Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft
File: dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft (raw, json)
Hash identifier: mF8qVQKZPYLvpU18/zUNRZGOnvbXjjXn43uaOPsZPmU=
Subject key identifier: 0D:5E:AA:15:08:C8:84:87:E5:57:DD:4B:7D:F2:95:E2:D2:E5:1A:1F
Authority key identifier: 75:71:C8:92:99:9B:B4:56:4B:CE:48:0C:92:1B:6F:F1:72:05:EC:C6
Certificate issuer: /CN=7571c892999bb4564bce480c921b6ff17205ecc6
Certificate serial: 0199228C55FE7952B657A1791640E92596DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXHIkpmbtFZLzkgMkhtv8XIF7MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft
Manifest number: 0650
Signing time: Sun 07 Sep 2025 05:00:46 +0000
Manifest this update: Sun 07 Sep 2025 05:00:46 +0000
Manifest next update: Mon 08 Sep 2025 05:00:46 +0000
Files and hashes: 1: dXHIkpmbtFZLzkgMkhtv8XIF7MY.crl (hash: WOiXsRYJwF7Jp0+v9H/GK1vk7elf8Ke+FwFIDtYJ/PA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXHIkpmbtFZLzkgMkhtv8XIF7MY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:55:fe:79:52:b6:57:a1:79:16:40:e9:25:96:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7571c892999bb4564bce480c921b6ff17205ecc6
Validity
Not Before: Sep 7 05:00:46 2025 GMT
Not After : Sep 8 05:00:46 2025 GMT
Subject: CN=0d5eaa1508c88487e557dd4b7df295e2d2e51a1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4c:29:bf:31:ed:46:07:dd:e8:80:fa:37:89:
b9:23:28:2a:dd:51:e5:a1:0c:99:01:c8:f1:9c:36:
59:e4:ff:c1:2f:48:69:dd:38:dd:a7:02:02:af:72:
c8:32:1b:7e:b2:e6:32:57:2c:48:ad:86:2f:a3:ed:
06:0d:ce:84:aa:4e:c8:97:8c:b6:81:0d:8b:a9:94:
82:ae:d2:28:df:4e:b9:22:e6:17:8d:a9:01:d5:0e:
ce:cb:1e:77:3c:c4:5a:ab:db:c5:e3:a0:c7:21:c6:
5e:e8:ad:83:30:45:17:47:1d:54:2a:6f:d2:98:06:
1e:00:fb:09:f2:6a:5e:3f:6f:25:d9:b8:e0:12:51:
2f:cf:ca:31:7a:6b:bf:7d:12:28:fe:68:e2:7f:9b:
57:1e:dc:c6:c7:2b:d5:ba:ba:8d:ba:03:fb:c7:c0:
af:10:5f:4d:1e:22:a8:c6:a4:8c:03:b9:d0:cd:ce:
9a:04:03:8a:93:92:72:15:33:07:b1:9f:b0:3f:9d:
9b:cc:6a:62:23:a0:ac:64:24:c3:c2:7f:66:62:aa:
f7:bd:c3:96:78:6d:45:39:42:b5:52:8b:27:f2:4e:
b1:64:71:9f:36:ec:b8:bf:12:0b:03:74:ca:3a:09:
ec:11:a5:df:84:11:64:32:e9:14:8c:c0:0a:a6:31:
ab:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:5E:AA:15:08:C8:84:87:E5:57:DD:4B:7D:F2:95:E2:D2:E5:1A:1F
X509v3 Authority Key Identifier:
keyid:75:71:C8:92:99:9B:B4:56:4B:CE:48:0C:92:1B:6F:F1:72:05:EC:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXHIkpmbtFZLzkgMkhtv8XIF7MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:fe:ab:a4:8b:df:3b:cc:da:2b:04:58:14:f3:11:96:b2:81:
3c:f1:1d:94:92:f9:69:fa:d9:36:8b:ee:14:8d:e0:89:93:93:
50:7f:c8:95:ab:66:ef:09:2f:a7:81:be:d2:52:d9:28:4b:43:
ce:a3:14:53:d2:3e:7f:f2:41:29:83:ee:6a:71:ad:fd:3b:bf:
6d:4e:a7:95:51:5a:03:9d:61:eb:4b:7c:90:8b:76:18:c1:81:
fd:3c:f0:2a:ff:d0:8e:06:b4:5b:85:83:ec:2c:23:84:57:b6:
f9:28:9a:42:e2:07:16:e9:92:07:34:ce:fc:16:ea:ad:af:91:
ff:7d:f2:82:ea:5f:bf:c7:f9:cd:af:55:eb:72:97:94:c4:62:
5c:b8:a3:b2:f7:13:98:d7:f4:2d:56:dc:f2:a8:29:1e:6d:d5:
7a:ab:d7:7b:c7:e1:e6:2f:e5:c4:a7:22:35:f7:92:6d:85:e4:
e5:dc:c0:c4:6a:6b:6d:49:37:a6:93:6e:b4:67:c3:60:6e:1a:
1f:9e:ec:49:00:09:9b:53:4c:93:2e:a4:74:0d:94:93:ea:74:
0a:df:10:31:08:65:05:d1:7b:39:6b:a9:16:cc:e9:dd:39:5d:
55:ed:16:d2:1f:72:fb:92:e3:be:a2:b1:50:dd:7a:a3:47:0d:
d2:0f:71:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:34:10 2025 by rpki-client