Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
File: 5KnudPLZhMiKs7ma5x0LfHuvgVA.mft (raw, json)
Hash identifier: O07t6SDbAGEHdeJoTOc8Zq7z4mPIMBRKYzp5MCAtjxA=
Subject key identifier: 52:72:DD:57:6D:A3:D3:BB:80:2C:5C:4D:EF:C8:44:CD:99:10:C3:A8
Authority key identifier: E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
Certificate issuer: /CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Certificate serial: 0199FDD8CFC26244E433C14C96FC681248AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 19:01:08 +0000
Manifest this update: Sun 19 Oct 2025 19:01:08 +0000
Manifest next update: Mon 20 Oct 2025 19:01:08 +0000
Files and hashes: 1: 1kmQygnKJuFomMWscO7_tmV5MPY.roa (hash: 1R7F/hqJ/U8XRXU5qTBNp/iBMwQ2HNOAJ68qC4TlDwI=)
2: 5KnudPLZhMiKs7ma5x0LfHuvgVA.crl (hash: W3ugclLD/NaSyh6qUR0nbiFLBecS15F14IBi5z+OjMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:cf:c2:62:44:e4:33:c1:4c:96:fc:68:12:48:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Validity
Not Before: Oct 19 19:01:08 2025 GMT
Not After : Oct 20 19:01:08 2025 GMT
Subject: CN=5272dd576da3d3bb802c5c4defc844cd9910c3a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a1:73:bc:0d:90:38:7c:dd:b2:1b:75:c3:45:
65:e7:b9:3a:03:ec:a2:bf:0c:41:e1:69:14:25:94:
29:14:9a:55:76:00:23:7c:f8:7a:13:7e:86:33:54:
f7:6b:cf:a6:59:51:da:3e:04:0a:b5:7f:97:23:52:
79:7d:b2:8d:1e:cd:34:24:b4:0d:c7:78:f8:cd:ad:
41:1c:89:65:c9:88:9c:cb:29:dc:cb:9c:88:8a:00:
10:f4:fb:c0:c2:9f:50:f0:01:fe:2a:d2:20:3a:91:
87:cb:a5:17:2f:96:ec:3b:ee:22:b9:a1:ea:2a:4e:
c5:5c:07:24:31:44:48:7f:d9:81:e6:63:87:f5:c3:
82:ff:09:43:e4:fa:5d:85:47:c8:1d:2e:d8:7e:d8:
c5:50:d2:20:8a:8f:e0:23:53:03:44:06:80:5e:e1:
57:62:9f:4d:e5:31:d6:26:af:8a:4d:54:cc:b7:b5:
ef:5b:2a:0d:03:0c:bd:0e:58:03:2c:4d:5b:53:33:
5a:f6:76:55:cb:e5:10:d6:cc:c7:53:9e:0e:9c:2f:
10:f7:5a:68:99:ba:71:e6:ae:d1:32:bd:6c:be:11:
57:4a:a3:01:09:e9:78:b6:6a:56:9c:79:dc:a0:9b:
ff:3d:cd:be:76:57:e8:22:59:84:f3:56:df:f3:18:
2d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:72:DD:57:6D:A3:D3:BB:80:2C:5C:4D:EF:C8:44:CD:99:10:C3:A8
X509v3 Authority Key Identifier:
keyid:E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:64:29:0c:d6:27:9a:95:7e:7e:aa:23:25:f5:3e:5c:5c:ce:
39:9b:35:27:0e:fc:05:3d:e5:05:88:39:9b:2c:99:7c:ca:ab:
b2:55:d7:9c:3b:d5:23:b8:51:0e:4a:f2:c7:53:5e:15:22:2d:
36:b9:8f:6c:87:c9:55:75:65:5f:70:75:db:03:43:1d:69:2c:
47:fb:98:e5:fc:78:b9:45:7f:d2:53:d3:3f:ce:c7:32:f3:41:
40:ea:12:98:fc:23:10:8f:ae:92:85:ba:f0:e2:8c:d5:fe:44:
0f:d2:38:0a:47:42:c2:f7:b2:09:15:ed:4f:7a:cf:b5:6a:8b:
c5:ef:52:9f:69:6a:c5:5f:c5:6b:8a:a4:51:0e:b8:4c:5b:27:
1e:3e:e3:0d:e3:53:31:3f:79:da:25:be:95:b0:1e:69:4c:6f:
6a:10:d3:c5:c5:ff:92:81:d3:8e:81:49:a6:ac:02:dd:5d:ff:
24:60:28:b7:5d:e2:c6:45:f3:a5:7e:f0:af:ac:17:2f:89:24:
76:12:9b:e9:ab:9d:81:c7:0c:8c:5b:7f:ac:34:eb:ba:c3:98:
da:0d:a9:eb:3f:78:ed:52:29:fa:2c:67:a2:5a:c5:9c:5d:56:
e1:d3:be:0f:73:3c:cb:62:ab:ec:c4:74:5b:cb:df:7f:4f:27:
93:1a:c2:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:28 2025 by rpki-client