Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
File: 05SToXmX0x6NWqbMyaa9dX8VwDA.mft (raw, json)
Hash identifier: a2iwP4nmiW6Td/KveubGo4H8WojPyu4Xo77g5jL5Mm0=
Subject key identifier: 81:7E:F0:EB:07:72:63:99:75:3A:EC:08:7B:65:69:C3:8B:F4:FD:DA
Authority key identifier: D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30
Certificate issuer: /CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030
Certificate serial: 0199FC21A92CC1ECC56EB0EA3FC19855DE7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 11:01:28 +0000
Manifest this update: Sun 19 Oct 2025 11:01:28 +0000
Manifest next update: Mon 20 Oct 2025 11:01:28 +0000
Files and hashes: 1: 05SToXmX0x6NWqbMyaa9dX8VwDA.crl (hash: +LjJKf5u5bRknoVCkwfLA7yRLnO7t5VwwlPNm8mlv5w=)
2: q-MJPgpoCVNAGtgvIouNXgLENzk.roa (hash: BsC2KZYLnHn1uQcqBwkrRXQi/zA43li7q/QWJIEDjzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:a9:2c:c1:ec:c5:6e:b0:ea:3f:c1:98:55:de:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030
Validity
Not Before: Oct 19 11:01:28 2025 GMT
Not After : Oct 20 11:01:28 2025 GMT
Subject: CN=817ef0eb07726399753aec087b6569c38bf4fdda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9b:73:c8:7b:11:a3:b0:31:11:68:1f:75:70:
ed:47:9e:84:50:97:a5:e4:02:31:22:70:10:b1:82:
49:82:7c:40:7e:db:d6:17:0d:ba:57:ae:5d:76:a7:
03:2c:92:e3:f4:df:23:8e:66:43:91:10:7f:61:f4:
e0:4d:1c:c1:2b:a2:a3:f3:e1:0a:1d:fc:14:d7:d3:
78:b5:3e:fe:50:e7:5d:09:b5:fb:a8:5f:8c:7e:52:
66:30:dc:3a:07:86:82:51:2c:7b:af:65:ec:1b:ff:
eb:63:3a:22:3a:da:5d:d4:61:0b:35:5e:c3:5b:61:
53:32:d3:8f:f8:ac:09:ba:19:57:31:39:91:85:0e:
4c:b3:e1:97:16:68:9a:1a:63:2a:48:f0:b7:ac:9f:
09:f8:08:ee:ea:36:d9:e5:9f:e4:9e:5c:2c:f2:b8:
14:7b:5c:66:04:e6:7a:5a:a7:2a:8f:33:a2:08:a3:
45:68:60:82:4a:8c:e6:dd:a0:86:d2:b9:a2:ce:9b:
6b:90:d2:de:a1:39:c1:97:86:ad:4d:22:25:76:bf:
28:2c:46:4c:ba:ec:08:cf:94:8c:06:23:f7:ca:ed:
8e:80:c5:74:ba:07:6b:31:39:aa:0f:3c:e2:33:b7:
40:27:5d:96:5c:29:f7:e0:03:93:5c:de:e8:1e:f4:
98:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:7E:F0:EB:07:72:63:99:75:3A:EC:08:7B:65:69:C3:8B:F4:FD:DA
X509v3 Authority Key Identifier:
keyid:D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:3b:72:64:72:d7:22:92:53:7e:16:6b:32:39:6b:51:05:ff:
8c:80:73:97:d5:19:aa:ee:83:32:9b:50:80:3b:0b:ed:12:f0:
b6:2d:31:67:f8:7c:61:9f:39:08:0d:3b:d3:ef:80:51:63:86:
fa:3e:bd:9a:19:41:ce:c8:43:44:31:d3:1f:92:65:d5:60:50:
6e:2a:ef:e6:92:5e:b1:d4:49:9a:bb:84:cd:af:0f:8b:67:9e:
78:67:cf:a5:44:5f:a2:02:20:e9:68:36:eb:d9:b8:ed:b1:f6:
bf:7b:72:89:25:50:d2:ae:06:97:de:bb:75:e2:eb:ab:a8:84:
5b:ae:87:2f:7b:f8:5a:d2:ac:fc:83:45:1b:a2:7c:5b:8e:ee:
0c:1d:b3:5b:60:27:14:b3:f5:db:bf:9e:9f:61:5d:f9:d0:fa:
8a:3e:f1:06:d1:f3:a6:ad:ad:9b:90:25:3d:dc:8c:02:01:95:
f2:0f:da:3d:41:4e:dd:2c:68:26:78:93:b5:27:46:a0:d7:89:
26:94:50:56:7e:e0:da:ce:c0:ee:33:d5:b8:ce:34:0f:ba:44:
a4:54:d8:46:d2:c1:f5:87:8d:3b:30:2b:7f:cb:62:ee:7f:d8:
76:04:88:70:0b:4d:ce:e2:e7:0d:f6:8e:69:e5:e1:95:86:73:
57:a4:da:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:53 2025 by rpki-client