
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
File: cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft (raw, json)
Hash identifier: WESe58OGmwTzxmud3AtiuPsldQlWvdsenGGSHNR9UF8=
Subject key identifier: 50:EB:3F:ED:F5:62:B0:D2:13:F0:AF:8A:84:14:E3:46:0E:3A:14:2F
Authority key identifier: 70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F
Certificate issuer: /CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
Certificate serial: 0199FFFE7E2665A6933C9E1C1B769B70DB53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
Manifest number: 16E5
Signing time: Mon 20 Oct 2025 05:01:32 +0000
Manifest this update: Mon 20 Oct 2025 05:01:32 +0000
Manifest next update: Tue 21 Oct 2025 05:01:32 +0000
Files and hashes: 1: cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl (hash: oRZO907Ff0ykJOnQv+0IPIqgBddlcvoN1rKsCeMf0LE=)
2: gEcPKMyXsq8EnU4MPoFeY2Uidb0.roa (hash: 43PR1hTJL7tXyu9/IcMkUlMdJ9SOinPx2dKMQk9nNKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 05:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:7e:26:65:a6:93:3c:9e:1c:1b:76:9b:70:db:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
Validity
Not Before: Oct 20 05:01:32 2025 GMT
Not After : Oct 21 05:01:32 2025 GMT
Subject: CN=50eb3fedf562b0d213f0af8a8414e3460e3a142f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b6:45:07:ca:3f:09:48:df:6f:84:98:79:75:
ca:a1:e0:ab:2b:a8:6f:a2:5f:b6:3a:01:5e:d9:8b:
05:fe:c1:d6:08:8c:e0:da:02:5f:4b:d9:9f:67:01:
d6:e1:3a:56:ad:49:78:dd:43:e8:72:31:bb:18:07:
bd:94:dd:e7:02:f7:a0:be:25:be:91:22:18:7e:ba:
f7:cb:59:bf:61:a9:63:37:2d:57:bf:56:19:0a:b5:
6a:ca:b1:ae:11:d1:cc:5a:7b:77:c9:4c:77:f0:3f:
57:8d:10:75:41:2b:e2:cd:7d:e6:ea:4c:c4:38:bd:
7c:2c:63:95:8e:0c:25:62:aa:71:ea:39:d3:69:b9:
6d:c2:8c:a5:82:5c:55:a6:19:19:21:5b:42:ed:54:
38:a8:8a:1a:b0:89:0d:a7:7d:da:0f:b8:2e:9a:d8:
e0:72:bc:bd:bf:28:2e:5f:e1:65:f9:3a:f8:e0:1c:
b2:3b:4d:95:d3:93:69:78:c9:70:09:04:8a:4e:1c:
60:76:88:01:ff:91:3c:4b:ae:d7:db:dc:a3:22:6b:
0d:69:59:1a:3c:14:83:c9:6e:71:d7:81:bd:79:86:
e5:cb:e1:83:af:ab:02:30:0a:34:ef:16:f7:ae:60:
73:65:f8:e9:6b:c8:82:72:bc:f0:55:3e:7e:22:c8:
cb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:EB:3F:ED:F5:62:B0:D2:13:F0:AF:8A:84:14:E3:46:0E:3A:14:2F
X509v3 Authority Key Identifier:
keyid:70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:b1:49:0f:98:0d:29:e6:b5:49:76:07:f1:a4:5b:f1:ec:34:
b6:38:6f:b1:5f:3d:22:ea:19:3c:f6:49:1a:75:bd:62:10:8b:
d5:46:d1:66:74:d4:2e:fd:bd:dc:46:dc:b4:15:a7:68:ac:ee:
4f:f0:c5:5e:58:2b:d7:88:d0:a6:08:1a:fc:02:d7:84:42:7f:
98:03:99:d8:8c:f2:c5:6e:94:01:64:d4:c1:f2:26:90:4c:ed:
b9:e6:14:5f:5c:f3:40:a3:c9:24:ab:71:80:0c:9f:6a:40:96:
52:74:7d:dc:92:44:71:e3:34:bf:fe:e4:6c:d2:83:41:76:ab:
64:64:8b:e1:3d:53:b5:f8:41:fd:39:1e:9b:25:76:8a:16:b0:
42:b4:4d:83:e8:28:7b:0d:01:6e:02:38:a3:f5:fb:98:66:7c:
a7:ea:07:d7:47:98:7b:09:07:4f:df:5e:1b:81:88:3b:63:75:
f8:fb:46:70:68:4e:74:c4:df:1c:3c:33:88:aa:35:9f:09:3b:
03:9c:25:ec:ca:73:02:38:6e:40:96:57:2a:99:a4:d0:8f:45:
9d:06:f3:3b:27:26:cc:35:00:57:f8:0e:9d:6d:dd:da:ff:79:
6c:05:bd:88:6f:0a:c9:69:19:b3:be:c9:df:74:06:2d:eb:03:
03:5f:a3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:12:33 2025 by rpki-client