Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
File: tF5iJw0g-UZ6avx4lj28-4D79So.mft (raw, json)
Hash identifier: SIb+8y6OLmsNx/DIj5ooTHVjmisJOhD5g0UqlSYpQvI=
Subject key identifier: 78:5F:49:A4:91:F4:D0:3F:30:78:0F:9A:C7:88:3E:9A:E3:91:B1:36
Authority key identifier: B4:5E:62:27:0D:20:F9:46:7A:6A:FC:78:96:3D:BC:FB:80:FB:F5:2A
Certificate issuer: /CN=b45e62270d20f9467a6afc78963dbcfb80fbf52a
Certificate serial: 019A03A374ABF2CA9C3D6B506EE9FB484F4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
Manifest number: 0E65
Signing time: Mon 20 Oct 2025 22:00:35 +0000
Manifest this update: Mon 20 Oct 2025 22:00:35 +0000
Manifest next update: Tue 21 Oct 2025 22:00:35 +0000
Files and hashes: 1: tF5iJw0g-UZ6avx4lj28-4D79So.crl (hash: 5G43XhbubYd8+y49BB80VOg3aJ8XME96cfqMKWBEHd0=)
2: uvCFX9itk7RPxPZl6lvvghFjg1E.roa (hash: P3N8o135VPbcqFaS3kCnXkMSVi3GCBY96T9QuQyMyig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:03:a3:74:ab:f2:ca:9c:3d:6b:50:6e:e9:fb:48:4f:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45e62270d20f9467a6afc78963dbcfb80fbf52a
Validity
Not Before: Oct 20 22:00:35 2025 GMT
Not After : Oct 21 22:00:35 2025 GMT
Subject: CN=785f49a491f4d03f30780f9ac7883e9ae391b136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:39:d6:5b:37:cf:ad:05:ff:c1:1e:a0:6e:cb:
3e:3e:e8:17:7f:ad:e9:97:00:21:a2:f9:b8:d0:55:
03:13:88:73:5e:e9:ba:76:c1:58:32:af:14:b0:b7:
a8:b8:3b:e7:fd:db:5b:82:cd:ba:78:c2:50:a5:fe:
75:2c:b7:04:fa:5b:9e:08:f6:8e:81:05:f2:a3:30:
50:5f:77:26:16:a8:87:40:91:ae:25:96:1f:5f:9b:
db:d5:54:93:dd:c1:5b:c7:b4:4f:ee:cc:f2:99:8e:
4a:03:b2:49:75:b4:e6:5b:a5:9b:1b:e7:3e:28:4c:
00:7b:4e:12:1f:84:df:03:82:1d:1c:5c:42:4c:2c:
e7:22:8f:1e:97:e4:c4:ae:a6:9c:c2:58:7d:aa:7b:
d3:43:d7:1c:5f:6f:75:5e:ca:dd:ab:d8:ff:99:21:
90:3f:44:7a:38:1a:db:63:75:29:9a:39:ce:42:26:
49:23:6c:3b:5b:f2:54:96:1e:92:f9:16:00:05:c0:
fc:de:c2:16:d7:ea:83:67:a5:6b:26:f4:41:fc:65:
55:0f:50:e9:f0:20:9c:08:20:6d:a1:8a:2b:a4:b2:
5f:82:bc:b9:7c:3f:1d:14:86:62:52:bf:31:4c:b5:
5f:fd:e6:3d:fa:5f:69:12:40:45:92:2b:d3:ad:0d:
91:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:5F:49:A4:91:F4:D0:3F:30:78:0F:9A:C7:88:3E:9A:E3:91:B1:36
X509v3 Authority Key Identifier:
keyid:B4:5E:62:27:0D:20:F9:46:7A:6A:FC:78:96:3D:BC:FB:80:FB:F5:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:50:11:e3:e1:c6:e0:7c:ba:c3:c5:57:4e:88:dd:c5:74:e9:
f2:79:bc:18:2a:44:e3:2d:85:0d:c3:89:56:a2:08:0a:9f:e0:
68:d6:98:6c:75:0b:92:49:7f:f8:14:be:81:4f:4b:39:7c:4f:
67:6d:ab:95:3b:07:4c:97:88:fc:5d:a8:29:1a:32:0f:b8:36:
b4:0f:73:e2:30:ad:fe:c8:77:b0:19:a0:c3:f7:cf:a7:2b:d4:
6d:23:00:a6:23:21:62:eb:32:c6:b4:ee:7f:b2:ad:a0:22:08:
86:51:f6:dd:e0:92:65:e6:de:80:05:ec:b8:c5:d4:81:82:35:
26:58:9e:5e:b9:52:fd:93:aa:63:42:cd:21:b1:c3:33:91:f6:
73:7d:82:99:2e:b4:f1:46:88:bd:f1:3c:0b:4f:b3:80:54:c3:
de:d7:c2:7d:2f:c8:6c:46:77:b1:0a:7e:af:f0:cf:66:71:5e:
be:b5:67:e0:b4:19:7a:f7:2c:8a:ed:de:8c:22:6f:c9:fe:17:
6d:70:d7:47:54:5a:c1:f8:41:51:d6:51:6b:0b:22:a2:f7:9d:
48:15:58:bd:a4:1c:e8:33:4e:c3:71:44:18:47:f6:c5:3b:c3:
18:65:64:89:59:8c:e2:d5:d8:38:b3:83:e0:08:49:dc:f7:25:
6f:47:99:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 04:19:41 2025 by rpki-client