After : Nov 5 15:01:06 2025 GMT
Subject: CN=1219f67ca5c3bd0e01fb559ca96bf9f624d187ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:39:5e:4f:a4:7b:d1:7a:84:dd:e7:41:ec:7c:
20:24:3e:bf:5f:dd:ee:5d:3c:44:eb:5c:3e:83:8f:
3a:c6:cb:1d:52:25:1a:8e:96:86:8f:0d:84:8b:f4:
d5:99:a9:81:bb:62:f2:bd:8b:c4:65:d8:76:8a:f5:
95:d6:ea:47:26:21:f6:e4:e5:d5:cf:fd:32:bf:c3:
24:1e:7b:c7:24:04:8e:89:67:57:7b:1b:98:7f:c7:
b4:85:52:47:4d:9e:39:95:18:7b:01:b3:cb:0c:0f:
4a:4f:f7:d6:53:d3:19:4f:d3:98:f5:ae:c7:59:ae:
94:a9:fc:1f:0e:84:84:46:24:c2:3a:73:59:f6:c9:
84:5e:5e:d6:f4:13:12:c6:27:ee:a0:6b:a8:9d:0f:
f2:fa:1a:08:a0:43:59:f2:c1:0e:36:15:48:92:82:
96:f0:c1:d3:5d:a7:74:f1:3d:29:b0:71:b7:24:1b:
7f:a0:21:a6:86:5b:9f:a7:26:a8:a3:11:ae:82:e1:
44:c8:f5:60:2f:3a:01:a2:cf:06:18:90:5f:18:b8:
97:61:71:67:73:31:f1:ba:17:17:dd:3c:31:19:83:
7d:8e:b0:8e:0e:1d:54:63:56:11:14:27:5b:43:30:
57:ce:b4:16:e9:4e:92:78:de:f5:9c:f4:dc:f9:26:
dd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:19:F6:7C:A5:C3:BD:0E:01:FB:55:9C:A9:6B:F9:F6:24:D1:87:EA
X509v3 Authority Key Identifier:
keyid:D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:2f:57:e1:57:28:af:34:ee:9e:3c:ed:80:5c:c8:c5:4d:68:
ca:ab:3f:fc:5a:8c:c2:52:b6:70:c8:bd:c8:4a:f3:a1:e3:d0:
9e:96:ba:34:46:7f:6a:d7:8e:08:e0:71:1f:55:b7:29:6b:e3:
27:02:8a:89:87:2c:da:d1:24:5f:6b:eb:f9:17:4d:d8:59:93:
f8:00:54:d1:cb:b3:a9:4e:98:2e:25:50:7a:0d:83:a8:ff:42:
37:9a:8d:d6:92:36:5d:5a:48:95:69:7d:62:b9:fa:ed:ad:c4:
a2:51:d5:6a:24:02:43:cf:a2:07:97:74:25:e1:c5:ef:cd:24:
6c:ad:9c:0f:6a:f8:a5:45:40:a2:bf:1d:31:16:0a:5c:c1:e6:
7b:96:77:19:8f:6a:76:7f:20:92:9c:43:02:18:aa:58:f1:03:
2f:5d:e2:41:67:f0:3b:98:b0:0a:53:fd:16:92:5b:17:89:93:
ab:83:8e:e1:47:aa:ff:31:0b:9a:b8:10:10:b3:91:c8:a4:f1:
d3:e9:ec:1c:78:ba:4d:62:2c:7d:73:3c:08:1d:39:a2:67:9e:
df:32:0c:e4:76:5b:9e:e3:89:48:c0:55:ce:c0:15:e5:a9:e4:
2f:4e:99:9c:a3:02:d5:8c:27:80:ce:f8:44:02:d2:7c:c6:4d:
3d:7b:d7:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:36:33 2025 by rpki-client