Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
File: m5TSR2sxUeHn8DYNzk84USXu1fs.mft (raw, json)
Hash identifier: DDy27x0dSoTrBLS9lbegVbxiwauWkyfH1PHFG/2dL20=
Subject key identifier: 63:EE:BF:13:37:93:82:96:80:5E:62:6F:96:AE:0C:81:8E:BD:D2:CC
Authority key identifier: 9B:94:D2:47:6B:31:51:E1:E7:F0:36:0D:CE:4F:38:51:25:EE:D5:FB
Certificate issuer: /CN=9b94d2476b3151e1e7f0360dce4f385125eed5fb
Certificate serial: 019A0222C228328381DCB648729CEF393C81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5TSR2sxUeHn8DYNzk84USXu1fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
Manifest number: 16E4
Signing time: Mon 20 Oct 2025 15:00:23 +0000
Manifest this update: Mon 20 Oct 2025 15:00:23 +0000
Manifest next update: Tue 21 Oct 2025 15:00:23 +0000
Files and hashes: 1: m5TSR2sxUeHn8DYNzk84USXu1fs.crl (hash: Tmc1bRXUebFydO3T1fEHW+75NStDdjT9pA1E+AFyFrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/m5TSR2sxUeHn8DYNzk84USXu1fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:22:c2:28:32:83:81:dc:b6:48:72:9c:ef:39:3c:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b94d2476b3151e1e7f0360dce4f385125eed5fb
Validity
Not Before: Oct 20 15:00:23 2025 GMT
Not After : Oct 21 15:00:23 2025 GMT
Subject: CN=63eebf1337938296805e626f96ae0c818ebdd2cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c7:d1:c3:c6:b2:57:c6:5e:9a:ea:d6:7b:f7:
ea:e9:1e:af:86:de:ba:f6:d2:f2:f9:b9:d4:69:fd:
7a:f9:a1:de:55:e8:40:8d:95:ad:5e:ea:b1:2c:e3:
3e:f3:1c:4f:ba:62:30:3c:34:80:80:ce:41:dc:dd:
1c:08:6b:bb:65:0c:96:f3:fc:d4:9e:6a:11:df:2e:
00:55:1b:63:63:e0:4d:1b:ff:d1:43:0a:5b:79:e9:
55:54:15:72:6e:c8:67:ef:7d:6e:47:39:ab:cd:f0:
05:29:c6:c5:3c:b3:ed:da:04:01:4a:96:4e:11:a3:
03:4e:ac:2c:a6:b1:dd:24:2d:67:1c:3e:a0:68:2b:
ae:f7:a4:37:92:44:fb:f9:35:9c:fe:a7:6e:34:0b:
aa:aa:72:13:82:8f:bc:b6:8a:0a:84:f7:2d:b6:ce:
7e:45:a2:0c:e1:c2:98:ca:f3:30:71:34:5f:5a:1c:
29:6e:71:fd:c3:99:55:45:83:88:13:94:a8:a0:d4:
19:dd:0d:8e:c5:a5:cc:df:d1:07:5e:72:40:ad:db:
11:01:ab:3f:d8:23:ad:f8:86:cb:bf:3d:8e:a8:02:
9c:55:31:1c:13:6a:ce:2a:79:e1:02:d0:da:07:69:
77:ee:7e:f9:48:c1:cb:9e:68:66:9c:15:74:ee:c4:
6e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EE:BF:13:37:93:82:96:80:5E:62:6F:96:AE:0C:81:8E:BD:D2:CC
X509v3 Authority Key Identifier:
keyid:9B:94:D2:47:6B:31:51:E1:E7:F0:36:0D:CE:4F:38:51:25:EE:D5:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5TSR2sxUeHn8DYNzk84USXu1fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:dd:94:8b:17:c6:32:67:04:4a:de:af:0d:73:54:f0:9b:6b:
f6:06:74:8b:4a:61:0f:be:d2:c1:15:a5:13:6a:bc:7c:5e:a9:
55:98:93:21:f2:38:3c:b4:c7:91:5d:80:4b:52:3b:b8:2e:95:
a5:63:ce:7e:a4:58:fa:b0:9f:96:e0:47:aa:f7:4b:1b:ca:81:
94:85:57:04:b5:cc:2e:3b:c4:be:a2:7d:57:71:c3:cc:21:19:
8b:c0:12:98:40:11:91:3d:e0:5e:9c:7a:46:aa:83:54:9c:fa:
ff:12:12:cc:9b:7e:91:d6:63:9a:65:eb:8b:0e:9a:5f:09:c4:
08:88:78:4e:2d:d9:97:25:e0:0e:54:d3:27:22:49:06:0a:e7:
07:c5:50:46:63:02:0f:52:63:23:15:a3:67:6c:7f:53:35:6d:
c6:c2:94:00:39:c3:fd:c1:9d:e9:d1:61:97:5c:95:5d:23:0c:
e7:1c:b2:6b:7f:af:dd:a5:0e:8e:dd:bc:db:1b:7a:6b:92:2a:
87:40:b2:6b:34:2b:fa:3f:30:4c:89:f2:27:ac:6f:82:07:7b:
23:e2:f5:bc:59:60:f1:ab:6b:2e:c5:91:28:31:0a:2e:72:d2:
63:f9:f9:14:08:63:a3:02:53:61:41:b1:79:32:de:61:b9:4a:
66:2f:da:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:21:27 2025 by rpki-client