Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft
File: DyP3PWT22_gdUdNYBUgVaM3YGHU.mft (raw, json)
Hash identifier: TvoSKs11Pl4qCrjYt+PTAT+CU5QNrn2UZy44e/3TgGg=
Subject key identifier: 40:A6:1B:4E:98:AB:DA:C4:CC:DC:CA:EE:7A:A3:48:38:8A:3E:DF:8E
Authority key identifier: 0F:23:F7:3D:64:F6:DB:F8:1D:51:D3:58:05:48:15:68:CD:D8:18:75
Certificate issuer: /CN=0f23f73d64f6dbf81d51d35805481568cdd81875
Certificate serial: 019A71499F72CA87A1DB8D6133B8FAC3FFC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft
Manifest number: 0EE8
Signing time: Tue 11 Nov 2025 05:00:41 +0000
Manifest this update: Tue 11 Nov 2025 05:00:41 +0000
Manifest next update: Wed 12 Nov 2025 05:00:41 +0000
Files and hashes: 1: DyP3PWT22_gdUdNYBUgVaM3YGHU.crl (hash: ZMJVRR1M8FAYO29/aucaJpycFzniCIYHvQODDDd7HiE=)
2: _mseEGqhmjk5DbDhY65kEG9l3Do.roa (hash: 4EKC+djlGJVTHQZoZJyp3llh1Qpa/Gw18st2TTUCkbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:9f:72:ca:87:a1:db:8d:61:33:b8:fa:c3:ff:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f23f73d64f6dbf81d51d35805481568cdd81875
Validity
Not Before: Nov 11 05:00:41 2025 GMT
Not After : Nov 12 05:00:41 2025 GMT
Subject: CN=40a61b4e98abdac4ccdccaee7aa348388a3edf8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ea:c4:c3:bb:de:32:42:c9:dd:a0:e5:fb:7e:
24:5b:77:6a:24:03:7d:5a:b1:71:d1:18:c9:f4:c2:
c0:cf:a0:a0:f7:42:33:00:ad:4e:e2:fe:51:c8:4b:
cc:9f:b0:b3:8d:76:2a:06:fd:aa:53:be:6a:e3:8b:
1e:a0:01:a0:55:94:ca:27:f7:fb:45:6c:a6:c1:8c:
5a:ac:c8:79:fd:17:47:8b:eb:d7:c5:6d:0d:59:cf:
64:be:8f:a6:cb:91:3a:b1:73:e8:a8:7e:04:9e:ca:
fc:a1:f7:73:6e:cf:12:7f:25:24:28:06:4c:1a:3c:
e6:65:0b:83:f2:5f:c9:ee:bf:c2:da:4d:d6:1f:30:
b2:9b:bc:2c:47:ff:c7:72:f3:44:61:e8:76:25:02:
a6:83:fc:cb:f2:52:58:d3:6c:54:6d:c8:2e:69:4f:
bf:fa:94:53:41:c7:52:69:05:88:32:1d:9d:14:fb:
3a:41:db:43:0c:e3:8d:5a:57:6e:88:fe:82:23:b1:
19:76:08:88:40:62:e4:54:75:51:8e:ab:58:1c:fb:
17:23:e2:3b:ee:38:4b:53:44:2a:ab:3f:ce:a9:9c:
35:4a:36:0a:ce:b9:ba:4d:87:7b:f2:c6:69:f8:4f:
d7:ab:6e:98:d7:f9:31:b9:b7:e5:87:88:ee:cc:76:
5b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A6:1B:4E:98:AB:DA:C4:CC:DC:CA:EE:7A:A3:48:38:8A:3E:DF:8E
X509v3 Authority Key Identifier:
keyid:0F:23:F7:3D:64:F6:DB:F8:1D:51:D3:58:05:48:15:68:CD:D8:18:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:f9:43:96:96:5c:7c:db:c7:bb:bf:00:be:b2:49:ca:25:12:
74:82:74:b7:6b:21:55:19:ff:96:89:a4:f3:b4:02:ad:3b:a7:
63:03:9b:ca:d7:e8:04:2a:6a:41:9c:2f:ef:b8:21:01:60:c3:
65:4e:59:eb:08:91:fc:d2:89:51:b8:91:31:ca:d3:75:ef:ed:
54:f2:d6:20:e3:d7:f8:7a:0d:e8:b2:ff:24:9e:d3:c7:fc:be:
36:db:97:73:c7:11:32:fa:3c:77:67:1f:d2:2b:54:1c:08:c3:
77:31:5c:ec:35:d1:5b:65:6b:a6:c8:14:01:c3:af:4e:ff:b9:
80:43:cf:68:26:99:6e:9c:49:af:6a:3d:af:d2:b8:64:72:c2:
1c:51:ab:6f:a7:de:0e:a1:3f:45:70:d8:85:47:10:0a:92:2c:
e1:66:46:37:97:3c:1f:84:07:9e:52:01:2b:48:de:d4:ff:7b:
3e:87:f0:89:d9:34:54:3d:79:1d:56:6a:25:c8:c8:c9:f2:5e:
cd:4c:bb:d7:6b:82:92:cf:24:cb:a3:6f:f8:ff:08:59:f3:57:
5b:7c:8a:1e:a8:e1:84:90:e1:53:66:65:bc:f8:ef:4e:8f:c1:
27:3a:7f:d1:eb:36:32:fe:65:a1:6e:17:a6:bb:2e:55:b1:73:
5c:2f:ea:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:24 2025 by rpki-client