Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
File: 59aKnrhqgmTp3cMSKEm4DMNC9dw.mft (raw, json)
Hash identifier: 2UdUdGZx+wZF04ArcRVf8Sub0/QDAwIk7uwWWZjb+7A=
Subject key identifier: 5F:6F:BF:15:38:80:86:B5:D5:18:E4:FC:F6:9F:E5:AB:E5:43:94:AA
Authority key identifier: E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
Certificate issuer: /CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Certificate serial: 0199FCFD9B4BD7914C43087509E82B594E3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
Manifest number: 13FC
Signing time: Sun 19 Oct 2025 15:01:42 +0000
Manifest this update: Sun 19 Oct 2025 15:01:42 +0000
Manifest next update: Mon 20 Oct 2025 15:01:42 +0000
Files and hashes: 1: 59aKnrhqgmTp3cMSKEm4DMNC9dw.crl (hash: kpsKzk3iNi4Mq6WEAOE1PZ+3dx7EFpjZZyKugQIJx4s=)
2: qetS73-OE2CSttiMvug0TDfkr54.roa (hash: f7CQ5AXCS66V7YOxpVoih8o6XmqrwIeswAWr26eRNls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:9b:4b:d7:91:4c:43:08:75:09:e8:2b:59:4e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Validity
Not Before: Oct 19 15:01:42 2025 GMT
Not After : Oct 20 15:01:42 2025 GMT
Subject: CN=5f6fbf15388086b5d518e4fcf69fe5abe54394aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8a:ac:d5:59:bd:fe:37:02:bc:89:a8:d5:63:
ca:36:cf:fc:1c:53:f1:19:05:58:07:32:d4:1b:9f:
c7:0a:11:29:f2:d5:c7:5a:d4:d7:84:42:33:0c:d8:
89:61:b1:1c:e4:08:e3:e6:54:db:80:1a:03:1b:d2:
c8:ef:b6:42:bd:25:69:d0:a3:d3:b3:18:3a:c8:b8:
47:f8:57:b0:de:c4:6f:27:30:ca:00:17:12:ca:c8:
1b:88:c8:77:1f:87:e9:2f:c3:ca:97:c7:3e:7f:9c:
85:5b:b2:8f:90:af:76:16:4f:65:59:8d:91:dd:fa:
99:5b:e0:33:de:09:68:3b:b8:f1:45:f1:3e:7c:bd:
39:e1:27:d5:7a:56:67:b8:00:55:51:9d:08:05:84:
a6:04:6b:29:16:1b:ba:98:52:13:1e:79:90:18:a6:
83:e2:f0:ea:d7:94:4a:92:7e:8a:f6:63:8f:10:a9:
d1:42:0b:51:4f:d8:0e:c4:47:a1:92:1c:86:50:cf:
dd:b4:a8:28:1f:58:ca:3a:33:27:35:53:bc:d0:9f:
b7:e0:f6:40:04:f4:2d:40:ff:7b:e7:bf:a3:0a:8f:
49:08:37:07:ef:f7:50:4c:29:78:bb:02:f6:60:17:
3b:8b:d3:f0:0e:11:17:5e:66:b0:03:fc:5a:7f:72:
9c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:6F:BF:15:38:80:86:B5:D5:18:E4:FC:F6:9F:E5:AB:E5:43:94:AA
X509v3 Authority Key Identifier:
keyid:E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:07:30:41:5d:ec:74:b5:f2:66:36:db:90:60:0a:58:f2:ee:
de:97:7a:42:e6:95:4f:9e:e7:b4:62:4b:87:7e:21:5b:af:b6:
e3:00:ac:09:81:53:5b:42:40:95:b9:1a:90:c0:7d:6b:ef:6b:
17:01:2e:60:cb:ae:45:8a:57:dd:bf:d8:d1:e2:71:b5:3d:40:
f4:4f:33:bd:ce:08:c6:55:9e:04:ab:64:d0:38:53:64:4d:2d:
91:2e:5d:4f:3f:ed:af:3e:2f:1e:0c:13:3d:54:7f:cb:6b:e6:
0c:57:e4:08:63:7f:2e:13:d1:aa:8d:50:08:29:60:95:57:a9:
17:8d:6a:5c:fb:81:5f:10:9d:a2:8f:ff:26:24:a8:42:15:45:
d2:da:53:e4:50:6e:05:f9:82:4e:0b:77:de:3c:b1:8f:a1:d6:
ee:42:cb:95:76:d2:ec:d6:be:a8:ea:0b:57:d2:37:64:c8:1b:
c8:61:fc:42:81:9b:c7:9a:50:32:4d:c0:18:8b:70:a6:c2:db:
b5:04:af:66:ab:ab:d9:23:57:94:6e:1c:78:5e:50:1b:c7:99:
6c:2e:a4:9f:1c:d9:29:ad:a1:ec:69:1e:b2:1c:99:47:77:66:
e9:31:36:4a:f6:ab:5a:65:9b:fb:a1:b7:80:74:b1:d8:c9:75:
5d:fe:19:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:02:23 2025 by rpki-client