Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
File: DlNS2UQbZcIBbtjrfi8jWVRDT10.mft (raw, json)
Hash identifier: EYbYjHi4goeCJet2Tb1tUr3TTphnowm8GQh5T7OGhC8=
Subject key identifier: 05:C8:C1:FE:42:15:07:A3:69:EC:FF:22:71:15:89:A0:01:38:80:FD
Authority key identifier: 0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D
Certificate issuer: /CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d
Certificate serial: 0199221EC912BCE85AE89CE3AAE7E66563C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
Manifest number: 0218
Signing time: Sun 07 Sep 2025 03:01:06 +0000
Manifest this update: Sun 07 Sep 2025 03:01:06 +0000
Manifest next update: Mon 08 Sep 2025 03:01:06 +0000
Files and hashes: 1: DlNS2UQbZcIBbtjrfi8jWVRDT10.crl (hash: JtlUbGqBOxXcA52o7c52wjD6hgf4WgDk4iLwdsvpYeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:c9:12:bc:e8:5a:e8:9c:e3:aa:e7:e6:65:63:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d
Validity
Not Before: Sep 7 03:01:06 2025 GMT
Not After : Sep 8 03:01:06 2025 GMT
Subject: CN=05c8c1fe421507a369ecff22711589a0013880fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0f:42:5e:e8:82:1f:26:d6:08:86:02:69:35:
02:d5:14:ed:5d:83:4b:4a:41:3c:d4:45:2c:bd:4d:
a2:b1:24:45:26:4d:64:d3:46:fd:11:c5:a7:31:d0:
69:e3:76:0d:3a:4f:99:56:c6:e0:7e:9e:62:6e:21:
a2:21:b6:22:b5:42:50:88:58:6e:9f:40:66:f4:a1:
66:e3:3d:f2:4f:d0:39:5f:d6:f8:a5:3f:c5:d6:9a:
d0:50:0b:8e:27:4d:09:74:4d:c9:18:e0:ca:0c:a5:
0a:5d:28:d4:08:3b:b1:cb:87:ac:fd:a5:02:b9:6a:
a8:83:9e:29:6e:d3:2e:28:e8:28:b6:22:d6:9b:99:
03:56:a2:08:da:f5:c2:43:16:d5:1e:45:26:49:bb:
12:1a:75:90:4f:13:9d:3d:16:8b:b8:fe:41:a2:79:
b0:63:2e:c7:9c:ee:b2:49:b9:fd:f9:6d:ec:d1:28:
e7:4e:ed:2f:36:df:55:04:0b:f9:0b:50:6d:bd:8d:
e4:61:f8:37:51:12:7c:74:07:3d:b8:de:79:f3:99:
6b:13:28:c6:5a:82:f1:12:bb:1b:7a:e7:c4:38:58:
f7:37:6a:92:e4:e4:7f:72:30:8b:70:fb:21:b7:d4:
cb:38:0e:64:34:3f:eb:65:5a:3f:7c:bf:25:4d:32:
32:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C8:C1:FE:42:15:07:A3:69:EC:FF:22:71:15:89:A0:01:38:80:FD
X509v3 Authority Key Identifier:
keyid:0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:47:19:05:1c:7b:fe:44:b0:9a:33:f6:c5:d1:72:c7:2d:da:
a7:ac:ae:48:7a:cc:df:0c:5b:4d:38:b3:06:e5:b7:32:df:5f:
6d:c0:8b:14:a2:8b:4d:4a:ee:cd:a3:0a:c5:b2:b3:e6:98:13:
a1:17:96:7a:ca:e2:2e:30:39:2e:78:13:35:04:68:a3:f7:e8:
1c:26:f4:fe:d4:d5:f2:fe:4f:79:c7:af:5f:bc:cb:aa:76:cc:
c8:73:f7:63:a9:29:8b:90:d6:ac:f2:b7:64:98:a8:59:21:77:
e7:b2:f1:cd:59:0f:57:96:f9:38:5c:86:09:9f:04:65:1c:93:
b0:e0:b6:eb:17:d4:89:d0:9e:6b:8d:4b:1d:6b:cb:9b:89:f0:
53:7a:c6:3a:4a:5a:c3:6f:0b:8e:7d:de:9e:32:b1:c9:1a:cd:
40:60:8c:66:b1:97:c2:da:7c:a7:2f:a8:c0:34:c1:9e:c0:b1:
77:5d:1b:1a:c5:4b:1b:86:88:f3:21:df:dd:6c:84:2a:4e:d9:
38:59:7b:97:fe:b1:2a:63:80:90:48:c4:5e:d1:34:8a:12:a8:
72:76:b4:2b:b9:55:7d:7c:6c:4e:c7:1c:d6:07:cc:09:9b:59:
b6:24:11:55:6d:ec:b8:c2:08:54:3b:b9:04:56:bb:10:53:c4:
01:13:6f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:24 2025 by rpki-client