Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
File: 5rtLno321mTvy3e0EEFcg0phd4I.mft (raw, json)
Hash identifier: 7XOErg0ISobmmGJxVY0JtbkhcfoLSocOOAdKlnRcSP0=
Subject key identifier: 08:13:80:2A:75:54:C1:66:C3:B9:93:AA:DC:FC:4D:5B:E4:16:C4:C9
Authority key identifier: E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
Certificate issuer: /CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Certificate serial: 019A0290B311E7CE79015DE088F0AF7E9EED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
Manifest number: 04D0
Signing time: Mon 20 Oct 2025 17:00:28 +0000
Manifest this update: Mon 20 Oct 2025 17:00:28 +0000
Manifest next update: Tue 21 Oct 2025 17:00:28 +0000
Files and hashes: 1: 5rtLno321mTvy3e0EEFcg0phd4I.crl (hash: GuyTkBdPSdUs2aT66eLWvyLDPxPk6IgarxJ6QD/zQJU=)
2: XkaKfqFoJaO-K5J7EjOD-dhdRPc.roa (hash: HO99X4r00WVlX046g40bOu9XiDJVwjKinGN75tp1pVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 17:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:90:b3:11:e7:ce:79:01:5d:e0:88:f0:af:7e:9e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Validity
Not Before: Oct 20 17:00:28 2025 GMT
Not After : Oct 21 17:00:28 2025 GMT
Subject: CN=0813802a7554c166c3b993aadcfc4d5be416c4c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6d:8b:52:43:f9:55:f5:6f:c6:e8:59:b3:df:
0a:21:8e:41:37:13:09:71:94:b4:3a:41:8b:14:56:
0b:9b:03:71:f5:ee:13:1c:1e:de:bc:ca:e0:79:72:
18:7d:7c:52:7b:df:a6:d7:d3:6a:25:74:32:f8:90:
59:34:a3:17:53:23:98:ea:50:97:de:00:30:be:d2:
20:dc:34:7b:5c:4b:c6:8a:43:0d:23:e8:9c:48:41:
f6:c6:1b:e0:df:9f:6e:4c:3c:ab:ad:16:60:8e:ca:
f9:11:9a:47:ed:48:60:c4:c9:7d:4e:8c:ca:8b:aa:
a4:f6:bb:85:a2:f0:03:a7:1d:8e:e4:5e:ec:da:3a:
e4:e4:48:56:d1:aa:2b:4a:f9:1e:55:06:2b:5e:0d:
8d:40:2f:28:fd:f1:68:61:51:ba:e6:29:00:e3:af:
c5:a4:e5:de:fa:b2:a7:de:dc:5f:49:56:34:2e:ed:
a3:60:54:ca:9e:2b:3f:04:91:e0:02:07:3b:45:3f:
35:ab:ca:ef:65:ef:3b:32:03:9b:90:9a:74:0f:4b:
b7:42:d4:16:16:a0:95:68:5a:6a:bc:e6:a9:4b:d8:
88:8c:3f:75:ec:07:30:79:2b:67:8b:b6:50:26:8b:
46:fa:5d:2f:5b:f0:28:db:b7:fe:9b:cb:17:9d:86:
d3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:13:80:2A:75:54:C1:66:C3:B9:93:AA:DC:FC:4D:5B:E4:16:C4:C9
X509v3 Authority Key Identifier:
keyid:E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:42:56:3a:e1:c5:f4:af:dd:d9:3f:ae:e3:c6:29:c1:27:4f:
fd:a9:96:4a:41:98:f0:58:5e:b3:f9:86:ee:01:dd:49:bd:4f:
f7:3c:55:39:cc:07:e7:4f:8f:b6:f6:17:73:d9:cd:16:89:fa:
18:b2:c2:29:33:04:f2:99:fc:ef:33:97:d1:69:de:15:a0:de:
4e:46:e3:5f:f8:71:c2:d0:bb:33:31:2e:66:ea:c2:d0:d9:b3:
11:79:45:ec:8d:d0:67:5d:e6:2d:38:2e:84:a9:dd:65:92:a6:
f9:2c:9a:17:2a:ca:4e:14:8f:ff:03:3b:82:7d:d3:b0:de:01:
57:05:77:19:d9:c0:38:52:a7:80:97:dc:1e:9f:13:cd:c0:92:
bc:9b:ca:2d:1f:a5:97:46:2f:8c:42:65:17:04:ca:c1:d8:b1:
55:83:cd:d6:0b:c8:a0:88:7a:2a:dd:4c:b5:e9:76:c1:14:16:
85:74:d3:27:d1:3d:3f:40:a8:6e:a6:7a:6a:e1:9d:e2:99:8b:
45:c2:b3:03:d1:27:8e:71:fd:c3:f5:df:3d:67:e5:99:78:d7:
40:43:dc:0c:88:4c:2a:8c:44:56:63:72:a6:1c:46:8a:7d:45:
41:dd:7f:b1:90:e3:94:fd:fb:cc:ab:f0:dd:67:b8:15:a2:7b:
3d:ce:8b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 02:22:06 2025 by rpki-client