Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
File: Dv0crRIZAnVQiePKgLptfMxLm3E.mft (raw, json)
Hash identifier: YuxcUzJB+O/QmTDATFFGPeJh1JTPuEpt1iAcRS6E5nU=
Subject key identifier: 25:A6:1D:72:35:CC:D1:B4:B7:A1:6A:B1:4C:9D:79:94:45:49:95:38
Authority key identifier: 0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
Certificate issuer: /CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Certificate serial: 019A72CA22EC722BEF5BFCB2A3AB94524AC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
Manifest number: 0D1B
Signing time: Tue 11 Nov 2025 12:00:41 +0000
Manifest this update: Tue 11 Nov 2025 12:00:41 +0000
Manifest next update: Wed 12 Nov 2025 12:00:41 +0000
Files and hashes: 1: Dv0crRIZAnVQiePKgLptfMxLm3E.crl (hash: /I+KQqFVPVSTF0Z+3o8YpEjw6/LaHw5FoMcxRcjpj/4=)
2: kzypufx1A54QL9RnefA55meWSPM.roa (hash: cK+sc1FxI2UgckK1YuVxFsSFuYcOk8chhmHAVw1PhQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:22:ec:72:2b:ef:5b:fc:b2:a3:ab:94:52:4a:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Validity
Not Before: Nov 11 12:00:41 2025 GMT
Not After : Nov 12 12:00:41 2025 GMT
Subject: CN=25a61d7235ccd1b4b7a16ab14c9d799445499538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:db:d5:8d:c3:7d:7d:6c:93:d4:1f:77:7b:0b:
95:4e:c0:56:80:75:e5:51:db:60:f0:d9:e0:7c:d1:
de:28:1f:24:f2:39:10:3e:ad:46:09:be:d1:62:cd:
1a:26:60:c8:2d:e7:15:34:e2:8c:b5:e6:39:64:94:
6b:80:68:96:27:81:35:9e:a7:81:66:79:5f:b8:c4:
9e:e6:67:43:82:aa:cc:60:63:f7:ea:c1:1c:66:e7:
de:8a:e2:2f:c1:62:11:4c:b7:fb:d0:09:38:ae:54:
c6:3d:2e:f1:18:e1:6b:51:ba:d9:d3:e5:f0:32:1d:
c9:fa:33:df:5b:8f:0f:39:7d:8f:2b:99:68:66:08:
b1:e9:11:5d:b5:c9:13:eb:b0:2e:4d:fb:10:4a:92:
b7:4f:39:f1:e3:73:54:60:2f:b0:52:2e:44:61:6c:
f2:3f:0f:e6:16:91:3d:55:b9:9b:15:45:65:17:70:
87:1a:8d:00:40:10:a9:d0:df:f9:8a:75:d7:61:d8:
27:bd:59:1b:21:2c:eb:25:0f:c6:89:65:da:2c:15:
68:77:0b:34:88:28:57:04:81:cc:19:d4:9f:52:2b:
92:28:16:2e:9f:bd:09:3c:7e:10:33:54:16:e1:99:
c1:24:4f:73:0c:d8:21:66:63:77:85:4b:26:04:f1:
ad:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A6:1D:72:35:CC:D1:B4:B7:A1:6A:B1:4C:9D:79:94:45:49:95:38
X509v3 Authority Key Identifier:
keyid:0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:05:80:10:f0:a0:b5:08:06:bd:c8:3e:31:d4:1c:24:0b:d3:
5f:5d:26:77:b5:4f:d0:dc:df:9c:5c:f7:37:05:ae:31:ac:f4:
ba:5a:df:8f:62:37:47:79:34:aa:a5:fa:ba:14:23:7c:89:3e:
7f:35:89:2a:d8:21:ab:2b:2f:2e:fe:0d:76:20:ed:ee:63:ad:
93:ae:9e:68:92:39:1c:b0:b5:e3:48:16:74:10:7c:dd:8d:4d:
22:3a:4c:a2:3f:37:0c:6c:d4:72:ab:2e:ff:1c:61:38:6b:33:
4a:8d:de:0e:df:b8:04:cb:14:88:e2:08:1f:f0:b0:1c:6b:24:
53:78:2d:03:f9:8f:89:8b:2b:41:db:a5:de:5d:71:01:97:46:
ad:8d:4d:85:f4:98:63:72:0f:01:ee:78:b9:57:6f:f7:56:2b:
3f:eb:c8:02:53:1e:fa:98:b4:bc:50:49:a2:25:be:c9:e1:da:
81:f6:7e:b1:e5:3e:50:d8:9d:c3:66:74:90:aa:8b:a7:9b:7a:
14:65:30:0d:65:3e:40:2e:eb:3e:93:11:a9:a4:ee:c3:56:14:
62:76:ae:22:9a:58:3a:37:5e:e2:94:aa:04:31:da:8b:af:8a:
4b:90:5e:fe:c5:7f:89:8f:e4:00:2c:82:61:39:4c:2a:a3:d6:
c8:d4:33:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:19:45 2025 by rpki-client