Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
File: DlNS2UQbZcIBbtjrfi8jWVRDT10.mft (raw, json)
Hash identifier: Xv0mEbwy1KjNOzBvrBuhseComQOhouakKTCR9kQTSyo=
Subject key identifier: A3:19:23:38:31:99:A8:5C:44:14:BA:50:7B:C2:31:A1:FB:80:30:CD
Authority key identifier: 0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D
Certificate issuer: /CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d
Certificate serial: 019A7225CD7C23EDC7B37AD358F7F1E74334
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
Manifest number: 02C6
Signing time: Tue 11 Nov 2025 09:01:11 +0000
Manifest this update: Tue 11 Nov 2025 09:01:11 +0000
Manifest next update: Wed 12 Nov 2025 09:01:11 +0000
Files and hashes: 1: DlNS2UQbZcIBbtjrfi8jWVRDT10.crl (hash: agJuwt8O3tMvd8aptt7oaGSQtlJNk387fKGaj2N+oKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:cd:7c:23:ed:c7:b3:7a:d3:58:f7:f1:e7:43:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d
Validity
Not Before: Nov 11 09:01:11 2025 GMT
Not After : Nov 12 09:01:11 2025 GMT
Subject: CN=a31923383199a85c4414ba507bc231a1fb8030cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:17:1a:36:f4:8d:17:dc:a0:a6:a8:59:0d:9f:
25:7a:2f:03:3a:9a:67:56:92:7a:9f:89:6d:47:01:
70:96:d1:f3:96:f3:bb:38:bc:91:d4:d8:27:75:33:
3d:47:3c:07:fa:67:d9:31:9a:01:4f:f1:ee:a2:f8:
11:99:9c:c8:fc:24:82:46:e8:43:9c:c2:96:1c:7f:
6f:97:d1:6e:c6:fe:05:89:e8:5c:24:ed:08:43:d2:
96:45:db:d9:4b:b3:b7:e3:34:6c:cb:9a:d1:5b:79:
a5:d8:e5:1e:b0:ca:2c:f6:c4:3d:d7:48:8a:62:77:
1f:3f:f3:c3:aa:21:43:55:e1:67:de:22:7f:54:67:
08:1c:c7:78:b1:f4:6d:b7:54:85:cd:78:bc:39:2e:
4f:24:b9:76:92:dc:3d:cf:ed:18:78:2a:24:f3:4f:
be:94:37:e2:0b:0d:ff:04:73:6c:88:4e:10:56:81:
c1:87:31:e9:11:29:15:c4:e8:6d:ec:6d:39:d0:f5:
53:d1:f0:b2:7b:27:59:07:b4:89:4b:fc:a1:b0:a6:
62:19:b6:87:5e:17:cb:10:8f:d0:33:ea:8b:1e:ad:
b9:f5:1f:0e:80:b5:5b:8c:48:89:5b:2c:03:fb:b8:
0c:a6:c2:a3:94:39:52:5c:b0:90:ac:4b:eb:ef:5a:
de:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:19:23:38:31:99:A8:5C:44:14:BA:50:7B:C2:31:A1:FB:80:30:CD
X509v3 Authority Key Identifier:
keyid:0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:91:56:77:06:3e:65:84:ea:32:73:6a:d5:c7:68:9e:a2:21:
af:66:70:2b:f9:aa:64:9f:a5:77:d8:bb:ed:91:b4:01:21:32:
7a:80:40:4e:04:41:a4:3e:b0:00:dc:6d:fb:06:34:df:b8:f6:
fc:b5:5d:22:c7:d3:04:c9:f9:d5:da:77:ab:a0:75:a2:f3:b8:
87:d2:47:4e:94:5b:52:7b:44:2a:54:1c:43:05:00:ff:d9:c0:
20:8a:32:61:41:2d:c2:28:9f:7b:21:c5:d3:bb:38:35:3d:e1:
84:64:19:21:1b:a9:8c:3d:0c:1b:ab:1a:dc:28:90:ee:b2:34:
86:87:af:0f:de:aa:2a:8c:a3:07:f0:4c:5b:d1:39:53:cd:94:
cd:76:90:eb:04:04:60:ad:6f:e5:e9:26:3e:6d:44:f7:05:8d:
94:1b:3c:4a:2a:a5:1e:e8:9a:23:60:12:72:67:65:d8:e0:d7:
45:b3:8f:80:0c:3c:c3:e6:9a:37:47:1a:a2:e9:95:44:4c:b5:
af:9b:71:b2:58:e2:eb:d2:99:bb:6f:57:a3:56:b1:56:07:93:
4f:96:9f:89:7d:7d:80:c7:13:81:26:06:e5:f1:a7:bd:7b:9d:
e7:72:a6:bc:b6:4a:ce:03:41:e7:4d:fb:c4:b4:a6:78:7c:ba:
0d:c7:7f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:07:06 2025 by rpki-client