Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier: Iia4OcLaeJBRdUL6CaGc0B3KrqDuAZC33Q90YOAeVX8=
Subject key identifier: CC:2B:DF:DE:FC:52:26:58:75:63:CD:9B:C8:51:BF:DA:59:25:16:46
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 019A48BB6421DF4121D0E4386190EA6218D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number: 12AD
Signing time: Mon 03 Nov 2025 08:00:31 +0000
Manifest this update: Mon 03 Nov 2025 08:00:31 +0000
Manifest next update: Tue 04 Nov 2025 08:00:31 +0000
Files and hashes: 1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: pRmqZdYD/0MIwMyZjX/vlaKGjRGsOj3Lta34oOAzaag=)
2: DnlnaiUOn3bGRjdw-Yb1fkUsNto.roa (hash: E1ibhwBfmIcFn7h/JxzOSZ/iplWkTSQE9ZGFZ1Ek2Kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Nov 2025 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:48:bb:64:21:df:41:21:d0:e4:38:61:90:ea:62:18:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Nov 3 08:00:31 2025 GMT
Not After : Nov 4 08:00:31 2025 GMT
Subject: CN=cc2bdfdefc5226587563cd9bc851bfda59251646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7e:05:84:52:a4:77:a9:0c:cd:08:ea:92:6f:
b7:8b:a8:d2:ec:70:14:38:bc:f7:23:6e:5e:66:b9:
cf:b8:f8:57:a3:a5:41:26:3f:06:2d:d9:c3:d7:f4:
f6:79:6c:b7:ec:8a:1e:a0:75:49:43:46:ed:97:51:
dd:44:49:fd:50:97:47:11:cc:83:c6:d5:e2:45:77:
8a:c5:6a:bf:44:71:a1:18:d4:69:b9:66:20:af:7e:
0c:6b:52:00:4d:5a:9c:2e:c3:1f:23:01:8b:ca:72:
3c:11:a5:57:f2:37:0a:7c:2d:26:f0:73:26:c6:b1:
19:4c:3c:33:d9:6d:a1:50:13:2f:9f:c4:a8:0b:c8:
8d:0e:5b:ec:6d:3b:2f:2e:1a:94:0a:d4:05:d6:7c:
25:96:ee:6e:b8:35:c1:26:3a:dc:b0:73:35:65:cc:
f5:42:d9:17:d8:05:e7:1f:73:5e:ec:7f:88:b5:fd:
c1:1f:1e:a9:e4:9f:b0:aa:9a:d9:2f:50:94:af:73:
09:64:f7:50:6f:b9:b0:c2:64:f1:e6:1e:b6:5e:e6:
ab:90:fb:cf:6b:0a:db:54:f2:f9:fa:71:c9:8d:f5:
01:69:25:65:55:28:73:3d:a9:77:94:71:b5:f8:aa:
8d:24:b1:7b:be:c2:3b:1b:ec:7a:f4:eb:58:3d:b2:
41:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:2B:DF:DE:FC:52:26:58:75:63:CD:9B:C8:51:BF:DA:59:25:16:46
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:96:4e:12:e6:e3:6f:cf:07:32:f4:8e:2e:73:a0:0b:ce:6d:
41:61:72:06:1a:a0:d8:11:79:70:02:52:22:c6:3f:2a:74:4a:
5c:ca:b0:bc:a7:10:f4:f0:40:e5:37:9f:5d:b4:5b:82:c5:dd:
a0:48:82:dc:f3:1c:d6:9c:6e:5f:df:f5:b0:18:76:5f:fd:ff:
d1:fd:f4:8f:08:4b:d7:be:45:20:b5:43:a6:c1:08:b2:90:67:
ec:2e:94:e5:63:7e:9c:ee:91:e0:fb:39:ec:a5:6e:70:a8:06:
b4:22:85:cb:55:91:0a:f6:3a:c5:48:ac:cc:45:8f:79:f8:71:
e4:f8:23:c3:d5:e9:c1:d4:d0:3f:5b:4d:64:87:ae:49:4b:16:
66:d4:11:c2:ca:f8:d0:20:ae:f7:81:a0:87:22:78:95:44:d8:
80:4d:30:7b:0f:6e:fd:bf:4f:d2:11:32:ab:e7:ae:23:59:b4:
29:f5:40:b9:f4:4d:d5:dd:a0:98:6b:63:99:1a:94:cc:4e:96:
94:6a:f7:a5:b6:a8:fb:d8:bb:aa:1e:fe:1b:82:fb:a7:fd:51:
74:00:c0:ca:87:02:9a:99:c9:18:d9:86:a6:ed:2f:49:a9:0a:
eb:36:ed:2a:e1:f6:da:c0:f7:db:7b:cc:d0:06:81:e4:47:ee:
41:70:3a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 17:35:21 2025 by rpki-client