Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
File: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft (raw, json)
Hash identifier: cBEmEJNpsaLY9Z4gOm4ydSgK6Zg4c2LoIExcuBcXc74=
Subject key identifier: 56:93:F1:02:65:F8:C0:FF:34:FF:FE:39:47:64:83:DE:CD:A3:D1:6C
Authority key identifier: E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
Certificate issuer: /CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Certificate serial: 0198D7A8E666ADCF1E51DDDB4192E5B52BDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
Manifest number: 0AFF
Signing time: Sat 23 Aug 2025 16:00:26 +0000
Manifest this update: Sat 23 Aug 2025 16:00:26 +0000
Manifest next update: Sun 24 Aug 2025 16:00:26 +0000
Files and hashes: 1: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl (hash: Ii1bURzjFsVVEWz8Cb+VVMi3cvEomJ7oH2kdU4rlJwE=)
2: uzOfDn3na_0H4FMYAvULbyI0B6c.roa (hash: uAuwh9KcLGGG4HeIvB3vA//BXxot+F12ayTtv/6riqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:e6:66:ad:cf:1e:51:dd:db:41:92:e5:b5:2b:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Validity
Not Before: Aug 23 16:00:26 2025 GMT
Not After : Aug 24 16:00:26 2025 GMT
Subject: CN=5693f10265f8c0ff34fffe39476483decda3d16c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7b:97:a8:f7:29:7a:01:64:7e:72:7a:28:2c:
ab:a2:81:52:45:a2:70:26:f8:f0:dc:d6:76:3b:33:
1e:ac:c0:d5:6e:c8:25:ba:52:cc:e9:bf:ac:3d:0a:
58:6e:d9:da:7a:36:3f:4e:cc:06:38:c7:26:fb:19:
d7:74:e9:51:ec:25:d8:61:27:3f:a3:cf:e6:d5:c9:
e8:94:f4:ce:a8:c5:b3:75:6b:78:2c:cf:97:9d:f3:
c1:3b:88:da:49:d4:58:66:12:e2:25:b2:a0:fc:c2:
4b:c3:1d:72:85:95:3f:02:d1:2c:52:25:b9:01:cb:
32:39:3d:11:03:e1:12:e2:05:9c:31:58:66:11:11:
aa:1a:45:eb:c6:26:c6:0f:2e:b6:2b:19:9f:9b:3b:
f5:01:47:d8:a6:c5:28:36:e5:63:db:1b:59:67:a8:
db:45:92:b4:40:ac:5f:51:64:39:0a:2f:bd:ab:a2:
98:3d:be:30:a7:f2:f3:b1:eb:bf:70:87:b0:20:39:
9c:28:46:6c:da:8f:c5:2d:73:91:97:f1:be:b3:f2:
06:67:1d:26:36:1a:b4:f9:b2:9e:fd:a8:09:e7:90:
dc:9d:69:c5:1c:86:c2:7b:57:a7:60:1f:4d:94:c2:
9c:5c:0f:ee:88:8e:8a:82:2c:da:5f:8b:b2:22:5d:
34:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:93:F1:02:65:F8:C0:FF:34:FF:FE:39:47:64:83:DE:CD:A3:D1:6C
X509v3 Authority Key Identifier:
keyid:E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:cb:65:2f:60:1a:eb:3e:38:a0:09:3e:5c:70:09:d0:64:be:
1b:fa:fd:c3:43:8b:d0:24:6b:be:be:85:f1:70:c8:ba:4b:c9:
fc:95:bf:26:ed:b3:9a:a0:f8:5d:a9:cb:06:56:15:6e:e3:18:
12:b0:4e:11:6e:c6:93:30:f9:bd:23:dc:b0:22:c3:07:47:fe:
83:9b:a1:b5:7b:58:98:36:b2:2a:c6:a3:84:38:50:d5:b1:91:
79:be:9a:61:4a:0c:1e:bf:ad:81:9f:71:e2:e7:76:c1:e3:a2:
8d:a8:10:64:b2:be:a5:4a:0d:e5:c2:fc:c8:66:09:0b:16:00:
63:8b:c1:90:37:dd:4a:db:e5:6d:8d:9a:9e:8f:d0:f2:6b:f3:
fe:5b:71:c1:20:2b:83:eb:bb:92:65:61:cd:aa:8e:e7:d8:44:
30:11:7a:5c:72:11:e5:f0:91:c8:70:35:95:e6:70:48:b8:c6:
c2:4e:40:20:36:3d:e5:35:ef:63:41:c7:10:13:5e:0a:6e:dc:
14:7d:4a:20:fe:25:fa:74:56:9e:cd:b5:48:d4:2d:12:22:be:
0c:76:0c:02:68:84:d8:dc:3a:28:66:f9:18:08:40:25:ce:12:
8b:a2:72:ba:ae:0f:9a:08:e2:ca:94:3a:3c:c7:ee:2f:90:b8:
6e:62:0a:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:25:16 2025 by rpki-client