Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
File: 5XFody33TCeZnVM4leGr7c6XJjw.mft (raw, json)
Hash identifier: h0ct9CB77O+e/r6aALnRsuoyMGbQrIb4ei/R1djJx4w=
Subject key identifier: 22:CF:5D:7A:CF:59:04:F5:47:1C:5D:3C:A5:4A:BF:86:21:DE:5F:20
Authority key identifier: E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C
Certificate issuer: /CN=e57168772df74c27999d533895e1abedce97263c
Certificate serial: 0198D4E02314591C01265FC4B18BEFA1BCC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
Manifest number: 01A1
Signing time: Sat 23 Aug 2025 03:01:55 +0000
Manifest this update: Sat 23 Aug 2025 03:01:55 +0000
Manifest next update: Sun 24 Aug 2025 03:01:55 +0000
Files and hashes: 1: 5XFody33TCeZnVM4leGr7c6XJjw.crl (hash: UceyoHpqIoi95mWxZu6mWQ3o73VtLMGPYiZfa/+HJ30=)
2: O3bnjDPRR3LrGEnM4sKqgBKSZIg.roa (hash: rlXDUrdTVRzlXfFa/VppQ/JwyMwu/FNANchTVmv+fxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:23:14:59:1c:01:26:5f:c4:b1:8b:ef:a1:bc:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e57168772df74c27999d533895e1abedce97263c
Validity
Not Before: Aug 23 03:01:55 2025 GMT
Not After : Aug 24 03:01:55 2025 GMT
Subject: CN=22cf5d7acf5904f5471c5d3ca54abf8621de5f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:72:1a:75:11:a6:ca:02:d7:9f:b3:98:c4:c9:
66:1e:69:07:9f:a1:d8:65:13:9e:e3:8f:93:a5:dc:
90:ca:a4:85:c0:51:27:f0:66:43:8f:0c:55:3b:ce:
a6:82:6e:b7:75:95:0c:5f:8a:2d:48:d2:8a:e4:b4:
2e:00:72:b4:b2:9f:e5:87:a2:aa:40:da:e3:53:0e:
12:39:21:c8:e7:f4:8c:33:64:9f:24:5d:95:a9:0f:
b1:0e:ce:9b:67:ad:a4:8d:0a:26:0b:54:13:d8:ad:
92:9f:5a:8a:43:b1:f1:c4:f9:f7:26:98:c6:43:5e:
6a:43:d3:f8:42:d7:66:b3:80:14:f9:f7:e5:be:94:
88:30:17:90:3e:eb:4d:95:85:43:d3:a9:b3:0b:68:
a2:5f:08:c5:0f:a5:0f:8e:97:32:b2:86:78:46:74:
08:76:34:e2:2b:25:a1:01:fc:90:d5:b7:3d:d4:29:
7e:c2:c9:b0:ef:33:48:ed:e5:73:e6:58:32:16:db:
e4:ae:90:49:7d:95:0d:f9:f1:4c:3b:32:e8:ab:5c:
1c:59:6b:96:1c:b0:de:43:6f:e1:2a:31:eb:99:e6:
b3:da:ef:a8:d4:83:33:bd:24:1c:0e:06:ea:60:d0:
e6:18:90:16:36:65:1b:a8:6f:1e:ff:ca:40:e8:e7:
c6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:CF:5D:7A:CF:59:04:F5:47:1C:5D:3C:A5:4A:BF:86:21:DE:5F:20
X509v3 Authority Key Identifier:
keyid:E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:27:62:4f:eb:1b:0b:79:c3:77:ca:8b:a6:21:9d:0e:fc:c3:
a2:02:46:9b:55:41:af:35:a7:7f:79:f8:e3:f7:73:01:88:68:
9b:ea:ad:81:b9:32:c4:ea:ee:f3:92:47:2d:ad:ec:8c:c5:5b:
f4:1b:94:9e:6b:54:92:3f:c6:36:ce:d6:c9:9e:fd:ba:f4:ec:
de:4e:a8:01:61:50:d1:8b:ca:d8:e7:0b:09:c2:7f:fa:ff:e7:
07:d3:30:81:6e:a1:b8:f1:3b:9f:ee:7e:71:bb:c4:a1:49:cd:
b8:78:cb:49:d9:9b:ed:f3:83:3d:3a:5f:e7:33:ae:2f:c1:36:
46:a7:b8:98:95:c9:a2:d1:e3:df:b3:7f:7a:00:fb:7f:ce:67:
39:66:13:02:26:e6:e6:e9:64:25:0b:b6:d2:da:39:40:5c:49:
b1:a0:02:93:82:e1:92:48:a5:1f:69:20:e0:ee:6f:b5:c5:db:
f6:b7:96:19:fe:89:04:1c:d1:5f:c3:99:80:02:52:6a:e1:5d:
18:cf:5e:30:dd:62:8c:94:b2:ee:b8:51:fb:c8:9f:1f:41:28:
07:38:34:46:7e:72:c5:2f:c8:7d:90:bc:c5:7a:94:cf:e2:7c:
83:5c:f8:cb:90:63:e8:1c:e4:f7:74:95:57:e3:ea:68:9d:87:
3d:a7:75:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:38:13 2025 by rpki-client