Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft
File: dGNy_s6bo5ZuFegFXAWHxQPAOas.mft (raw, json)
Hash identifier: ad470dM+SQFqZa3FkVRLrGzvdoVJxA+q5QGuX8cEyKk=
Subject key identifier: 70:B8:02:34:FB:49:95:76:99:D6:6F:69:23:8B:92:6D:BE:D0:66:D5
Authority key identifier: 74:63:72:FE:CE:9B:A3:96:6E:15:E8:05:5C:05:87:C5:03:C0:39:AB
Certificate issuer: /CN=746372fece9ba3966e15e8055c0587c503c039ab
Certificate serial: 019A71B8B6653423A42218516959C6F30FDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNy_s6bo5ZuFegFXAWHxQPAOas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft
Manifest number: 11C6
Signing time: Tue 11 Nov 2025 07:02:01 +0000
Manifest this update: Tue 11 Nov 2025 07:02:01 +0000
Manifest next update: Wed 12 Nov 2025 07:02:01 +0000
Files and hashes: 1: dGNy_s6bo5ZuFegFXAWHxQPAOas.crl (hash: G5X6+Rq24TJCZnyK/MBr436KnTlaSgC3c1B/tr0Ny+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGNy_s6bo5ZuFegFXAWHxQPAOas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:b6:65:34:23:a4:22:18:51:69:59:c6:f3:0f:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746372fece9ba3966e15e8055c0587c503c039ab
Validity
Not Before: Nov 11 07:02:01 2025 GMT
Not After : Nov 12 07:02:01 2025 GMT
Subject: CN=70b80234fb49957699d66f69238b926dbed066d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3d:06:f6:e3:24:5d:72:71:e5:a7:84:3b:b8:
53:ea:47:67:53:8f:65:ea:fa:90:8b:10:96:97:7c:
12:3f:03:58:49:78:69:d9:31:04:44:44:aa:5a:6f:
46:f6:2b:75:be:f4:d2:0c:9c:26:84:df:3d:70:64:
91:09:e0:dc:65:0d:4a:7f:29:31:a1:0f:5a:4a:02:
51:f4:4a:a5:ec:f3:79:a3:35:10:32:67:0f:1d:95:
35:14:1b:e9:cb:9a:1f:a1:f7:63:2a:24:3c:41:ce:
83:0f:0e:b3:52:bb:30:d7:4f:f8:a9:17:5b:3f:dd:
45:66:d6:c7:01:c6:d4:31:02:9a:4b:45:31:34:a3:
05:dc:91:68:da:8a:da:a4:42:b7:07:c7:f1:2e:15:
77:3f:5d:b6:19:b2:d4:86:03:d0:45:4f:a9:0b:f3:
4f:c3:bb:e4:14:a8:c5:dc:58:28:93:bd:8e:e6:6a:
f5:7d:7a:4b:0b:e3:e6:66:7f:34:99:a6:1a:99:ec:
fa:f9:6b:dc:8e:2d:1b:67:6f:ed:39:63:45:4a:26:
7d:fb:78:36:7e:41:d9:8e:7c:05:af:5c:73:2c:7e:
5f:48:69:77:4f:1e:ef:98:8d:48:7e:aa:f8:4c:cb:
ad:32:c9:66:3b:d6:ad:05:40:c1:6f:69:14:7e:80:
f2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B8:02:34:FB:49:95:76:99:D6:6F:69:23:8B:92:6D:BE:D0:66:D5
X509v3 Authority Key Identifier:
keyid:74:63:72:FE:CE:9B:A3:96:6E:15:E8:05:5C:05:87:C5:03:C0:39:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNy_s6bo5ZuFegFXAWHxQPAOas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:eb:30:4c:77:1d:2e:2c:ee:59:36:5f:d5:23:f1:e0:cc:e2:
3e:b0:5f:65:11:ef:75:f9:3d:6f:a4:39:6d:69:6d:47:1e:b2:
f9:e2:aa:5a:e2:0e:f8:3b:5b:55:c0:50:aa:b8:3a:1f:9c:cf:
d4:28:88:e7:5a:b8:0c:fb:42:ff:f7:9e:02:7a:c6:6c:ed:51:
2c:82:f9:9c:02:82:18:ff:06:9a:1f:34:2e:de:45:1a:4e:56:
1a:9b:a1:b1:ce:54:5f:d6:e1:6c:77:4c:13:bf:72:f3:98:3e:
5f:30:90:61:3a:a3:0a:90:6f:ff:a2:37:9c:4d:ec:b7:44:53:
8b:2a:c8:48:c3:48:7e:8f:1c:af:6a:6b:9d:80:a1:d6:34:93:
64:7b:9e:7c:5d:41:d8:46:6d:1f:13:9e:58:8b:3b:e6:fb:0a:
7b:bb:80:47:21:8b:93:b5:33:d3:2c:7c:59:85:18:56:91:6b:
93:1b:40:ec:ee:bd:e5:00:59:69:13:44:2d:21:cb:8d:b6:d6:
84:63:1d:b4:81:48:45:dd:05:21:ca:64:7c:0f:30:87:86:04:
bf:ec:97:2e:38:69:99:9e:59:35:c2:80:2f:df:4d:7d:c3:4c:
a2:29:1e:9a:d3:c7:5d:ef:ab:79:77:b7:2a:64:1d:42:14:b4:
39:11:b4:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:20:14 2025 by rpki-client