Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
File: DC-bLoowUI05GSr9WzTuVvd1l54.mft (raw, json)
Hash identifier: zza6TzI8pf9YqA6JHmAVU5PEVIaYlzMbrdTHhgIujZQ=
Subject key identifier: 7C:A1:33:C1:22:2A:42:86:6A:96:E4:83:8C:EA:EA:F0:31:60:A2:AE
Authority key identifier: 0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
Certificate issuer: /CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Certificate serial: 019A2D7ADE2D63427595BDD4C9DEB2E5AD2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
Manifest number: 0ED7
Signing time: Wed 29 Oct 2025 01:00:18 +0000
Manifest this update: Wed 29 Oct 2025 01:00:18 +0000
Manifest next update: Thu 30 Oct 2025 01:00:18 +0000
Files and hashes: 1: DC-bLoowUI05GSr9WzTuVvd1l54.crl (hash: RL1LqowHtj7UiJbq0l25srxi4YMfycufuxjRvHQRCOE=)
2: NWAGhC2XbatfDitWodooC7bbFFI.roa (hash: FWUOW7wQ0G0TGl1V+k/KtSrSZ/FDNVfXj5gqfrNEtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2d:7a:de:2d:63:42:75:95:bd:d4:c9:de:b2:e5:ad:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Validity
Not Before: Oct 29 01:00:18 2025 GMT
Not After : Oct 30 01:00:18 2025 GMT
Subject: CN=7ca133c1222a42866a96e4838ceaeaf03160a2ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:de:82:75:17:fd:fa:43:61:02:4d:04:78:3a:
44:78:41:c8:bb:ca:71:e7:e7:83:98:82:05:10:50:
77:60:f8:c7:58:36:53:83:26:97:b3:e6:df:89:8b:
39:fb:9d:f9:10:85:cd:b9:b3:8e:40:d9:1b:fc:47:
f3:94:5f:a8:08:39:45:a3:65:db:f2:ce:21:f1:be:
d9:49:1c:c1:7f:40:bf:43:00:64:26:24:e8:a4:86:
8f:8b:fc:53:57:2d:d2:68:cd:fd:f6:98:06:f1:5a:
c7:8d:25:06:c6:47:94:56:28:eb:e3:95:e2:b5:44:
9d:6f:b5:d9:2f:a4:1b:16:ae:c0:06:ea:d0:0c:0c:
a7:1d:c4:b1:67:f3:c0:3e:4f:c8:8c:e1:10:71:e1:
6b:0c:05:94:9e:23:6f:5b:4e:4d:ef:15:89:8b:8a:
7d:f3:f5:15:d4:b9:94:e2:55:a7:d1:7c:ff:8e:c5:
55:3a:a5:22:1c:a5:86:9c:d3:39:1e:f4:0a:e7:37:
6e:31:f0:f6:72:6f:d8:79:fa:aa:0e:b2:ab:78:88:
44:2a:6a:6a:58:de:83:ba:81:da:05:e7:bf:fa:69:
b4:93:53:55:b0:fb:c6:af:69:b7:b5:de:94:a1:90:
a9:4b:8f:4a:74:d0:0c:95:28:7c:06:ae:24:17:7e:
5d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A1:33:C1:22:2A:42:86:6A:96:E4:83:8C:EA:EA:F0:31:60:A2:AE
X509v3 Authority Key Identifier:
keyid:0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:04:6a:ca:4c:7c:5e:fb:e0:4a:b3:d0:4e:7a:87:a4:f6:c3:
68:ea:4d:f7:67:28:21:5f:7c:5c:90:3b:1c:5f:8a:d4:62:19:
79:6d:4b:76:a1:6a:79:b6:63:78:5e:f2:5c:ff:f7:c4:65:05:
54:30:c6:24:25:d7:bc:8e:93:20:cb:12:3a:2e:7c:55:07:2b:
bc:87:2c:3a:37:bc:22:8e:4b:17:01:4d:cd:fc:c1:71:64:80:
72:98:fe:4e:e8:64:f4:c7:c6:3b:0b:c1:40:ab:9c:e7:4f:e3:
63:0b:9e:a0:6d:bc:96:a9:9b:42:c8:a2:af:25:f1:9b:6d:fc:
a2:9b:3e:c3:70:aa:4f:fa:6d:4d:72:fa:8a:3f:4a:15:30:26:
05:61:a2:66:fc:e0:42:72:de:b9:15:d4:1c:45:59:a0:a7:07:
93:10:ff:af:37:8a:81:7e:18:cc:f7:13:fa:0a:e4:07:5e:91:
3f:f2:a3:b2:8e:3a:a4:f3:00:af:cb:5f:74:c1:66:a7:49:3e:
b4:f1:30:34:8f:ce:98:98:4b:95:4e:c1:ab:0c:2c:6f:8c:db:
96:94:8f:5c:73:f9:42:07:b7:ae:75:09:29:d4:99:c6:2b:09:
5d:86:47:e0:15:96:37:42:38:84:a1:a0:f8:a5:2c:7b:88:47:
1c:1b:51:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 08:55:51 2025 by rpki-client