Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
File: dyDGcENNpRAiYQmdoQHyXdP3qto.mft (raw, json)
Hash identifier: cBzb7nouqXGm8N4CPDpc3d3UjFXoGYiZWR0QjvSh7C4=
Subject key identifier: AD:F3:FE:61:6F:75:AE:9A:CC:97:C4:33:88:8B:6C:40:B1:D7:1E:27
Authority key identifier: 77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
Certificate issuer: /CN=7720c670434da5102261099da101f25dd3f7aada
Certificate serial: 019A2364EBC02FB6CACAC1B651467AC5942C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
Manifest number: 0F39
Signing time: Mon 27 Oct 2025 02:00:07 +0000
Manifest this update: Mon 27 Oct 2025 02:00:07 +0000
Manifest next update: Tue 28 Oct 2025 02:00:07 +0000
Files and hashes: 1: dyDGcENNpRAiYQmdoQHyXdP3qto.crl (hash: EB4vgO5+aIWRVtjR5e6zj1nDoao938mjhsyaW2uwqCU=)
2: s7pdPnsOB8imHTQwb8o3CB7JIMI.roa (hash: lFvR0bEMv7k9KIxJ6Wc08171+rqM84YXRxLTrqtVpQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 02:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:64:eb:c0:2f:b6:ca:ca:c1:b6:51:46:7a:c5:94:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7720c670434da5102261099da101f25dd3f7aada
Validity
Not Before: Oct 27 02:00:07 2025 GMT
Not After : Oct 28 02:00:07 2025 GMT
Subject: CN=adf3fe616f75ae9acc97c433888b6c40b1d71e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b3:44:70:18:3e:0b:7b:d5:ca:c1:c3:25:02:
93:3c:4d:6a:5a:fc:7f:27:53:2b:1d:6d:32:4a:4c:
77:48:0a:a7:17:74:a2:1f:e2:a5:c4:93:88:1b:d7:
36:72:6f:b7:30:4e:32:c2:c6:e8:52:e7:b1:a7:a9:
6f:87:20:0c:27:3e:05:db:c5:ce:75:e9:96:74:70:
e0:83:c0:b9:77:4d:4e:9b:1f:4b:a6:8f:04:19:91:
c1:4c:b1:15:56:97:a9:39:38:48:f4:f1:a0:53:a9:
ce:54:96:dc:b8:78:ef:df:0f:5a:3b:ad:f6:a7:68:
d3:0f:6c:11:a4:c5:39:8c:a5:66:fe:81:c8:f6:0a:
7f:f0:d0:e0:c1:89:01:e6:a1:04:2a:75:9b:c9:74:
49:a3:c2:41:1a:fc:70:55:aa:4f:6b:cc:08:5a:6d:
0f:81:b9:08:1d:2c:18:c5:41:f8:c1:ef:9f:6c:01:
c8:c7:fd:9c:9a:4e:7b:d1:77:e1:bb:4e:fd:fe:a4:
45:27:41:d5:69:b7:59:7d:d0:98:3f:59:e6:a9:b7:
b2:5b:41:3f:56:64:5e:b1:c4:90:f2:1c:be:0f:74:
4f:8a:06:47:b1:76:67:13:f5:ea:de:29:7c:41:7b:
5d:6f:18:c1:eb:f4:35:ea:d1:3a:55:a3:6e:90:be:
03:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F3:FE:61:6F:75:AE:9A:CC:97:C4:33:88:8B:6C:40:B1:D7:1E:27
X509v3 Authority Key Identifier:
keyid:77:20:C6:70:43:4D:A5:10:22:61:09:9D:A1:01:F2:5D:D3:F7:AA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyDGcENNpRAiYQmdoQHyXdP3qto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/cf753f-7781-4dfe-a38e-d845995991ac/1/dyDGcENNpRAiYQmdoQHyXdP3qto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:8a:6a:27:6f:4d:b3:17:ac:da:90:fc:7b:96:b0:d0:d7:b9:
0c:fb:d0:c2:8b:0a:38:a7:75:44:68:38:5d:fd:c8:73:28:16:
da:93:13:71:1e:87:cc:fc:d6:b9:01:ad:d8:6d:17:02:df:37:
eb:c3:cc:68:1f:4c:30:65:1a:71:76:72:9f:1b:66:82:2d:6e:
43:5e:3a:f5:95:fe:3e:ff:17:11:e2:46:85:e5:2d:bf:bb:88:
fa:65:3e:6d:e7:13:81:98:0b:5b:c1:a9:53:39:3d:2c:1d:03:
e2:e2:38:6d:f7:ac:35:c7:78:88:b3:2c:a5:eb:ba:c6:8c:11:
bb:49:4c:1c:87:6c:3b:07:71:69:1f:f3:6c:fe:fc:ea:da:a4:
af:8b:71:65:b7:ce:db:29:78:63:60:96:82:19:1a:6b:0e:dc:
73:d3:d9:25:79:8f:07:04:9d:65:8d:65:64:7d:90:ce:0f:29:
95:87:4b:16:20:4c:68:cf:3d:f9:1f:ed:c6:c8:63:c3:d9:cb:
37:ee:f9:e5:85:2a:09:01:9e:17:c8:5a:5d:84:db:c5:f5:98:
25:92:5b:98:e5:47:67:ab:91:5d:5b:f5:a0:3a:68:82:d5:2b:
bb:99:ab:6d:33:b2:81:1a:69:70:75:52:00:a2:68:08:85:7e:
ff:59:50:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 10:28:01 2025 by rpki-client