Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
File: DUlCfYpEd823aAhhqexQ3HMhaYI.mft (raw, json)
Hash identifier: MeTj8bUWtQIGzZtI/QZJBTGStF0BlWkG2DluOV76MWI=
Subject key identifier: 66:6C:72:10:4C:38:DE:E5:95:D8:B1:9E:8C:9D:39:36:9C:F6:27:D6
Authority key identifier: 0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82
Certificate issuer: /CN=0d49427d8a4477cdb7680861a9ec50dc73216982
Certificate serial: 019A71B898EC1E699E0BF08658418C27835F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
Manifest number: 07AB
Signing time: Tue 11 Nov 2025 07:01:54 +0000
Manifest this update: Tue 11 Nov 2025 07:01:54 +0000
Manifest next update: Wed 12 Nov 2025 07:01:54 +0000
Files and hashes: 1: DUlCfYpEd823aAhhqexQ3HMhaYI.crl (hash: eWZrzIpcZte1cjhBHKuTHkuGMGVySPurDGK7+9wYd4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:98:ec:1e:69:9e:0b:f0:86:58:41:8c:27:83:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d49427d8a4477cdb7680861a9ec50dc73216982
Validity
Not Before: Nov 11 07:01:54 2025 GMT
Not After : Nov 12 07:01:54 2025 GMT
Subject: CN=666c72104c38dee595d8b19e8c9d39369cf627d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:06:30:84:fe:df:cc:a8:7a:78:db:9d:8a:7d:
ed:21:05:5a:3b:86:03:df:16:1d:47:ee:44:a6:53:
f2:e5:af:94:f3:bd:11:b0:63:da:18:1f:07:e9:cb:
66:c3:44:32:b2:30:1d:68:81:ae:83:be:66:e1:c7:
d6:b7:1b:f0:da:00:9c:08:42:3c:08:76:7c:c1:7c:
ec:44:d7:80:79:8e:76:80:09:5f:01:d9:83:ad:70:
09:d6:09:ba:f4:82:e3:44:2a:1e:95:d3:2a:0e:3b:
97:15:1d:af:2b:45:bf:6c:3a:f9:59:2f:5c:61:8a:
ba:d6:18:e3:61:8b:90:ad:95:10:01:e3:70:b9:b0:
11:a5:04:ab:49:50:81:c9:17:d6:c9:91:1b:f0:67:
45:39:c8:a3:94:5a:f1:25:c3:44:36:05:f0:1c:db:
72:f2:3b:3f:69:70:f0:46:c4:a9:d6:63:1a:e0:44:
6a:f3:9a:62:03:74:e6:65:4e:4d:12:db:00:d4:26:
ba:7a:b0:ce:1d:1d:98:3b:8f:fc:21:36:bb:b6:f9:
7e:3a:4b:94:5c:c4:af:43:ef:11:01:5c:55:b9:03:
64:58:96:6e:6c:32:a9:f6:e2:41:96:c7:21:34:48:
57:7d:1e:35:92:4a:ab:d3:de:16:02:2b:2d:d3:37:
a5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6C:72:10:4C:38:DE:E5:95:D8:B1:9E:8C:9D:39:36:9C:F6:27:D6
X509v3 Authority Key Identifier:
keyid:0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:65:04:28:e1:2a:21:82:d8:85:8d:7d:cb:08:86:a4:3b:1c:
e4:6a:50:dc:d5:18:1c:74:87:a1:e8:ea:ea:83:ea:4f:77:e7:
c9:4b:03:35:c9:16:fe:67:30:cd:5d:d8:28:20:8b:be:01:d4:
d8:df:31:4a:18:cd:94:77:d7:d1:4e:6f:cd:e7:0f:7a:c8:31:
b1:cf:21:2f:69:28:02:e9:00:c4:34:66:38:96:a7:da:c1:3f:
63:0e:14:31:ed:ef:e6:0d:e0:7f:16:e1:70:bc:1a:5d:af:20:
ec:dc:85:1f:7a:46:33:a7:60:82:e9:83:d6:8f:90:fd:0e:f6:
4a:dd:2e:7a:7d:33:6e:17:0f:b2:37:70:1c:54:8a:de:88:82:
4a:d5:7c:ab:73:8c:cd:cd:30:18:a6:0f:44:dc:ef:ab:80:2f:
23:19:78:f0:e7:ee:93:c4:36:e6:7f:ca:62:18:ea:cf:6b:ae:
58:e4:3a:42:c2:de:5f:70:9a:5a:9f:37:15:2e:36:bc:6d:1b:
c9:3f:13:9a:0a:dc:10:16:ca:d6:e0:31:42:e6:79:cd:8d:d9:
ad:8b:85:6d:e8:c7:35:4d:b5:92:d2:47:6b:9a:de:92:cf:34:
39:fb:77:d1:b4:a9:fc:a1:ee:61:b8:05:15:b8:a1:02:d7:c7:
2e:5a:06:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:42:49 2025 by rpki-client