Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
File: 5UGkwVK194bWI9hcQUZSmc3aM4k.mft (raw, json)
Hash identifier: zqx5wTunuzf2JATDYfT4yw59pzgayUI88pHmGipwm6w=
Subject key identifier: ED:35:02:EC:C7:8B:FD:25:F6:68:46:23:7E:4A:29:97:4C:4A:56:EE
Authority key identifier: E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
Certificate issuer: /CN=e541a4c152b5f786d623d85c41465299cdda3389
Certificate serial: 019A0110D8EA843DCD03E677B1ADB356E786
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
Manifest number: 16E7
Signing time: Mon 20 Oct 2025 10:01:12 +0000
Manifest this update: Mon 20 Oct 2025 10:01:12 +0000
Manifest next update: Tue 21 Oct 2025 10:01:12 +0000
Files and hashes: 1: 5UGkwVK194bWI9hcQUZSmc3aM4k.crl (hash: sCxdUVI8MEc7oLfhDEi4tG/vbAvJRVEzjfaHEGRugaA=)
2: kenow9ooVwL0t4IuHSVvvQIsN8M.roa (hash: tJkXtVd1TBPTWkBnhiKcyLiHlQeoQgvy5+UbWV83vUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 10:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:10:d8:ea:84:3d:cd:03:e6:77:b1:ad:b3:56:e7:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e541a4c152b5f786d623d85c41465299cdda3389
Validity
Not Before: Oct 20 10:01:12 2025 GMT
Not After : Oct 21 10:01:12 2025 GMT
Subject: CN=ed3502ecc78bfd25f66846237e4a29974c4a56ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ef:d3:83:f8:1a:14:bd:c6:d9:cc:4a:e3:a2:
61:22:f2:98:c2:ab:0d:79:81:9e:b2:0c:4e:1b:c4:
a3:bd:38:b2:bd:57:f5:28:74:75:41:ab:e5:ed:77:
53:2d:36:89:e9:08:31:a9:da:8f:f0:8c:31:42:fe:
aa:dc:b7:5f:d6:12:67:b5:5e:66:62:52:13:7d:0b:
f6:23:e0:5d:f3:6f:d3:6c:18:24:de:40:76:6f:9e:
99:2b:c4:81:78:5c:a5:56:66:2a:4f:53:da:9f:c6:
bb:23:84:c8:e7:b5:22:18:51:d9:7b:d7:6e:df:53:
7d:59:0e:7d:0f:03:52:21:e1:0c:21:a1:b0:38:47:
51:bd:99:7b:5b:a3:05:07:4c:ff:a1:59:2c:15:0c:
8f:80:f0:53:12:4c:bb:35:8a:35:9e:9e:7d:36:8e:
b3:d7:5a:95:83:06:51:5a:7b:bc:13:48:6c:57:4b:
87:f1:9f:08:84:4a:e4:f8:54:62:b1:88:0d:f8:f0:
84:75:74:0e:c3:4f:4f:83:60:bd:ec:02:19:1f:9e:
42:90:46:13:d5:08:2f:37:73:79:0c:91:78:fb:69:
56:f6:1c:fe:7f:a9:d2:37:0d:89:bd:17:ae:a7:45:
ea:6e:c8:df:c1:50:9c:6b:f5:a8:aa:48:33:78:1c:
fd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:35:02:EC:C7:8B:FD:25:F6:68:46:23:7E:4A:29:97:4C:4A:56:EE
X509v3 Authority Key Identifier:
keyid:E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:32:72:ab:78:09:42:08:8f:a9:a1:76:e3:5f:92:fb:55:de:
58:3a:4f:a9:67:1f:9a:e0:dc:d2:37:68:a6:60:56:f2:2a:3f:
c8:0a:a0:ef:5a:e1:b3:b8:fc:80:04:0c:62:76:7d:5a:6c:33:
87:be:eb:c3:05:ec:70:31:81:be:3e:aa:75:f3:49:28:fc:9e:
4e:1e:b1:2e:9e:00:58:ca:47:b4:d3:55:ce:b2:4d:69:0c:53:
9a:89:90:ed:f9:77:1b:9a:11:c0:27:7b:4b:fb:dd:5f:c1:53:
7d:a9:53:66:27:c7:84:0b:52:ec:b4:92:ad:b2:ce:dd:44:60:
d2:9f:b3:7d:e2:44:ad:c5:d2:ec:bd:c2:12:7e:88:3b:7d:d2:
d7:15:94:ac:44:4f:06:3d:21:77:fa:a4:b1:f7:3e:c3:44:12:
47:e3:14:42:36:aa:be:85:cd:19:76:7c:2d:95:74:32:ce:f0:
c1:a8:cc:ef:70:08:a7:13:c7:a0:f7:15:3c:60:3b:77:bb:52:
16:86:70:49:ec:66:de:d4:6d:cd:15:0b:52:94:ef:53:8b:86:
c8:98:82:32:f0:92:bc:26:73:dc:d4:10:31:28:4b:af:ca:bc:
2e:d3:8b:98:20:a8:e7:20:05:e4:f2:fd:1f:2c:05:1f:9e:9e:
f5:e2:ae:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoBENjqhD3NA+Z3sa2zVueGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1NDFhNGMxNTJiNWY3ODZkNjIzZDg1YzQxNDY1Mjk5Y2Rk
YTMzODkwHhcNMjUxMDIwMTAwMTEyWhcNMjUxMDIxMTAwMTEyWjAzMTEwLwYDVQQD
EyhlZDM1MDJlY2M3OGJmZDI1ZjY2ODQ2MjM3ZTRhMjk5NzRjNGE1NmVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkO/Tg/gaFL3G2cxK46JhIvKYwqsN
eYGesgxOG8SjvTiyvVf1KHR1Qavl7XdTLTaJ6QgxqdqP8IwxQv6q3Ldf1hJntV5m
YlITfQv2I+Bd82/TbBgk3kB2b56ZK8SBeFylVmYqT1Pan8a7I4TI57UiGFHZe9du
31N9WQ59DwNSIeEMIaGwOEdRvZl7W6MFB0z/oVksFQyPgPBTEky7NYo1np59No6z
11qVgwZRWnu8E0hsV0uH8Z8IhErk+FRisYgN+PCEdXQOw09Pg2C97AIZH55CkEYT
1QgvN3N5DJF4+2lW9hz+f6nSNw2JvReup0XqbsjfwVCca/WoqkgzeBz9pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO01AuzHi/0l9mhGI35KKZdMSlbuMB8GA1UdIwQY
MBaAFOVBpMFStfeG1iPYXEFGUpnN2jOJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEt
ZDg0ZWNiMjUwNWM0LzEvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEtZDg0ZWNiMjUwNWM0
LzEvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYTJyq3gJ
QgiPqaF241+S+1XeWDpPqWcfmuDc0jdopmBW8io/yAqg71rhs7j8gAQMYnZ9Wmwz
h77rwwXscDGBvj6qdfNJKPyeTh6xLp4AWMpHtNNVzrJNaQxTmomQ7fl3G5oRwCd7
S/vdX8FTfalTZifHhAtS7LSSrbLO3URg0p+zfeJErcXS7L3CEn6IO33S1xWUrERP
Bj0hd/qksfc+w0QSR+MUQjaqvoXNGXZ8LZV0Ms7wwajM73AIpxPHoPcVPGA7d7tS
FoZwSexm3tRtzRULUpTvU4uGyJiCMvCSvCZz3NQQMShLr8q8LtOLmCCo5yAF5PL9
HywFH56e9eKuKg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 15:56:34 2025 by rpki-client