Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
File: DKtCI5upRIWzELVRXczH_u2SIFw.mft (raw, json)
Hash identifier: 6KKWzA4VkgMzwiF9WbsdQJyIJW9ZHfQ4uEJPHaHTPow=
Subject key identifier: 52:49:43:B7:A6:25:55:FE:E6:EE:50:A1:E5:75:56:6F:39:6F:86:AF
Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c
Certificate serial: 0199239FB894C43327FF930AE37A44E3A612
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
Manifest number: 15B1
Signing time: Sun 07 Sep 2025 10:01:33 +0000
Manifest this update: Sun 07 Sep 2025 10:01:33 +0000
Manifest next update: Mon 08 Sep 2025 10:01:33 +0000
Files and hashes: 1: DKtCI5upRIWzELVRXczH_u2SIFw.crl (hash: ImFXy0vkP745zkSd9BN4CnP5895x3eoCC9VZH3fln40=)
2: U2UqHVAbFqT-DpJ2VeePtrrb8ik.roa (hash: pXyykD/gM3hsVstV7hOq0+tHLwMN2H8uNSnz2A5Kgw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:b8:94:c4:33:27:ff:93:0a:e3:7a:44:e3:a6:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c
Validity
Not Before: Sep 7 10:01:33 2025 GMT
Not After : Sep 8 10:01:33 2025 GMT
Subject: CN=524943b7a62555fee6ee50a1e575566f396f86af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f9:d2:c3:48:a2:b0:7d:78:1d:43:67:d4:de:
cf:a3:7e:6c:4c:b6:bf:c1:65:58:d6:42:a4:bf:62:
57:cd:51:46:d6:b6:b3:ba:01:32:a4:8a:b5:46:3c:
5f:dc:15:53:83:2e:ed:1d:81:f9:5e:01:16:97:2a:
da:4e:e9:75:7f:23:66:46:bf:32:9f:75:d2:08:41:
80:48:cb:33:c7:6d:e7:d9:1f:3b:36:00:06:fc:0c:
4a:44:69:47:84:89:32:23:c8:8b:08:d8:60:7a:a6:
67:bf:e4:c8:21:98:7f:16:37:bf:c1:f8:f0:c4:f1:
34:fd:c9:59:26:d8:26:cf:d0:00:62:a5:0e:f9:a4:
c1:f2:0f:c6:64:0c:fb:c2:d4:89:d8:55:60:e7:1d:
e6:a3:50:e5:aa:c3:82:5a:59:f6:c2:44:8c:34:1b:
a0:c1:18:c5:05:6a:48:75:1b:62:f5:b9:88:8b:ef:
e5:e7:03:ac:5b:a0:56:c4:9e:b9:22:58:0e:1e:69:
1b:e8:1a:d7:0e:fa:49:c6:3a:c4:3b:a1:b3:2b:d7:
39:99:40:7e:ae:f5:4b:13:39:c0:f5:73:6f:b5:07:
fb:8c:45:de:3a:18:67:be:1b:8c:c2:4a:1a:bc:6b:
b3:17:88:57:e4:81:0a:59:72:e6:d7:36:07:56:d0:
8e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:49:43:B7:A6:25:55:FE:E6:EE:50:A1:E5:75:56:6F:39:6F:86:AF
X509v3 Authority Key Identifier:
keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:3e:8d:dc:5d:71:b7:aa:35:da:16:35:74:cd:62:ac:ee:b0:
e0:f4:a6:77:7f:5e:ae:bf:8a:a8:2c:16:6d:5c:72:83:c6:27:
40:79:b2:3d:5b:51:26:d8:65:01:f5:4f:47:6d:f0:fe:8b:90:
b6:ae:81:77:08:9f:7b:80:0f:40:07:8a:8c:f8:17:c6:cc:cd:
d2:22:d0:35:5e:4f:e9:f5:a6:ca:96:c6:dc:01:c8:2b:aa:2f:
c7:7a:a9:5d:9e:eb:2b:14:0e:5a:ec:15:4b:22:c3:04:96:fb:
0e:07:49:81:34:f4:77:bb:7f:56:d6:e0:7f:7e:fa:ff:f7:bc:
ef:2d:f2:bb:69:0e:00:d7:76:2e:57:70:6d:cb:f4:99:4f:5b:
b2:75:9c:e1:e4:bc:95:6c:1e:be:cc:bf:f8:91:a5:7a:01:b8:
bf:9b:4e:04:69:47:46:d1:e5:93:75:67:18:43:46:b6:2e:20:
23:ae:64:7f:08:f0:9f:0a:38:4e:fe:f9:ad:5a:66:ac:be:f5:
88:a5:2e:32:bb:94:28:36:85:2a:0a:84:03:5b:73:55:5b:65:
b7:3b:9b:49:b5:9c:ab:20:1a:17:ca:54:e1:41:dc:e0:46:ad:
8f:ae:8e:50:54:57:6c:75:70:80:d7:02:c8:44:96:4d:99:6c:
b6:5f:4f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:49:31 2025 by rpki-client