Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: tllzKPJSuIw7QA1c6csrBVug4Ww/hriYiCatUjofmU0=
Subject key identifier: 51:21:D0:2C:0C:0A:D8:99:22:38:26:36:0E:AF:08:8D:F5:2E:97:9E
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 019A71B8293317FB5C3C22CDD65446EF74FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 074F
Signing time: Tue 11 Nov 2025 07:01:25 +0000
Manifest this update: Tue 11 Nov 2025 07:01:25 +0000
Manifest next update: Wed 12 Nov 2025 07:01:25 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: /MCq807wbmYrX6PmeL2ziKv5gaICDxSdcaeoI2P7r7U=)
2: dJjjOIsvcmwG1yw0BY5P71sFVUw.roa (hash: 71ssAltTmbpploHF43pU09n+JXavvKYPHb8mMd4Firs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:29:33:17:fb:5c:3c:22:cd:d6:54:46:ef:74:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Nov 11 07:01:25 2025 GMT
Not After : Nov 12 07:01:25 2025 GMT
Subject: CN=5121d02c0c0ad899223826360eaf088df52e979e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:13:db:91:8d:bd:e2:f5:36:f9:6f:25:fc:63:
cf:03:69:4a:55:c2:8a:23:8c:2d:95:13:a3:97:29:
7d:d5:86:30:74:bc:fe:da:7b:50:5c:1b:04:ff:09:
a4:b3:75:c9:d4:d2:41:ab:1a:3c:ae:23:19:d7:ca:
6b:00:d3:02:61:35:b1:00:a6:62:09:06:be:75:ec:
60:dd:3a:fd:85:5c:9b:55:f3:d3:ee:4b:34:ae:c2:
8f:f2:3f:31:86:ee:54:86:ec:2f:1e:e3:5d:a4:ba:
2f:95:bd:af:05:f1:b1:85:c4:f6:b2:33:ad:ad:64:
26:bd:97:7c:71:16:29:2c:e1:5d:61:4c:95:47:cc:
f4:3e:0f:68:3a:30:52:26:8c:98:fb:e0:4f:36:bb:
69:aa:da:5c:e8:63:42:1a:6c:37:0a:65:c5:84:38:
82:6e:6b:5b:72:7b:66:4f:3c:3d:0e:36:55:95:9d:
a2:cb:60:72:5a:d8:f1:af:c2:ae:74:2e:27:dd:21:
92:a6:be:d4:79:a1:94:a2:f6:b7:8f:13:83:d4:11:
a9:ae:b7:3e:63:6f:d1:cb:47:c0:06:d8:aa:27:a4:
0a:ed:d1:52:76:d7:65:90:03:80:77:82:7d:c9:fd:
6d:c3:99:ad:d0:8d:cf:eb:a8:43:07:8d:b5:01:17:
c1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:21:D0:2C:0C:0A:D8:99:22:38:26:36:0E:AF:08:8D:F5:2E:97:9E
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:f4:fa:42:89:7c:c3:1f:ea:8e:60:13:a0:bf:38:c6:5a:de:
f0:c6:2d:1c:24:de:07:63:75:32:a8:ac:31:fc:50:c8:bc:0f:
33:74:e0:62:c9:c6:d5:60:e8:28:ae:3c:f2:dc:eb:83:9e:6d:
d9:a9:08:92:86:1e:38:d5:08:a1:4f:1f:6e:68:ad:38:5f:3d:
06:58:4c:30:22:8d:ce:9a:97:4e:5d:ce:df:6c:19:bb:05:a7:
a2:c6:61:f7:c4:83:0f:41:9f:9f:8f:e4:cb:be:5d:13:b7:05:
6f:50:6f:9c:ad:96:a9:55:44:c9:92:a5:94:17:42:a0:26:34:
3d:cc:f9:e1:07:94:3e:59:b6:37:a5:12:6e:41:1c:ae:2e:64:
e9:fa:97:64:b4:f8:1f:fc:8c:fe:dc:85:a6:02:11:54:82:6e:
23:1b:7e:31:d7:4b:ff:20:b3:2d:33:1f:4e:35:51:8d:b4:e1:
07:05:d8:73:d0:22:a0:f7:6d:d9:67:1b:24:9b:a7:93:44:b8:
6a:6a:a4:52:3e:1a:b2:c1:2b:fd:9d:2e:04:52:b9:63:c6:68:
ee:59:58:60:9e:d4:71:94:2c:de:fb:c4:04:e1:1c:bd:78:ad:
28:61:4a:fc:09:aa:98:b3:f9:4e:64:6a:27:a7:6a:53:69:bb:
6a:c8:85:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:40:33 2025 by rpki-client