Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft (raw, json)
Hash identifier: xqo7wxbaaNwmj/kuw+ym4j5qjePt9jtLxXsZNhQ56Ks=
Subject key identifier: D0:22:E9:5F:47:FB:0B:68:31:B3:F0:07:E0:23:12:36:39:C4:B5:E9
Authority key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
Certificate issuer: /CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Certificate serial: 0198D54E1BC28834F228DBFC9D0B7E87355D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
Manifest number: 134D
Signing time: Sat 23 Aug 2025 05:02:02 +0000
Manifest this update: Sat 23 Aug 2025 05:02:02 +0000
Manifest next update: Sun 24 Aug 2025 05:02:02 +0000
Files and hashes: 1: 6nka26L-7vbT-huqQ7zH80Ad2_Q.roa (hash: bi36P0sQvSkI3t0S3Th1jO23VxQKQmTqbcjBaO1g00A=)
2: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl (hash: YxHXxpSdPhfXvZwOU2MMWllF9RE7CDk4X32H1AzhHOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:1b:c2:88:34:f2:28:db:fc:9d:0b:7e:87:35:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Validity
Not Before: Aug 23 05:02:02 2025 GMT
Not After : Aug 24 05:02:02 2025 GMT
Subject: CN=d022e95f47fb0b6831b3f007e023123639c4b5e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:99:cc:03:09:c9:43:20:8e:aa:38:d2:55:45:
d3:87:4c:92:5a:d7:88:c1:7f:13:be:48:30:0d:6c:
24:b7:85:d8:28:af:7c:6a:0a:94:18:73:35:f0:db:
49:6a:3a:b9:b9:8c:d9:7d:25:87:13:cf:dc:7c:fa:
6f:ee:67:54:9a:31:a4:ca:b0:16:23:d5:69:f8:8a:
1e:03:f0:91:8a:3f:03:ae:1f:26:62:28:34:c0:4d:
c6:47:5a:1c:16:4d:7d:b8:63:e0:3e:d7:14:71:b6:
a8:f5:41:ab:2d:cd:a9:51:ea:5e:cc:01:f5:24:5f:
59:0e:99:91:8d:c5:b2:27:eb:75:7b:13:33:02:e2:
22:b2:7a:91:a3:07:77:26:1e:b7:44:b8:ec:d5:8f:
10:e8:b5:99:06:6b:c9:da:e0:20:ee:6e:81:0a:a3:
51:bf:55:6e:90:5a:4d:6c:46:16:3f:1e:af:b0:f2:
fd:52:f3:92:6f:67:e9:8d:ad:01:46:5f:08:fc:35:
b3:08:d6:38:c7:4f:b2:d2:e0:81:b9:22:1d:68:5a:
d2:d5:0a:86:d7:ed:b5:54:83:31:69:a5:c5:0a:c0:
f3:59:53:b7:70:06:0d:fb:10:0c:83:65:9f:61:79:
fd:a9:77:22:70:15:6f:a6:b5:9a:58:9c:fb:ca:0a:
00:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:22:E9:5F:47:FB:0B:68:31:B3:F0:07:E0:23:12:36:39:C4:B5:E9
X509v3 Authority Key Identifier:
keyid:A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:04:87:e0:e3:5c:37:28:1e:8c:c5:61:ce:72:54:cd:77:87:
db:21:07:59:38:5f:45:6d:b6:03:c3:3b:9e:cf:ed:bf:f9:12:
b3:d4:7c:09:6f:2d:51:54:35:87:cf:9f:2b:6f:5a:a6:c3:e2:
5f:2e:05:e6:c0:90:0f:9d:2b:4e:7f:99:b9:c7:f7:d7:86:73:
dc:51:53:fd:d8:19:11:24:81:97:2d:d1:0e:d1:2c:48:91:1f:
8a:92:c2:c8:4a:69:88:71:6e:c8:a0:c6:91:3d:15:16:27:3c:
b1:68:37:94:87:44:ee:6d:71:bb:9f:84:f1:a4:8b:41:68:ab:
3c:3f:64:b7:9e:fc:59:6b:9e:21:91:de:ca:10:4b:84:9f:81:
bb:eb:1d:cc:26:e7:78:aa:3e:a0:14:b1:ba:bd:e4:86:51:40:
9e:32:5a:3f:30:78:1f:08:82:a2:fb:13:f7:05:28:36:1c:0d:
3e:9a:72:22:70:ab:55:f6:0d:c6:de:09:bd:a5:30:3b:e5:be:
b3:c8:82:dd:f4:bc:1d:74:a0:1d:0b:2b:18:24:d0:ba:1f:b0:
e3:27:fd:4c:62:bc:29:42:69:2d:4f:c8:9d:bd:21:eb:39:ae:
12:2a:1c:c7:19:66:04:01:61:a6:47:1a:80:61:4e:08:77:f2:
06:c6:25:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:30:46 2025 by rpki-client