Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
File: CFr4G5nr9ILzxrU1Hiniii4gs5g.mft (raw, json)
Hash identifier: Is/JaA6tJ54QIYR6/Skq+xNuuHurNr76zMRt5AVcPHE=
Subject key identifier: B5:5B:BD:D5:08:C8:AA:9C:11:1B:D7:A8:A1:0F:E6:63:C0:B3:68:66
Authority key identifier: 08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
Certificate issuer: /CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Certificate serial: 0199FEB4A13E64DC9E7A79495C4BBDEA1181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
Manifest number: 0492
Signing time: Sun 19 Oct 2025 23:01:14 +0000
Manifest this update: Sun 19 Oct 2025 23:01:14 +0000
Manifest next update: Mon 20 Oct 2025 23:01:14 +0000
Files and hashes: 1: CFr4G5nr9ILzxrU1Hiniii4gs5g.crl (hash: ixEIj+BteWXBYOvj7JO5cp6JPVIdw2gRf6xIRcGGA9g=)
2: UmoMMcgLYQ1NME06W-RaoSwOLvs.roa (hash: DXndsPFPDd7x23rCZc6g3GNT4ZixvQ1GmrG9rBzETuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:a1:3e:64:dc:9e:7a:79:49:5c:4b:bd:ea:11:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Validity
Not Before: Oct 19 23:01:14 2025 GMT
Not After : Oct 20 23:01:14 2025 GMT
Subject: CN=b55bbdd508c8aa9c111bd7a8a10fe663c0b36866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4f:d4:66:11:ba:93:89:21:c2:e6:ce:14:e5:
f2:8f:0e:31:d8:76:c1:c9:3b:97:56:74:67:9f:c8:
52:ee:d6:11:46:9d:0a:22:ad:bf:fe:96:f9:72:3b:
f5:d6:2a:99:cd:32:11:1e:ab:1b:a9:06:16:66:b5:
81:b3:d4:96:64:4c:b1:c2:b3:fe:31:a8:a6:66:ab:
76:21:03:70:36:c9:84:47:96:92:8c:2c:61:f1:aa:
77:8d:cc:c3:b6:e0:b6:16:87:d3:a6:44:9f:ec:f2:
e6:fe:52:ba:cc:a9:f1:75:c3:74:6f:eb:52:07:cc:
85:3c:29:e5:39:d9:33:29:4c:a9:ba:d1:72:6a:f4:
f6:40:39:2e:cd:29:c3:3c:45:41:7b:67:a5:9d:3b:
ac:4c:5a:b2:4e:4a:42:a8:fc:52:05:53:a5:bb:2f:
2a:3e:be:3c:67:68:a9:83:04:2c:7e:42:ac:11:ff:
b8:9a:8e:f1:b3:45:41:40:3f:67:99:e2:f1:45:e9:
ef:da:92:82:48:7c:c5:25:c8:0f:38:82:8c:d2:a7:
44:a9:47:f1:18:89:c1:c8:2a:e0:a5:d5:7e:16:fb:
70:0b:c2:5c:90:3e:72:5a:18:55:a7:70:73:7c:42:
b1:12:21:27:d9:21:6d:7e:ba:62:90:07:35:a7:32:
75:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5B:BD:D5:08:C8:AA:9C:11:1B:D7:A8:A1:0F:E6:63:C0:B3:68:66
X509v3 Authority Key Identifier:
keyid:08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:85:e9:1d:fe:1d:48:65:b2:dd:ab:d4:52:c3:82:10:e8:3c:
50:a8:0d:7a:50:5a:dd:5f:7a:34:52:ef:75:dd:d0:ce:ea:59:
53:51:56:0e:67:c0:98:e8:58:24:37:b3:71:36:57:6d:a6:cb:
27:ec:c3:ae:97:40:c6:ef:ab:95:27:0c:27:ef:1e:a1:bd:80:
48:7d:c8:09:ba:3f:38:e1:79:9e:7c:15:63:01:71:46:45:25:
6f:95:95:60:4c:91:5a:cb:93:b1:b1:7d:52:f3:58:61:42:11:
f4:b0:84:94:1b:34:d7:e0:68:70:2d:0b:91:d6:7a:88:fe:b8:
ce:78:35:c4:60:58:1b:8b:80:32:c8:fd:e4:48:03:5f:ea:fe:
07:f8:a8:f8:06:78:e8:69:d4:9e:4b:ec:34:f0:04:c2:e7:b4:
da:c4:08:d5:d5:f2:cd:14:2c:83:a0:49:1d:64:51:20:f4:0c:
e1:8e:bb:84:24:27:ae:5a:d4:52:9f:cd:64:44:72:61:f0:79:
7d:b3:fe:d7:cd:d0:25:5a:26:66:5b:4c:70:80:ee:00:b7:c4:
1b:b6:a5:a6:ca:04:b8:6d:bf:43:26:15:96:a4:df:e5:c9:dc:
60:f1:f0:5f:83:16:6b:40:cd:ec:41:c0:d9:e4:a5:1a:95:04:
e1:90:59:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:15:42 2025 by rpki-client