Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
File: 5PFY7_xrOIKiWQweaQasoQjhjsI.mft (raw, json)
Hash identifier: F193efSkW/yUBcWRkHno4U/og9vDLB3jczWNbo/heXc=
Subject key identifier: 25:81:3F:B8:86:75:12:10:85:81:A2:B3:51:14:9B:9B:A0:6C:66:9A
Authority key identifier: E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
Certificate issuer: /CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Certificate serial: 0198D92B2C1A60FE634B03BAD6FCABEC36AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
Manifest number: 0C52
Signing time: Sat 23 Aug 2025 23:02:21 +0000
Manifest this update: Sat 23 Aug 2025 23:02:21 +0000
Manifest next update: Sun 24 Aug 2025 23:02:21 +0000
Files and hashes: 1: 5JIFCgXWGmsw1HA5JtADF-b1eJ4.roa (hash: kqtxwSPKoLsi1ph5t4VnO3iKewevISmebmIE1RpFWLg=)
2: 5PFY7_xrOIKiWQweaQasoQjhjsI.crl (hash: xunEaK8k1DUmBaWFa8soU+v1VVLRVvMbYZS7en3gcb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:2b:2c:1a:60:fe:63:4b:03:ba:d6:fc:ab:ec:36:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Validity
Not Before: Aug 23 23:02:21 2025 GMT
Not After : Aug 24 23:02:21 2025 GMT
Subject: CN=25813fb8867512108581a2b351149b9ba06c669a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e8:d2:62:8e:ea:68:77:d3:ff:c1:43:c7:b2:
c2:74:87:35:4f:d8:f8:e4:39:d2:a4:9f:13:d6:be:
37:1b:86:fd:8b:ca:5d:bb:76:4f:3f:40:9f:e5:d6:
40:71:cb:37:8f:59:09:c2:9f:ae:9c:11:d9:2c:b8:
f1:8f:5e:e5:67:c7:47:ee:48:49:88:43:9e:7c:15:
7c:15:b9:c9:18:de:61:d7:7c:28:9c:b6:b4:d2:a9:
d3:0c:04:09:77:27:eb:bd:e2:a7:80:99:7b:9a:6f:
53:8c:12:a6:f2:2a:82:2c:5c:34:f2:ee:c3:41:5c:
58:b1:df:5f:08:8f:9c:a4:c9:17:da:17:84:7a:81:
33:9a:7c:2d:b0:6c:f0:f4:86:fa:25:e7:0d:64:ee:
05:1e:6e:02:b8:d9:da:58:d8:aa:49:43:41:7d:76:
65:74:81:4e:ce:6d:d5:ae:d1:81:58:ba:67:d3:89:
b1:6d:36:18:62:99:fb:4c:5d:34:81:da:80:95:e1:
6c:5e:32:85:94:b4:67:8b:21:0e:61:0d:d1:ad:c5:
bd:d0:53:c9:81:a3:24:ee:47:cc:dd:4c:c7:23:50:
3f:26:3c:d2:ca:11:9f:c8:1c:cc:fd:db:9d:92:31:
d8:e0:30:33:16:7d:0a:75:3c:55:e9:5e:81:92:e9:
21:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:81:3F:B8:86:75:12:10:85:81:A2:B3:51:14:9B:9B:A0:6C:66:9A
X509v3 Authority Key Identifier:
keyid:E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:0c:7b:5a:f5:cc:1e:c8:91:cd:2c:64:a2:2b:36:bf:06:57:
63:8c:10:e1:ae:46:01:bc:0c:4e:42:01:a9:03:36:e1:4a:8a:
03:e0:56:17:ee:a7:c5:9a:ae:76:6a:ad:a3:8b:6e:76:b2:1e:
d5:79:c7:31:3c:84:c5:1f:76:e3:b9:fa:41:ba:8c:3c:4e:73:
ae:be:44:74:25:56:69:30:0e:cc:39:41:4a:8a:bd:6b:b0:48:
b4:94:eb:2e:0a:30:2b:f5:d2:5b:4b:df:87:2e:09:88:73:f4:
a6:54:c8:3c:cb:df:f3:53:dd:d4:f2:68:86:12:3d:19:6b:f6:
bf:b7:aa:05:fb:a4:80:6f:31:20:64:42:da:6d:dd:e5:6d:8c:
71:9e:00:df:4a:ea:17:90:dd:ee:65:95:50:c3:aa:7c:e6:86:
a2:10:9b:aa:d0:36:b1:8f:a9:99:0b:8e:5c:ac:69:75:c6:72:
7c:96:43:39:68:5e:3f:5d:d7:55:1f:d9:7b:1b:3b:1b:a0:2f:
7c:bc:b0:63:4c:6f:81:36:c4:1e:06:36:10:3b:d2:e7:53:7b:
97:1b:65:82:c3:a6:ca:a2:5c:cd:61:ca:ee:60:c0:6a:32:10:
fb:e2:88:b2:37:34:23:ac:bf:2d:61:e4:69:3a:6b:0d:80:57:
71:d4:b7:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 02:29:52 2025 by rpki-client