Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier: +tjif3Q1wIWPtF/VZpDXL5Vkyn+lJ1PL4kJuLHmgKw0=
Subject key identifier: CB:CA:8A:C2:61:56:48:99:FE:16:F1:3F:4B:F9:D2:78:A3:A9:68:03
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial: 019A300F2E8139E85AE7879684CA1A0F216B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number: 1397
Signing time: Wed 29 Oct 2025 13:01:32 +0000
Manifest this update: Wed 29 Oct 2025 13:01:32 +0000
Manifest next update: Thu 30 Oct 2025 13:01:32 +0000
Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: Bnewf/KrQ4dCIDtCBWntZVSSgSB0twF+ElolxVoi8jE=)
2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:30:0f:2e:81:39:e8:5a:e7:87:96:84:ca:1a:0f:21:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
Validity
Not Before: Oct 29 13:01:32 2025 GMT
Not After : Oct 30 13:01:32 2025 GMT
Subject: CN=cbca8ac261564899fe16f13f4bf9d278a3a96803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:40:f6:b8:e5:e9:27:fb:35:8e:80:30:b9:1e:
79:75:be:14:ad:9b:33:5e:79:f3:07:3e:78:a1:d7:
3a:53:03:7d:c2:05:f3:5a:b9:22:35:44:aa:72:bc:
f3:87:3e:4d:27:dd:7d:49:78:a7:eb:8e:8f:66:72:
48:6e:83:db:c3:e2:1d:8d:2f:2c:57:29:49:aa:2c:
02:8d:8b:17:b0:1d:e2:d6:ca:31:00:a7:87:23:f1:
bd:6a:ac:37:e6:54:c1:0f:25:0d:39:b5:ae:24:73:
46:a9:32:f9:9f:28:b1:2f:21:cd:e6:00:12:46:ee:
4f:21:e0:5b:94:bb:0b:1a:42:e0:93:d8:17:4c:93:
54:c6:da:06:7e:71:2f:2d:e7:7a:e3:9c:46:d7:8b:
6e:ed:e2:f6:ab:ee:b3:55:2c:04:00:89:90:8e:9a:
f0:e8:62:3b:da:bd:7a:44:f7:8c:40:d1:93:f2:8c:
49:7c:64:97:45:cf:92:de:14:31:62:78:87:82:b5:
7e:07:6a:49:96:cd:6c:6d:8f:95:f1:04:9b:d2:1e:
f9:93:38:51:4b:78:b3:89:76:19:6c:8a:f2:a0:a3:
1c:23:7f:18:23:3a:12:49:34:6d:1d:aa:8b:31:ba:
43:79:d9:16:9f:6e:4b:96:a9:02:4e:46:74:9c:66:
33:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:CA:8A:C2:61:56:48:99:FE:16:F1:3F:4B:F9:D2:78:A3:A9:68:03
X509v3 Authority Key Identifier:
keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:bc:89:fd:a8:12:3c:07:fa:d5:b1:91:cd:75:bb:78:28:7d:
cc:78:75:a1:8d:f2:28:78:82:1c:e1:84:e0:ea:02:2d:f6:4d:
8e:af:89:88:a0:ff:4c:f3:38:19:eb:53:14:14:7a:fe:52:83:
ef:21:22:e1:0d:d3:39:2c:63:27:a3:7b:97:a3:58:96:c7:56:
d2:2d:84:c4:c9:5d:2c:0b:5e:ad:59:de:31:d8:5f:9d:28:44:
38:58:44:15:44:b2:8e:ae:a8:24:46:92:15:4c:1b:18:e6:75:
d6:41:a6:32:51:aa:d4:5b:52:8b:db:c4:bf:45:ee:23:c8:c1:
8d:07:98:a3:dc:15:c8:f0:2d:7c:4b:d6:96:bc:a1:ad:00:e8:
ba:7c:53:84:9f:57:a0:77:f4:bb:1f:de:a6:68:46:17:d6:77:
68:e1:52:9c:b9:4f:e3:25:ef:bc:83:de:8e:52:55:52:66:1e:
2f:d8:ca:8e:37:f3:b1:31:25:83:6f:12:9f:20:d7:bc:45:03:
37:9d:45:3d:c6:27:a7:56:87:af:72:cf:89:f8:f1:64:ff:8b:
12:10:3b:69:89:28:40:5b:be:83:31:45:e2:5d:ab:8f:b7:97:
c8:58:e0:94:1a:74:6d:fa:46:e9:0a:57:ce:65:a0:76:dc:4d:
5b:cd:22:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 16:13:20 2025 by rpki-client