Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
File: dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft (raw, json)
Hash identifier: JpCHZKUUypr6uV3ZCoZvVaOxpjS9RWnCAEx65byoAkc=
Subject key identifier: 95:68:44:53:29:C7:2F:4F:5B:07:2B:3C:99:05:2D:A3:72:9F:B4:9B
Authority key identifier: 76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
Certificate issuer: /CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Certificate serial: 019A71B8323E309CC58EB9ED873EC8120104
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
Manifest number: 054A
Signing time: Tue 11 Nov 2025 07:01:28 +0000
Manifest this update: Tue 11 Nov 2025 07:01:28 +0000
Manifest next update: Wed 12 Nov 2025 07:01:28 +0000
Files and hashes: 1: dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl (hash: 2pJ5Ww773s/Qi1QU3haT8Oaxn77vyGrW8j8jiTnhyfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:32:3e:30:9c:c5:8e:b9:ed:87:3e:c8:12:01:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Validity
Not Before: Nov 11 07:01:28 2025 GMT
Not After : Nov 12 07:01:28 2025 GMT
Subject: CN=9568445329c72f4f5b072b3c99052da3729fb49b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e2:5e:e6:6e:e0:66:8b:0e:79:7a:43:d3:1f:
b5:69:19:4a:ed:ec:6b:3d:44:1a:f0:44:b6:b7:2d:
fa:54:ab:27:a3:dc:61:30:49:a2:c2:60:02:c8:50:
54:33:7a:65:ed:01:5f:d7:1c:28:17:f0:0f:22:57:
2b:84:34:0d:73:ab:49:73:f4:3f:73:8b:77:16:90:
bd:49:2f:37:28:0f:8c:fb:2f:23:61:46:69:04:7f:
f4:3e:f3:a4:d8:b0:5b:66:21:38:68:29:21:6d:d4:
5f:2a:d6:ac:30:6f:fa:bc:c0:80:88:39:5c:67:8c:
9e:fa:16:5c:c2:fb:62:ff:d8:eb:0a:a9:f7:7e:e7:
51:8a:40:8b:e0:a4:83:9f:21:f2:83:f4:c3:05:39:
ad:39:60:13:12:b4:bc:fd:a4:0a:2a:d7:a9:cf:f1:
f9:0b:35:f3:53:d9:c5:cd:fe:8d:40:49:16:ee:c9:
55:58:fe:6d:8e:85:ca:84:21:39:b0:1b:bb:04:d9:
c5:11:b5:03:36:f3:61:7c:3b:d4:08:ad:3c:13:74:
5b:34:87:7d:36:8f:f4:cd:0c:5f:8e:da:36:2d:cd:
58:0a:33:04:32:dc:52:7c:5a:22:c2:78:97:6e:fa:
33:90:23:5b:65:13:18:1c:ea:3d:2c:4b:a8:08:84:
b8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:68:44:53:29:C7:2F:4F:5B:07:2B:3C:99:05:2D:A3:72:9F:B4:9B
X509v3 Authority Key Identifier:
keyid:76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:81:1a:b0:b6:bd:16:6a:0c:93:e1:43:a3:ad:d8:e9:3d:c1:
3c:ca:8c:53:a0:c9:31:bc:db:64:6b:51:3d:d6:0c:39:78:dd:
3b:1e:dd:b7:cb:62:f3:7e:7a:93:9d:66:e7:f3:4f:83:ff:f0:
53:cb:47:98:f5:50:99:e0:d1:7c:4d:8c:32:fe:cf:ee:fd:b5:
e9:fa:35:ce:88:76:e6:52:bf:b5:e2:8b:44:5e:dc:f1:53:ad:
a2:a2:eb:0f:1d:ef:22:40:1b:4c:8a:6f:0c:97:8c:02:21:95:
7c:fb:4b:d5:f4:6c:92:94:b0:5b:89:52:dc:97:80:6c:23:4e:
d7:bb:dc:ba:42:78:f0:77:86:10:75:d0:00:3e:91:a6:3b:b1:
0f:d1:19:a1:72:e0:95:0f:bd:db:7a:0b:a5:af:84:27:17:3b:
e5:dd:bf:c2:49:eb:70:29:94:0d:51:46:5e:4b:63:8d:96:9a:
3c:f7:0c:8e:ce:db:df:1f:41:62:69:53:0a:b5:01:bb:15:af:
91:f4:2b:fb:42:d9:b7:72:dc:12:12:37:8d:1c:0e:0d:c1:33:
51:26:89:16:8a:cb:fa:46:9e:c7:8c:e9:04:7d:0b:2b:03:71:
73:b5:7e:60:10:6f:95:3c:93:1e:e1:2c:b6:e0:50:0e:53:ec:
a7:8f:cf:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:19:45 2025 by rpki-client