Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
File: 5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json)
Hash identifier: 9MhgFFJJ0HHWeNa10HAW1+QLtpWdPmUP0hJG35dfxrM=
Subject key identifier: 1B:BC:7B:4A:81:06:EA:8E:05:5A:C1:CA:70:94:35:18:E4:AB:24:E6
Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
Certificate issuer: /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Certificate serial: 0199FE46BE7B2F055E8680DD05B8F47FB898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
Manifest number: 13C1
Signing time: Sun 19 Oct 2025 21:01:13 +0000
Manifest this update: Sun 19 Oct 2025 21:01:13 +0000
Manifest next update: Mon 20 Oct 2025 21:01:13 +0000
Files and hashes: 1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: 78IiJmjDS5052CfRr28eXFTM1qqQ6+5NR2gJK2uvvYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:be:7b:2f:05:5e:86:80:dd:05:b8:f4:7f:b8:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Validity
Not Before: Oct 19 21:01:13 2025 GMT
Not After : Oct 20 21:01:13 2025 GMT
Subject: CN=1bbc7b4a8106ea8e055ac1ca70943518e4ab24e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:84:e7:2d:4c:d7:99:55:1d:2f:8f:98:d9:68:
cf:ce:d4:57:c3:79:5f:a4:8f:5a:cc:25:87:d5:7d:
a6:74:dd:41:07:26:96:4d:75:bd:55:ed:63:de:40:
3b:5a:0c:d0:7f:9b:f0:0d:79:1b:9f:7e:73:bb:07:
9b:d1:01:ad:10:9c:0f:c4:09:84:e7:6f:42:ef:5b:
a6:bc:f7:5e:a3:4f:60:4e:db:ed:a9:0a:5a:39:24:
7e:39:7d:79:59:c6:4a:d0:47:8a:a1:8d:4a:a8:bd:
a0:53:d7:a6:c7:c9:aa:e6:fc:36:2a:97:bf:97:25:
59:de:e6:52:9f:cd:b8:2f:23:8e:1d:cf:5f:16:58:
13:7e:39:2d:bf:1b:c8:b1:e9:cf:d2:c1:6b:79:38:
9a:e8:e3:93:18:0f:89:2e:f6:1e:6f:01:73:37:ad:
c1:40:e3:d0:a8:ce:72:89:77:49:fd:b6:9d:b8:59:
f4:f3:66:dc:63:59:6a:1d:d1:b3:c5:82:a5:a2:a5:
55:5a:20:78:8c:34:35:a3:80:c5:86:5d:8c:1f:3b:
cf:ba:c6:39:b9:fe:43:24:94:49:2b:e0:df:45:29:
46:a4:b8:07:0f:f6:cb:8f:aa:f0:67:17:d8:1c:6b:
32:1e:07:8c:a3:43:38:99:6f:b5:ea:13:9d:17:25:
3b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:BC:7B:4A:81:06:EA:8E:05:5A:C1:CA:70:94:35:18:E4:AB:24:E6
X509v3 Authority Key Identifier:
keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:9d:e7:2b:86:8f:bc:a9:bc:39:96:82:a1:d6:ad:19:a2:fb:
8c:c4:b6:7c:0f:30:2b:ae:a4:36:af:4f:a1:76:e2:fc:44:0b:
2f:fc:f0:cd:f3:20:ac:79:d3:a7:51:13:da:96:89:33:88:eb:
33:c5:0d:78:fc:fe:0b:18:2d:3f:ad:73:d9:e5:30:0a:ee:d5:
d4:f4:91:43:19:72:7e:86:61:3d:dc:2f:8f:98:c6:fc:8b:ff:
1a:43:83:c7:01:23:78:75:02:12:a0:b4:da:3d:bf:93:0d:91:
7b:32:49:90:ab:cd:c9:7c:59:17:f7:ef:3c:07:76:0a:1b:09:
73:79:0b:d4:bb:2a:90:82:76:99:72:38:7d:79:06:1c:e5:a2:
2e:3d:f4:68:5e:b9:e2:39:af:96:e1:a7:a4:6b:37:c4:77:05:
04:6f:39:f0:31:52:2e:52:8a:62:b1:d5:43:03:58:c6:5f:2d:
d6:8f:56:07:04:3b:0d:17:82:1c:ad:c4:89:b5:33:4e:40:ac:
98:1f:00:79:7d:7e:1c:7c:fe:4a:e1:47:06:c3:18:c5:91:0b:
1e:3c:5f:8a:f2:a1:20:d9:1f:9e:66:10:45:7b:11:ad:84:4c:
f8:75:5f:cc:d7:c2:40:52:f0:96:b4:58:9e:90:c6:7a:f6:80:
f6:90:b8:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:05:01 2025 by rpki-client