Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
File: 5PFY7_xrOIKiWQweaQasoQjhjsI.mft (raw, json)
Hash identifier: lilsfXna50Yzfa7J7HgLSTkjjup4jpt56GrwJXu15Ug=
Subject key identifier: C1:91:80:57:E0:AF:23:0C:6E:AD:BB:47:39:3F:06:AA:26:8E:22:66
Authority key identifier: E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
Certificate issuer: /CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Certificate serial: 0199FCC6C85B8D64BDBAABC031A273512513
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
Manifest number: 0CE9
Signing time: Sun 19 Oct 2025 14:01:49 +0000
Manifest this update: Sun 19 Oct 2025 14:01:49 +0000
Manifest next update: Mon 20 Oct 2025 14:01:49 +0000
Files and hashes: 1: 5JIFCgXWGmsw1HA5JtADF-b1eJ4.roa (hash: kqtxwSPKoLsi1ph5t4VnO3iKewevISmebmIE1RpFWLg=)
2: 5PFY7_xrOIKiWQweaQasoQjhjsI.crl (hash: BIeVX6/Wv3Xhl51ACQJOA2WQlmMGupahhRCLNss9g4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:c8:5b:8d:64:bd:ba:ab:c0:31:a2:73:51:25:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Validity
Not Before: Oct 19 14:01:49 2025 GMT
Not After : Oct 20 14:01:49 2025 GMT
Subject: CN=c1918057e0af230c6eadbb47393f06aa268e2266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:29:af:dd:99:47:68:38:0b:7e:37:e5:f9:c7:
ed:ae:cb:20:78:d8:63:37:ff:1f:b9:fa:de:7f:12:
b6:f0:5c:70:6f:87:85:ac:ac:4e:c3:f2:7c:5c:44:
23:7a:e4:84:58:29:c5:aa:70:cf:cb:69:33:6d:8e:
e8:2f:e4:89:d7:46:81:a2:20:13:7b:ed:06:f7:b2:
f6:2e:24:cf:62:51:5b:3e:0a:52:dc:55:6a:cb:63:
f8:0a:bf:7f:32:3d:ca:89:31:cd:cd:6f:4a:71:5c:
59:1e:3b:2c:34:d2:b3:6c:5b:30:70:22:0a:4d:ff:
6e:c7:2e:56:41:e4:77:b8:ef:51:16:30:4c:86:c3:
7c:93:94:1a:e9:28:a9:6b:b7:d7:a1:fc:44:b4:9f:
81:1d:9f:b9:f2:dd:47:12:3c:7d:e2:0c:09:92:22:
c3:58:e3:fe:10:36:fb:51:d0:d4:40:1a:6e:10:2d:
97:d2:28:7f:1b:ab:37:07:b8:e8:f4:03:1f:d9:78:
44:46:e7:a9:36:1c:55:12:39:83:b9:82:32:e4:f0:
83:f2:6c:b0:2f:ad:49:4e:3b:f8:11:ec:9b:ee:42:
19:29:d2:1d:11:71:74:80:c6:b9:73:ae:65:6d:56:
b5:03:43:e5:92:e1:ff:ea:44:05:32:a8:b2:cf:06:
3a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:91:80:57:E0:AF:23:0C:6E:AD:BB:47:39:3F:06:AA:26:8E:22:66
X509v3 Authority Key Identifier:
keyid:E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:04:54:57:16:5c:03:67:18:c0:6a:da:23:7d:75:86:39:d1:
5c:00:8f:e7:01:24:b0:f2:37:d7:66:41:c2:87:47:58:26:01:
2b:a9:de:f0:66:05:af:f8:6c:4d:b4:30:fc:c1:b8:75:ad:26:
a8:fc:98:ee:4f:3b:44:76:a4:a4:22:78:3c:c7:ab:41:0b:41:
56:b2:72:63:55:6f:bb:1a:34:f6:3d:c9:73:a5:c7:fc:51:1a:
c1:50:9f:0a:0e:5c:fb:d9:ee:f9:2d:98:33:01:ee:0e:f9:0b:
b2:44:a5:37:f5:1a:82:36:b3:7e:ad:73:91:e9:ae:85:69:bc:
b3:c7:3c:b3:02:68:7a:81:33:a9:eb:69:bf:ce:65:31:d2:b8:
bb:f2:39:ad:df:21:28:31:3f:bb:f8:b1:bc:b8:44:e6:1f:13:
3d:20:03:e0:ae:20:ca:6d:06:df:68:c5:51:7b:8f:c5:7e:1f:
dd:ba:10:95:4a:0b:ae:a2:68:2c:7f:c0:ce:5e:da:cd:a6:d4:
af:04:37:25:2c:5f:a1:b7:ae:f9:7b:08:69:ad:35:63:19:36:
02:5f:4b:40:ea:20:f8:2c:ff:36:b3:44:b8:3b:9d:2e:b3:f9:
fa:ec:43:12:e8:d0:4f:31:1b:88:de:99:fc:54:5d:b6:3d:79:
b9:48:25:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:42:16 2025 by rpki-client