Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
File: dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json)
Hash identifier: Uo/mcvci2qBqnKEhVMAIWZPqultJ80KZQyKf8xcO1qg=
Subject key identifier: DE:FF:2B:B6:94:5D:AC:1F:AC:65:A1:52:AB:49:89:BB:1C:FD:0B:3D
Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
Certificate issuer: /CN=75714b581ada196e3551c08ce76243be058b44eb
Certificate serial: 019A70DC6C3437F702BBB80E861924984C30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 03:01:25 +0000
Manifest this update: Tue 11 Nov 2025 03:01:25 +0000
Manifest next update: Wed 12 Nov 2025 03:01:25 +0000
Files and hashes: 1: 0dwLJQRpdsuNfuiofPA4PjO0U8c.roa (hash: xvhwiBzc6sj9frR0O87jctOS5dj3sqKjh7OcpHO4MQo=)
2: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: +gGgWFn7VVfg04h/3wC6eFQBfyyeDzwYQmBa4mNRpvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:6c:34:37:f7:02:bb:b8:0e:86:19:24:98:4c:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb
Validity
Not Before: Nov 11 03:01:25 2025 GMT
Not After : Nov 12 03:01:25 2025 GMT
Subject: CN=deff2bb6945dac1fac65a152ab4989bb1cfd0b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:43:57:1a:2c:22:64:60:f7:1b:c6:66:76:07:
a5:b9:d7:35:0f:3f:6d:e5:6a:26:4e:f6:e5:4c:ee:
34:18:c0:e2:69:71:cf:a1:38:42:f5:56:96:c7:ed:
bf:98:e8:c4:f6:e6:35:82:9f:98:75:20:94:a3:f1:
a5:67:2b:36:c9:aa:05:80:04:eb:43:73:ef:c7:31:
d5:0d:1f:6e:74:66:f9:5f:83:20:b3:a8:1a:80:b2:
b4:94:b8:90:b7:4d:31:84:97:3a:d6:49:04:ff:02:
c3:22:e8:b7:6c:e4:81:d1:f6:dc:e6:ef:9c:b3:55:
ad:3b:71:3b:9f:a6:39:81:86:6e:14:1d:75:0d:2c:
e9:5c:06:98:06:7e:de:4f:37:1f:10:d2:6b:20:fb:
e3:cf:10:95:73:98:01:b0:68:07:62:c7:4e:66:37:
b7:24:c7:be:40:60:8b:3d:eb:63:45:b1:74:f4:38:
19:3e:b9:e6:b6:7d:44:8b:62:13:86:7d:4f:bf:07:
b7:32:27:4e:4b:b2:82:5f:a8:42:b3:0e:bc:14:fa:
75:7a:5e:85:b7:95:82:cc:ef:aa:32:84:8c:6c:eb:
07:ee:87:2d:77:1e:e7:0b:0e:a2:a5:e2:ee:86:b0:
27:d0:1f:77:35:cb:64:9c:4e:56:80:f1:1b:25:5e:
ac:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FF:2B:B6:94:5D:AC:1F:AC:65:A1:52:AB:49:89:BB:1C:FD:0B:3D
X509v3 Authority Key Identifier:
keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:97:dc:c8:2d:6f:0e:17:e5:a3:be:79:2c:d8:91:d5:ea:cb:
59:0e:37:5c:a2:be:e1:14:f1:fc:3c:e3:71:84:97:45:64:ea:
65:98:d6:ba:34:f3:ef:64:67:f7:c4:d4:06:89:5e:39:52:43:
f1:e3:be:61:ad:d0:29:5a:da:b8:83:9d:03:49:17:e3:1a:36:
b9:bb:5b:a4:4b:27:ea:1b:da:32:a1:83:e1:5e:4a:f2:ba:77:
f6:0f:07:91:3b:d5:c1:a7:5a:89:96:b0:14:28:22:69:e2:ba:
01:df:a5:8e:2d:92:ce:e1:5c:c3:06:a7:4b:95:6c:b3:f2:49:
cf:ff:95:2b:3e:82:05:d8:ec:f0:40:ea:0b:f9:e7:75:71:4d:
ad:5e:57:c4:c0:29:d3:fe:41:6e:de:35:8d:7a:f5:d3:ce:b5:
3f:96:63:a7:82:2e:65:1a:07:bc:c0:fc:25:98:91:2e:e0:19:
fa:22:e8:d7:e5:bd:dd:12:b1:a4:bc:eb:26:65:a2:b1:8d:70:
8e:52:d0:6b:37:51:da:bf:9b:58:87:fd:6c:34:bf:97:50:77:
8f:ba:20:bd:1a:e2:d5:ea:93:3e:61:06:72:c8:f1:ba:5c:b4:
ae:ab:f4:46:65:ce:d2:2d:01:a2:b0:3e:ec:37:0d:1d:aa:48:
db:1e:7b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:53 2025 by rpki-client