Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
File: 5rtLno321mTvy3e0EEFcg0phd4I.mft (raw, json)
Hash identifier: zD6Ubv2oRSd3fZLMP8cHAkC0yrGSz0AtkvWAsBZDS/M=
Subject key identifier: BD:2A:C5:8E:EA:1F:74:F1:4A:0E:9D:29:1D:91:60:AD:AC:4C:E7:3F
Authority key identifier: E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
Certificate issuer: /CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Certificate serial: 0198D54DE8A827434D185102A289019FA0A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
Manifest number: 0434
Signing time: Sat 23 Aug 2025 05:01:49 +0000
Manifest this update: Sat 23 Aug 2025 05:01:49 +0000
Manifest next update: Sun 24 Aug 2025 05:01:49 +0000
Files and hashes: 1: 5rtLno321mTvy3e0EEFcg0phd4I.crl (hash: obgdeECTaHbwuDnIQJKqTPKEJDJXleZxLhAOi9RnLyU=)
2: XkaKfqFoJaO-K5J7EjOD-dhdRPc.roa (hash: HO99X4r00WVlX046g40bOu9XiDJVwjKinGN75tp1pVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:e8:a8:27:43:4d:18:51:02:a2:89:01:9f:a0:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Validity
Not Before: Aug 23 05:01:49 2025 GMT
Not After : Aug 24 05:01:49 2025 GMT
Subject: CN=bd2ac58eea1f74f14a0e9d291d9160adac4ce73f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:67:bf:bd:e9:54:3b:38:c0:76:5d:11:46:d3:
07:4f:8b:c7:f0:0d:c7:49:9d:15:dc:a5:76:bf:18:
1f:22:0e:70:50:e9:bc:bd:af:b7:3f:82:c2:cd:dd:
e5:e1:70:5f:5c:d4:4a:2d:a5:ed:41:93:ca:f1:03:
b2:cc:3a:af:ca:c1:9f:1a:2c:59:11:5a:61:47:24:
c9:2c:cb:de:2c:1b:ef:d5:16:a9:45:6c:2f:48:69:
ff:60:05:9f:b1:14:ae:b5:f1:f9:fa:d6:5f:71:bd:
ea:88:41:5a:fb:cf:c1:8e:7e:7d:d4:b8:df:23:c2:
e7:5d:f5:f0:2a:d6:2d:9f:07:72:f5:d9:ed:b2:a2:
d6:9f:96:7f:48:59:29:b7:50:0a:e0:34:d3:5c:1e:
e7:48:11:b0:56:8e:39:de:a0:44:fe:cb:ae:3c:48:
14:58:4a:4d:5e:18:5e:12:2d:09:09:b4:eb:d6:18:
da:89:ae:f4:d2:37:0d:cd:8a:22:02:ef:88:d3:a6:
68:51:ff:e8:f2:6d:d6:f1:42:b6:99:1b:7d:a1:b9:
bc:65:48:ad:b7:5d:c8:c6:8d:1a:3f:82:04:b4:c0:
b9:75:8f:13:ca:c4:ce:0d:30:d1:e6:9e:42:a1:aa:
4a:32:d3:b0:fb:9a:c4:c7:49:1b:b0:8f:1a:57:78:
ee:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:2A:C5:8E:EA:1F:74:F1:4A:0E:9D:29:1D:91:60:AD:AC:4C:E7:3F
X509v3 Authority Key Identifier:
keyid:E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:fc:bb:17:06:90:fc:95:ab:f5:82:d4:77:73:e4:8c:2e:b6:
ad:eb:93:89:b1:7a:56:c8:ca:b3:4e:50:d6:72:6c:be:db:91:
15:94:93:37:9e:8e:03:4f:3b:75:8c:6f:ba:19:64:20:ac:97:
16:02:e1:7a:95:18:b7:0c:8c:9d:2a:ae:77:6e:5f:43:48:ae:
bd:3f:0a:56:ae:da:13:db:44:a0:35:88:c9:32:0f:6c:d6:36:
b0:77:31:37:c0:4c:79:c1:92:0f:3a:de:ed:ca:f4:02:36:78:
ec:fe:a2:80:6d:5f:bc:71:f7:21:d9:57:a3:44:aa:00:cc:8f:
0e:74:48:60:fb:92:8a:55:df:c0:26:93:da:a7:38:04:9b:9f:
0d:88:e2:5d:90:82:47:3a:14:f3:7f:c6:f4:fc:ee:2e:ea:97:
eb:45:e0:c1:7d:22:1c:49:2d:2e:f5:21:53:e8:d2:f0:44:10:
fa:dc:63:2a:06:dc:4a:19:7b:8a:cd:21:01:21:e9:f1:2d:63:
5c:02:26:41:ed:fa:ff:49:74:58:97:69:38:be:a0:88:1e:8d:
63:0e:43:86:c2:a9:d4:e6:70:e7:56:5a:35:6e:69:03:b1:97:
d9:1e:88:8a:96:da:ac:d1:a8:43:81:71:95:a7:25:4a:f8:40:
1a:cf:ae:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:04:56 2025 by rpki-client