Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
File: Dri8RONvrhbTcQL9DVGfKE1mPZA.mft (raw, json)
Hash identifier: do8ycLQpARFm7I2Qrl7MuKQ95dUgePk8lSvpKRIOYeU=
Subject key identifier: 33:33:42:FB:97:73:F7:B8:59:4A:CC:3F:F3:78:06:54:DB:72:74:40
Authority key identifier: 0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
Certificate issuer: /CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Certificate serial: 019A7293435D9FCABA2B37194D2205667D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
Manifest number: 166A
Signing time: Tue 11 Nov 2025 11:00:44 +0000
Manifest this update: Tue 11 Nov 2025 11:00:44 +0000
Manifest next update: Wed 12 Nov 2025 11:00:44 +0000
Files and hashes: 1: Dri8RONvrhbTcQL9DVGfKE1mPZA.crl (hash: 4C/u4Q1cAwA8InZtxP6WI6NSgmg5uABzRQnwXDztV1E=)
2: EnQM4_whnPJeaxWRQxPEz7dH7rY.roa (hash: anAGsxZMEMPM7WeK+BVeddK3oakg7+TLd3wIh7D05ik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:43:5d:9f:ca:ba:2b:37:19:4d:22:05:66:7d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Validity
Not Before: Nov 11 11:00:44 2025 GMT
Not After : Nov 12 11:00:44 2025 GMT
Subject: CN=333342fb9773f7b8594acc3ff3780654db727440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:32:dc:ab:0f:6d:d4:a7:85:9b:5f:e3:c7:d4:
a2:de:ff:ec:61:32:a3:1d:81:9b:97:ac:a3:37:8f:
25:66:4d:60:4c:4f:a4:8f:31:9b:f7:3e:9f:f5:e3:
92:1f:dd:9b:12:75:22:ec:ed:2a:9b:ed:d2:31:52:
de:9b:52:5f:a7:bc:48:e8:d2:c9:90:b0:96:67:61:
e4:e5:10:9f:ec:14:64:3f:26:cf:12:9d:46:e0:e4:
ea:b4:12:ba:5c:5e:fe:39:8c:53:ba:e1:2f:02:fe:
72:29:9b:d7:81:a3:11:4f:a3:5b:a5:26:5f:59:ce:
49:93:e1:ed:50:59:3c:09:a2:e6:a5:da:e6:e6:73:
00:40:ef:bf:18:0b:1b:45:e2:25:d4:d4:95:cd:4e:
4b:6c:f6:03:00:cc:e8:f7:8d:94:be:87:ed:09:ac:
27:01:b7:a3:55:53:29:45:cd:39:05:0b:93:6f:30:
7d:da:21:89:be:a8:fe:b0:04:e6:d0:f9:2f:b0:28:
c5:e3:25:26:55:70:bb:23:f5:ba:38:8a:d4:33:e8:
eb:63:d8:97:ed:70:ee:6b:e6:98:53:7b:2a:bf:2e:
c7:90:9b:16:17:8c:95:1d:d0:71:97:d9:d7:74:ef:
3d:1b:ec:b1:6d:d3:d7:d6:32:be:25:8c:0f:70:52:
74:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:33:42:FB:97:73:F7:B8:59:4A:CC:3F:F3:78:06:54:DB:72:74:40
X509v3 Authority Key Identifier:
keyid:0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:49:74:1a:36:64:2b:56:79:25:bb:cc:6c:a9:d2:0d:ce:aa:
a1:42:ec:d5:00:12:75:84:5d:57:8d:a6:09:68:e3:f0:01:f3:
a6:ad:90:96:23:00:d7:ce:74:fc:82:44:b1:f4:e6:ec:4b:ed:
b2:65:27:54:b0:aa:f1:fd:eb:e2:00:df:80:c2:3c:ed:98:ff:
7a:7d:06:33:4c:d8:cd:42:b6:f2:9d:ee:27:6f:bd:81:b1:cd:
99:da:de:d3:6d:5b:48:5b:9d:2e:57:1e:bb:be:6d:b5:79:10:
73:84:28:f1:97:1d:f4:b5:47:d8:c1:e7:2a:6d:42:e2:c3:d0:
87:fd:e2:6a:49:2c:8f:ea:57:b8:41:f0:4b:e5:80:a5:de:a3:
c7:62:d0:4a:ef:50:bb:85:6f:2b:b1:48:69:0e:8d:de:b2:b9:
8f:5b:20:d4:8b:5f:21:9a:c6:ab:19:6b:aa:06:c1:8f:9b:4e:
69:db:6e:0f:22:68:de:fe:dc:af:80:e7:29:b0:6f:34:1a:76:
82:63:fd:5f:da:54:bb:8a:b9:d4:49:84:5d:27:d6:da:f2:13:
38:65:d2:32:db:cd:ed:46:5d:bb:6c:81:8c:fe:f5:e5:ab:2c:
73:43:f0:30:1e:df:40:54:12:f1:cc:8a:24:0c:7d:7d:ce:1e:
a1:8c:54:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:22:01 2025 by rpki-client