Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
File: dHnfUKMVAp6AqhlHr-EtselIYos.mft (raw, json)
Hash identifier: wbXmZhESGzh/odjctpoXCCjrGns9/pcw0ojogZKAIFY=
Subject key identifier: 99:76:51:69:B0:40:64:73:96:F0:0E:FC:B5:33:95:B4:37:61:5C:C8
Authority key identifier: 74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
Certificate issuer: /CN=7479df50a315029e80aa1947afe12db1e948628b
Certificate serial: 019A503E18DC178818F6DB7417DB1D83A3E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
Manifest number: 1011
Signing time: Tue 04 Nov 2025 19:00:38 +0000
Manifest this update: Tue 04 Nov 2025 19:00:38 +0000
Manifest next update: Wed 05 Nov 2025 19:00:38 +0000
Files and hashes: 1: KvOchdw6AYfLt261W6RR4KIthYY.roa (hash: WXdEqSkBC/gQsasA/7q/ZdUFdpwAbrzjieJX5Z97f4U=)
2: dHnfUKMVAp6AqhlHr-EtselIYos.crl (hash: /5+Ec4ifAtJPyOnQ2SNLLpgmyoCGb8vGrZbrjnV9QWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3e:18:dc:17:88:18:f6:db:74:17:db:1d:83:a3:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7479df50a315029e80aa1947afe12db1e948628b
Validity
Not Before: Nov 4 19:00:38 2025 GMT
Not After : Nov 5 19:00:38 2025 GMT
Subject: CN=99765169b040647396f00efcb53395b437615cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:52:b6:e0:8e:f0:5d:4b:d2:73:ad:45:87:7a:
62:88:75:8b:9e:1b:4c:5a:34:19:07:36:c8:da:db:
56:69:e1:f9:b2:17:7c:fb:a3:58:95:e4:f3:b5:51:
33:af:40:e8:3c:c1:5c:3d:aa:0f:7b:29:4c:64:b0:
83:10:e4:4a:cd:3a:ad:dc:8e:99:32:56:fd:f6:13:
5a:44:cb:bd:ae:cf:f2:3f:16:9c:0f:1c:eb:8a:36:
44:37:19:91:54:88:d6:59:fe:b8:bd:6e:e0:63:53:
80:54:c2:59:46:33:4b:16:6a:96:00:65:38:a6:a7:
c9:57:d2:b4:94:09:36:04:41:22:d3:60:42:da:f3:
f9:bc:b8:5d:22:cd:a0:a2:42:23:05:d9:ee:52:ce:
17:4a:bd:2e:9b:2e:b4:64:2b:99:22:43:e3:57:27:
30:72:05:5a:b4:52:09:d2:60:2a:ad:b2:de:93:8c:
bb:e0:c6:ea:62:14:22:ac:18:16:f0:6a:3e:9f:f8:
19:ec:dd:1e:1a:4b:27:ae:2c:3d:0e:ad:a5:cf:97:
6e:53:96:1a:e1:05:46:41:d6:ea:76:6e:c7:fd:9a:
3f:21:d7:ab:f2:3c:b4:84:c7:51:58:95:59:90:af:
0a:a9:a9:60:ba:31:e9:51:f4:8a:d7:cc:1b:33:9d:
67:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:76:51:69:B0:40:64:73:96:F0:0E:FC:B5:33:95:B4:37:61:5C:C8
X509v3 Authority Key Identifier:
keyid:74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:02:99:f6:5d:66:68:f8:c7:cf:03:25:8a:e3:e2:9a:83:ff:
fa:89:e9:fc:ad:c5:5f:8d:15:03:fd:05:24:fc:c2:7f:1c:f6:
c1:f5:20:af:94:59:41:04:10:bc:25:51:95:bd:7e:ef:e1:5f:
74:9f:18:87:d4:66:00:b0:46:1a:76:4e:99:08:93:8f:90:d7:
c7:06:dc:ca:dc:7e:03:20:48:93:36:e7:04:93:c7:40:e1:da:
d8:f0:73:12:23:e5:78:9e:bd:07:6b:35:8f:66:94:b7:a7:ec:
2c:f7:45:00:ce:28:ac:6c:80:8e:59:7a:51:6b:5e:a6:86:85:
5e:b0:e5:01:5d:78:33:fb:e5:79:41:4f:8e:87:47:ef:4f:a1:
2d:36:ba:ae:bf:ef:8d:81:e2:b6:20:b3:fe:b8:e5:57:13:62:
72:01:ef:ba:d5:96:2a:45:05:b7:f5:96:33:cc:2a:ce:af:70:
ba:46:e5:6c:33:c5:aa:d1:89:6b:95:18:34:22:c8:c4:b8:0e:
92:47:3a:46:6f:b0:d2:21:dd:5c:7d:67:2f:20:1e:fb:ae:3a:
cf:44:33:4b:20:0c:34:b6:43:95:11:4f:b2:8c:8d:05:cd:1c:
0d:5e:3f:f9:d4:e9:c3:b2:bc:51:69:4f:6c:40:ca:02:f4:53:
d7:c8:5c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:22:04 2025 by rpki-client