Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
File: cDbgTlO505Z8-dQY54tgu60HWDE.mft (raw, json)
Hash identifier: y1WIh8VDhnbll2uVrcUoBcuZP5JpbORwXvnaxF3A698=
Subject key identifier: 2B:AD:D9:EB:2D:96:79:2F:1C:B1:BF:48:E1:D1:3C:5F:09:B0:3C:BF
Authority key identifier: 70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
Certificate issuer: /CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Certificate serial: 019A28C2DCDB76867663E72392783E3D6F97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
Manifest number: 029C
Signing time: Tue 28 Oct 2025 03:00:50 +0000
Manifest this update: Tue 28 Oct 2025 03:00:50 +0000
Manifest next update: Wed 29 Oct 2025 03:00:50 +0000
Files and hashes: 1: 79VsR-5nub7DUrhryJn99r0sSJE.roa (hash: PKoaa5fww3RYvMlarfjIhYGHHPB9uxMDQ5a1vOFmd9k=)
2: cDbgTlO505Z8-dQY54tgu60HWDE.crl (hash: yTDvQOi2/244FDJTxuSVjMaOCAmPJeq3BMaaU1uywkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 03:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:c2:dc:db:76:86:76:63:e7:23:92:78:3e:3d:6f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Validity
Not Before: Oct 28 03:00:50 2025 GMT
Not After : Oct 29 03:00:50 2025 GMT
Subject: CN=2badd9eb2d96792f1cb1bf48e1d13c5f09b03cbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e4:14:a7:64:b2:65:23:f0:2b:cb:b8:af:8e:
98:bf:a8:ba:44:8f:85:48:82:22:6f:8e:15:73:f8:
7f:37:f7:35:c3:09:e0:66:07:2a:7f:96:9f:fb:62:
aa:fc:79:6a:c9:60:ff:f5:d9:a1:6f:14:88:3b:01:
5d:84:9e:d9:22:dd:88:ea:8c:6d:87:2b:6b:f7:38:
89:f1:ef:db:c5:2d:7d:22:43:c7:45:7c:18:71:1e:
a4:08:38:c9:56:78:5d:8c:2c:5b:02:3b:9f:c0:dd:
5a:fe:ad:9f:a8:04:5a:16:9c:c3:94:53:59:b6:c8:
eb:f3:c6:10:16:1e:37:d1:ac:b2:4b:58:da:23:8a:
04:cf:56:b0:ef:9f:56:04:bd:d2:00:4f:77:34:e9:
55:82:c6:b3:6a:f9:72:13:4a:b4:37:eb:cc:ca:4e:
8b:34:c9:b9:8a:91:08:35:6f:ee:6b:13:36:55:54:
07:80:9b:7a:30:37:41:dc:39:6e:13:19:4b:f5:eb:
5d:39:a3:1f:68:49:6e:f1:72:ed:a1:d5:4f:6e:2a:
97:ec:92:3d:e2:13:b1:f3:d8:9e:af:87:f4:36:e8:
63:26:fb:12:e5:74:70:f4:26:ec:d0:95:41:17:d3:
0b:19:ff:8c:73:4d:2c:79:c2:53:2a:ab:08:4b:bd:
b1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:AD:D9:EB:2D:96:79:2F:1C:B1:BF:48:E1:D1:3C:5F:09:B0:3C:BF
X509v3 Authority Key Identifier:
keyid:70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:1a:58:73:ab:ba:43:a2:43:69:0b:75:f6:06:fd:dd:13:d9:
4c:24:be:ee:70:99:7b:c2:64:58:48:38:66:6a:c2:5c:de:45:
01:e3:c5:bd:52:56:3f:a2:de:88:c4:37:63:61:97:fc:33:fd:
bf:e9:e0:38:ec:cb:8d:79:d5:17:da:9c:6c:1e:41:49:f4:ab:
b9:3a:62:65:86:61:8b:27:6e:77:b0:ec:5c:6b:8f:74:0b:2f:
70:3b:3f:ba:73:91:a3:47:a2:52:f8:19:73:a1:90:01:c5:ee:
9a:87:a7:09:42:1a:d3:89:ac:1b:a1:9b:2a:9c:3e:09:c3:f9:
f0:62:1f:05:f4:02:35:96:17:f6:15:cb:d6:98:b2:11:b8:90:
7c:bb:a7:39:66:89:98:d4:68:29:e0:e9:2f:18:4c:76:b3:e8:
36:38:54:5d:80:32:68:ba:e9:bf:15:af:d3:55:8a:d8:11:89:
03:8b:35:2f:99:2c:f8:62:76:de:24:7f:50:89:d8:5f:41:ee:
ac:69:c9:e8:e9:df:ae:2e:11:04:03:d8:fa:12:2d:68:b9:55:
a7:ee:0f:41:8a:d2:ff:ed:59:f5:7d:91:e6:57:44:c1:6a:29:
74:de:2e:11:e3:1b:5e:5b:3e:04:ce:22:65:46:fd:ca:54:d3:
21:31:14:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 13:11:30 2025 by rpki-client