Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft
File: dzDRbvGVhk8NvoqGca-2N2g7djs.mft (raw, json)
Hash identifier: +fDBeSCVvGehqEMrGEfWHUH1Rjj/Xzinu+Y8YGd7swI=
Subject key identifier: 51:4A:E0:56:D5:73:88:81:FA:35:1B:AF:5F:B6:74:54:2D:B6:E8:29
Authority key identifier: 77:30:D1:6E:F1:95:86:4F:0D:BE:8A:86:71:AF:B6:37:68:3B:76:3B
Certificate issuer: /CN=7730d16ef195864f0dbe8a8671afb637683b763b
Certificate serial: 019A71B7E560663E96A69BB152BAD0512938
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzDRbvGVhk8NvoqGca-2N2g7djs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft
Manifest number: 3D
Signing time: Tue 11 Nov 2025 07:01:08 +0000
Manifest this update: Tue 11 Nov 2025 07:01:08 +0000
Manifest next update: Wed 12 Nov 2025 07:01:08 +0000
Files and hashes: 1: 0lt-q8djajXZSW3y7vmC1ACoEI4.roa (hash: PA0Abb9rgpKbk80NoqHuVJw2zbwCWQARy+i28/n0L1A=)
2: dzDRbvGVhk8NvoqGca-2N2g7djs.crl (hash: vC54mwFq7JdnKGzIwd4/daeYjl0jK4xWnY+p/9GLMIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzDRbvGVhk8NvoqGca-2N2g7djs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:e5:60:66:3e:96:a6:9b:b1:52:ba:d0:51:29:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7730d16ef195864f0dbe8a8671afb637683b763b
Validity
Not Before: Nov 11 07:01:08 2025 GMT
Not After : Nov 12 07:01:08 2025 GMT
Subject: CN=514ae056d5738881fa351baf5fb674542db6e829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:34:32:10:0c:84:d8:51:db:5f:a7:4c:e7:e4:
c6:04:09:89:22:df:8f:8c:fc:c1:9c:48:59:e2:64:
03:43:5a:1b:9e:4b:9e:44:14:c5:a8:2e:55:c8:3d:
17:c5:39:fc:7a:bb:d8:e3:bf:84:41:01:1b:a3:2d:
87:76:4c:58:6c:50:05:ff:66:3b:4f:85:ac:c4:eb:
12:1e:3c:c1:69:3f:3d:8a:81:08:08:13:43:20:7e:
62:08:94:f7:c1:30:be:3f:f4:5b:ab:6a:8f:50:e6:
99:c2:1f:f2:1d:9c:69:bb:f7:bf:53:6d:34:d8:d9:
a0:70:17:ae:15:1b:0c:df:63:9c:9e:7f:d2:22:20:
02:d1:11:d5:3a:c9:ad:33:40:d1:60:aa:ff:fc:87:
99:bf:61:33:29:cf:c7:8d:5e:14:d6:88:38:cb:c2:
b3:1f:20:76:9f:d1:bc:19:18:f6:9b:81:b1:51:bd:
e5:a2:77:7f:b3:f1:c5:15:50:8d:05:b9:59:b2:3d:
26:e7:14:9c:2f:b8:55:48:92:65:11:a4:c3:30:ee:
d2:16:c8:3d:0a:bf:dd:5b:9a:bd:83:23:6a:bd:1f:
81:2f:d1:75:80:82:75:ed:fd:b3:92:fc:23:cb:c0:
4e:49:c4:e2:3a:89:b5:b0:84:fa:1c:70:11:d3:ac:
14:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:4A:E0:56:D5:73:88:81:FA:35:1B:AF:5F:B6:74:54:2D:B6:E8:29
X509v3 Authority Key Identifier:
keyid:77:30:D1:6E:F1:95:86:4F:0D:BE:8A:86:71:AF:B6:37:68:3B:76:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzDRbvGVhk8NvoqGca-2N2g7djs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:4f:46:b2:45:5a:e4:11:96:39:1b:54:99:15:f0:50:52:aa:
0a:ce:48:0b:3b:52:79:ff:76:65:1a:12:a8:17:e2:ca:db:98:
93:d9:c5:73:cc:1b:7c:db:74:cb:d6:fe:6b:cd:99:d3:16:9f:
5c:ea:a9:cf:65:69:6c:94:14:fe:70:7b:c9:44:5f:53:03:07:
4f:92:ba:7e:24:cf:f3:1a:f8:96:cd:ce:8a:43:ca:53:09:d2:
fe:d8:f2:8c:a3:93:47:e3:4e:b3:a6:29:88:d4:14:3d:1f:9b:
f9:33:70:9b:e9:21:ce:31:8c:fc:2d:63:c4:bd:37:aa:3e:4d:
cf:dd:95:5c:e2:38:26:87:cd:aa:99:8e:68:5e:8b:6d:b5:e7:
9d:6c:83:d6:af:42:f8:73:9d:56:ee:32:97:58:b6:0d:8b:95:
25:c3:92:06:e2:3a:e9:6a:3d:3f:64:6e:0b:62:1b:fb:89:b2:
ea:11:94:23:6d:66:a1:39:11:c1:b0:91:a3:dc:e0:bb:49:fe:
0f:ef:bd:74:1a:7e:ab:ef:8f:b3:a2:ff:3d:b4:10:71:e4:54:
85:3e:7d:8d:01:9e:01:5f:bc:aa:95:13:06:63:da:5a:76:0a:
b8:27:bf:2a:97:9a:e6:f2:b7:7b:c2:e1:c6:9a:d3:ce:1e:36:
b4:73:eb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:23:35 2025 by rpki-client