Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
File: 5DWo9PNqSBGpLRlhc-HEmarMd9U.mft (raw, json)
Hash identifier: cRlxIPp1PUpx6VnqCPX7eZldfhFNNnvWaLgBFLd3cds=
Subject key identifier: 96:FD:8F:EF:93:54:26:F9:25:F7:0E:1D:31:E6:FD:59:AC:B0:D2:D1
Authority key identifier: E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
Certificate issuer: /CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Certificate serial: 0199FD33E07BDCC691B37A55207279B9D864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
Manifest number: 0DC0
Signing time: Sun 19 Oct 2025 16:00:59 +0000
Manifest this update: Sun 19 Oct 2025 16:00:59 +0000
Manifest next update: Mon 20 Oct 2025 16:00:59 +0000
Files and hashes: 1: 5DWo9PNqSBGpLRlhc-HEmarMd9U.crl (hash: ufqxzYPko6jXUOs9v5OFY0TA+ZHIe0kk+lQ369o1KPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:e0:7b:dc:c6:91:b3:7a:55:20:72:79:b9:d8:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Validity
Not Before: Oct 19 16:00:59 2025 GMT
Not After : Oct 20 16:00:59 2025 GMT
Subject: CN=96fd8fef935426f925f70e1d31e6fd59acb0d2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1a:11:f5:01:1d:bd:cd:ab:b0:99:67:be:87:
0b:99:65:dc:e5:e3:76:b3:1e:62:0a:e2:0a:c2:ad:
a8:12:50:93:3e:2d:78:81:db:23:99:61:96:78:dc:
8a:04:e5:ca:82:4f:a7:3d:89:50:bf:e5:dd:ee:2b:
ae:fd:8c:7d:a4:49:79:78:42:03:7b:c3:0f:50:18:
6d:58:3a:29:02:ba:67:48:26:16:1b:9f:d9:1c:5b:
b9:55:88:bc:b1:54:4c:00:e0:23:c1:68:81:88:85:
35:d6:c5:c4:a1:e0:48:8c:61:5b:83:51:de:a0:2a:
8c:95:51:a0:f8:74:63:90:89:50:0c:5e:8c:03:08:
92:09:f3:f8:fd:6f:8d:b0:9b:f3:cf:75:ab:f0:98:
ac:db:ac:0e:a6:8e:69:59:2d:9f:e6:52:2f:91:84:
c6:06:74:c6:e2:d3:d9:44:15:de:26:38:b4:2f:9c:
f7:bb:e6:d3:34:76:c5:45:de:4d:74:af:8f:e4:4f:
c5:4a:37:6c:83:66:a4:1e:a0:08:bc:e9:90:9e:f7:
1e:b9:9d:4a:e9:ae:9f:fd:59:01:ee:55:8a:38:e9:
fe:19:8f:3a:42:ee:8d:59:a6:7c:a4:52:d7:08:28:
e9:2c:8d:a6:c9:54:79:71:df:49:51:5e:48:d6:f5:
dc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:FD:8F:EF:93:54:26:F9:25:F7:0E:1D:31:E6:FD:59:AC:B0:D2:D1
X509v3 Authority Key Identifier:
keyid:E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:50:c2:3d:4d:30:e6:2b:a1:0b:de:5a:9d:c1:43:cf:06:db:
84:95:5a:7f:75:50:d9:3a:d5:28:fd:3e:84:55:aa:a4:7a:57:
bb:12:06:b7:f8:7b:01:b8:b3:79:8e:27:87:6f:d8:25:ed:4a:
28:4e:63:5b:bf:04:ea:a2:5e:01:17:58:0b:ba:53:82:0c:f7:
fa:ad:5c:4f:0a:7d:5f:43:26:90:26:e7:1e:84:cf:ce:69:fe:
ae:03:dc:64:d2:72:bc:30:bb:15:e9:70:23:f6:cd:50:86:48:
bf:3b:d8:99:ec:15:ca:74:ba:cf:45:2f:8b:08:6b:7b:52:0d:
96:54:d3:60:4b:b6:e4:fa:8f:13:57:4c:43:36:49:c8:e1:a2:
0e:3f:e5:e2:2e:69:9e:c5:91:65:66:14:74:39:db:d3:b9:55:
f5:49:3e:17:3b:43:5e:88:18:90:cc:fc:97:3c:2b:46:51:00:
c0:e4:ec:fa:de:2f:5c:05:aa:bd:54:0c:40:4a:4d:f7:82:3a:
3d:a4:ba:9c:e6:98:a0:ee:e0:71:42:84:c2:a8:43:51:6e:59:
12:88:38:f9:e3:bc:72:e2:04:87:99:d1:17:72:db:68:30:e4:
12:0d:79:2c:5e:37:06:32:15:92:eb:ad:52:be:aa:71:98:3e:
42:dc:1f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:43:11 2025 by rpki-client