Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
File: DKtCI5upRIWzELVRXczH_u2SIFw.mft (raw, json)
Hash identifier: 4eREePPeNoZ7IDc1GULuyqMlEWUknZf3BRjM2x5GP8Q=
Subject key identifier: 00:66:8F:BD:15:CD:F9:B4:75:EF:46:21:7E:2F:28:27:9B:6D:63:05
Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c
Certificate serial: 019A71B90D311373932F39AB8EA7E4883B4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
Manifest number: 165E
Signing time: Tue 11 Nov 2025 07:02:24 +0000
Manifest this update: Tue 11 Nov 2025 07:02:24 +0000
Manifest next update: Wed 12 Nov 2025 07:02:24 +0000
Files and hashes: 1: DKtCI5upRIWzELVRXczH_u2SIFw.crl (hash: pYNhQR8p9wMEP7h2lUraydujgwEFTWsDR0LisXG/kNQ=)
2: U2UqHVAbFqT-DpJ2VeePtrrb8ik.roa (hash: pXyykD/gM3hsVstV7hOq0+tHLwMN2H8uNSnz2A5Kgw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:0d:31:13:73:93:2f:39:ab:8e:a7:e4:88:3b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c
Validity
Not Before: Nov 11 07:02:24 2025 GMT
Not After : Nov 12 07:02:24 2025 GMT
Subject: CN=00668fbd15cdf9b475ef46217e2f28279b6d6305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b9:d8:19:a8:f1:7b:1d:eb:e6:08:6f:ac:e1:
af:d6:5a:7d:7b:50:2c:89:64:9c:53:10:ef:4a:91:
56:81:df:c8:99:e8:38:c5:98:bd:f9:81:6e:f3:00:
42:ba:5c:0a:4f:55:9f:7f:70:4d:0b:c3:7e:13:b0:
56:15:73:6f:e7:8b:bc:56:6e:b3:90:8b:ae:8e:b5:
fa:11:e6:e2:d9:e1:9e:05:ad:1d:8f:10:6f:f7:c5:
35:a0:57:e8:a5:cf:7f:e0:37:38:6d:ed:39:89:fb:
06:b8:01:f4:4b:09:3a:6a:d2:a0:b1:1e:46:12:9d:
72:c7:b4:48:30:3d:6b:58:a4:1e:67:a8:04:49:d3:
a4:0b:03:ae:5c:ed:48:0e:fc:fe:05:0d:f4:f2:85:
32:f1:78:9c:66:97:bc:e4:b9:a9:fa:a6:b5:09:ef:
81:98:14:07:99:4d:fe:c1:21:ea:14:b7:41:9d:d5:
99:d4:75:ca:b4:06:2a:31:5a:52:34:2e:40:1a:28:
a0:4b:c3:0a:b3:6d:46:57:37:90:ec:2a:4c:08:b5:
74:e9:86:67:67:dd:b9:78:51:a1:e8:2a:8e:d4:bf:
b0:bd:55:8b:75:0f:6c:7a:bf:74:e9:0b:83:dd:26:
52:37:b2:66:a2:49:69:1f:17:79:9d:09:48:02:10:
10:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:66:8F:BD:15:CD:F9:B4:75:EF:46:21:7E:2F:28:27:9B:6D:63:05
X509v3 Authority Key Identifier:
keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:5e:ff:34:0e:50:f9:b2:80:4d:1c:01:76:01:ed:23:f2:32:
da:e9:6d:40:9b:51:70:36:9f:0d:29:c8:eb:66:5c:81:9e:2b:
53:8e:c5:7c:ec:c3:42:f9:6b:98:9b:37:7f:20:33:5c:46:dc:
3b:ea:ad:2f:a4:3b:8d:43:56:4e:67:4b:0f:3c:42:72:46:ff:
a5:8c:81:db:89:aa:2c:17:7f:3a:4f:4a:81:9f:dd:e0:28:df:
69:c1:ed:37:91:7a:93:b5:e2:93:0c:74:d0:bf:29:67:11:ee:
80:41:0d:38:3a:18:b8:2b:de:4a:29:e1:e2:e8:bd:c8:b6:c7:
e5:97:c7:88:47:45:d8:ea:f2:b7:d5:03:85:a3:ac:07:c0:02:
18:24:6b:be:0b:d0:9e:54:9e:c9:fa:93:bc:d0:5b:37:48:3b:
6f:17:41:52:0c:33:5c:ef:cd:0e:b4:c9:f7:a2:19:5c:1f:3e:
4d:5a:58:14:fb:4d:f2:05:df:b3:da:ad:3b:ce:5b:86:58:1e:
0a:73:ae:ee:d9:ad:a7:48:1d:2c:c2:f5:1b:37:f0:16:24:bf:
23:1d:19:7c:33:3a:f0:8e:b2:c6:1a:8b:f8:80:4a:8f:7a:ac:
72:9a:a2:3f:a5:3a:5e:6a:e0:c1:4d:1e:a3:b1:67:fc:c5:8a:
f1:8b:be:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:20:12 2025 by rpki-client