Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json)
Hash identifier: xo/YStZTLqYC5NVpjTz2UZEyX/bfuuWQ0aMQXdsPOf0=
Subject key identifier: 5F:BB:C6:29:0F:F3:D6:51:6A:AD:D1:AB:6E:B9:79:C9:BD:9F:48:7E
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 0199FC58E19F4BE85FA89F923D925401CB26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 12:01:47 +0000
Manifest this update: Sun 19 Oct 2025 12:01:47 +0000
Manifest next update: Mon 20 Oct 2025 12:01:47 +0000
Files and hashes: 1: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: pg+qzH4EsuOt8R70NN6iCdJFaz7iXJpiUT3khXfPoUk=)
2: jQqQfOrb2tEbgL6-n1pYKtKDCGI.roa (hash: urbNu0k2kZWVDcdCEYQ210AYS3ke0pUxaEecPK2agnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:e1:9f:4b:e8:5f:a8:9f:92:3d:92:54:01:cb:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Oct 19 12:01:47 2025 GMT
Not After : Oct 20 12:01:47 2025 GMT
Subject: CN=5fbbc6290ff3d6516aadd1ab6eb979c9bd9f487e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:c2:ea:07:6b:1e:16:72:df:9b:6a:1a:c4:b3:
fc:89:aa:94:b0:cf:1b:b3:02:64:ea:92:da:ed:83:
89:4a:2d:6f:88:2c:63:49:51:4c:b2:17:8f:78:46:
31:7a:26:dc:a0:ef:d5:61:df:35:a5:d9:b6:6a:5b:
10:a2:28:7c:96:be:84:15:d0:bb:4e:d6:2a:4c:5c:
4b:54:03:f4:74:e7:82:0f:3a:66:76:b1:57:99:25:
9f:19:e5:e2:82:e3:91:b5:4d:df:fb:06:73:99:84:
ee:d6:7d:08:17:0b:61:74:b5:d2:e1:3a:75:ed:78:
da:96:59:21:5b:f9:23:44:48:79:4a:2d:ac:6e:c7:
7c:00:6b:59:db:7f:5c:a4:f0:71:e3:7b:cf:79:ca:
3c:27:4e:56:e1:2d:d0:5c:6b:69:a1:e1:83:cb:41:
5c:8d:d4:ef:7d:92:8e:02:09:d2:19:cd:15:22:a6:
8f:7c:0f:8e:ae:48:89:40:2b:e0:52:71:1c:0b:ca:
1e:0a:d3:c3:d6:47:b5:13:29:d9:6f:fb:62:74:67:
54:00:e5:c0:1d:f1:7f:94:1a:80:f6:f1:f1:62:1d:
c7:99:f8:ff:e2:62:0f:39:7e:b1:3d:12:ed:74:ae:
fe:75:38:70:97:01:83:a0:75:94:b2:20:a0:8c:df:
2f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BB:C6:29:0F:F3:D6:51:6A:AD:D1:AB:6E:B9:79:C9:BD:9F:48:7E
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:cf:07:d3:ba:02:6b:f4:03:ee:0b:b5:1b:29:12:11:81:d9:
88:a8:7d:31:60:ea:c5:66:77:41:de:01:47:12:a6:35:0b:d7:
54:d2:a5:29:8a:25:52:52:1d:34:b8:de:ba:13:41:ae:e0:56:
ce:b5:01:4e:f8:2d:5e:85:1b:97:13:3d:43:35:31:1e:05:1f:
be:cc:74:c9:37:c7:e6:2c:a3:4b:30:d9:22:3e:71:5c:bb:03:
dc:71:6b:7a:f7:7b:2a:1a:c9:98:3c:63:c3:1a:6d:36:98:5a:
28:7b:5f:0a:75:29:40:39:ea:3a:ee:18:d9:f1:c5:2f:55:7a:
9e:05:77:14:ed:ea:01:9f:93:fe:4b:4d:4d:bf:1e:44:c3:88:
dd:ab:35:18:c3:46:3f:0a:8a:97:cc:c9:a8:91:55:03:41:e7:
26:9f:fe:5a:49:9b:95:3e:ed:9c:d7:7a:73:16:06:4c:c9:a1:
8c:86:3d:9a:d3:00:02:a4:05:0e:8d:65:cd:2f:c9:19:d6:9f:
76:d2:53:77:5f:90:13:49:30:b1:a8:c9:98:35:98:7b:b5:4a:
ee:f5:2c:62:41:24:61:4f:9f:75:81:bf:cf:84:f7:be:53:6d:
b8:d3:d4:08:ce:a4:da:8c:ae:1d:e0:34:d2:9c:97:3b:4e:ea:
4e:bf:2d:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WOGfS+hfqJ+SPZJUAcsmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OTU4YmE2NjFjNDM1Y2NkMjVjMjA2MDQ2MmVmNjAwZDI3
MTllZTAwHhcNMjUxMDE5MTIwMTQ3WhcNMjUxMDIwMTIwMTQ3WjAzMTEwLwYDVQQD
Eyg1ZmJiYzYyOTBmZjNkNjUxNmFhZGQxYWI2ZWI5NzljOWJkOWY0ODdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/MLqB2seFnLfm2oaxLP8iaqUsM8b
swJk6pLa7YOJSi1viCxjSVFMshePeEYxeibcoO/VYd81pdm2alsQoih8lr6EFdC7
TtYqTFxLVAP0dOeCDzpmdrFXmSWfGeXiguORtU3f+wZzmYTu1n0IFwthdLXS4Tp1
7XjallkhW/kjREh5Si2sbsd8AGtZ239cpPBx43vPeco8J05W4S3QXGtpoeGDy0Fc
jdTvfZKOAgnSGc0VIqaPfA+OrkiJQCvgUnEcC8oeCtPD1ke1EynZb/tidGdUAOXA
HfF/lBqA9vHxYh3Hmfj/4mIPOX6xPRLtdK7+dThwlwGDoHWUsiCgjN8vZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+7xikP89ZRaq3Rq265ecm9n0h+MB8GA1UdIwQY
MBaAFIeVi6ZhxDXM0lwgYEYu9gDScZ7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDVXTHBtSEVOY3pTWENCZ1JpNzJBTkp4bnVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82NWNmMGEtYWRlMy00MGIxLTk5ODct
OGMzNGU0Y2Y5MDI2LzEvaDVXTHBtSEVOY3pTWENCZ1JpNzJBTkp4bnVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni82NWNmMGEtYWRlMy00MGIxLTk5ODctOGMzNGU0Y2Y5MDI2
LzEvaDVXTHBtSEVOY3pTWENCZ1JpNzJBTkp4bnVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOc8H07oC
a/QD7gu1GykSEYHZiKh9MWDqxWZ3Qd4BRxKmNQvXVNKlKYolUlIdNLjeuhNBruBW
zrUBTvgtXoUblxM9QzUxHgUfvsx0yTfH5iyjSzDZIj5xXLsD3HFrevd7KhrJmDxj
wxptNphaKHtfCnUpQDnqOu4Y2fHFL1V6ngV3FO3qAZ+T/ktNTb8eRMOI3as1GMNG
PwqKl8zJqJFVA0HnJp/+WkmblT7tnNd6cxYGTMmhjIY9mtMAAqQFDo1lzS/JGdaf
dtJTd1+QE0kwsajJmDWYe7VK7vUsYkEkYU+fdYG/z4T3vlNtuNPUCM6k2oyuHeA0
0pyXO07qTr8t/A==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:37 2025 by rpki-client