Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
File: 5xHIkR7brjbfGoC76BSyWg-UOfo.mft (raw, json)
Hash identifier: UI5pJRrO/e3r+LjfLkwZiVYnZiKfojLPsXFJSxbkFNc=
Subject key identifier: 2C:23:A5:7D:70:E1:13:21:36:B8:26:46:94:E9:4A:1F:BD:11:B6:1A
Authority key identifier: E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA
Certificate issuer: /CN=e711c8911edbae36df1a80bbe814b25a0f9439fa
Certificate serial: 0199FDD8C28A0DE5D73CF20BA187BE1FBE3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
Manifest number: 0A00
Signing time: Sun 19 Oct 2025 19:01:05 +0000
Manifest this update: Sun 19 Oct 2025 19:01:05 +0000
Manifest next update: Mon 20 Oct 2025 19:01:05 +0000
Files and hashes: 1: 5xHIkR7brjbfGoC76BSyWg-UOfo.crl (hash: FFWRnOwnWK/f5BuEsbyY6kn2+doyVdMvYQx6iaUHQzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:c2:8a:0d:e5:d7:3c:f2:0b:a1:87:be:1f:be:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e711c8911edbae36df1a80bbe814b25a0f9439fa
Validity
Not Before: Oct 19 19:01:05 2025 GMT
Not After : Oct 20 19:01:05 2025 GMT
Subject: CN=2c23a57d70e1132136b8264694e94a1fbd11b61a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:57:6c:90:d5:81:38:c2:3f:eb:e7:65:83:
16:c2:33:b9:ad:ff:8c:51:a8:3e:8d:65:56:d1:1e:
eb:fc:87:b4:ab:4d:83:ef:50:44:84:fc:98:d2:09:
7a:dd:8f:b2:4d:3c:0c:27:6f:62:5f:e4:6c:4f:3e:
26:69:43:b9:75:39:14:c9:5d:10:c3:a6:0e:d4:20:
5c:65:d9:62:c4:d3:60:82:a2:b8:58:e3:90:fd:db:
69:41:e0:58:ef:a5:c8:77:72:b8:8a:1e:bf:28:ae:
60:0d:8a:3a:a7:42:af:ac:98:34:c6:f4:ec:42:56:
f4:dd:08:4e:08:fb:80:c8:7b:dc:89:84:06:27:0a:
4a:f5:ad:6b:e3:77:ba:50:a3:a8:4c:70:b9:26:e7:
e9:9e:d4:b6:1d:51:06:e4:99:78:04:ea:3d:ae:74:
59:6c:46:c0:37:1a:10:13:1b:94:42:38:70:3b:0d:
af:bc:a7:44:d2:33:84:bd:ab:3a:68:39:7c:24:2b:
5b:00:af:82:5c:e4:9f:dc:ed:21:aa:6c:39:6b:6f:
17:b0:74:68:63:d1:77:41:41:8b:2b:ab:e8:4a:e6:
60:63:5c:0e:52:73:3f:8d:78:35:4d:9d:3f:24:31:
df:db:14:03:fc:fb:53:99:b1:ea:90:24:e2:6d:b3:
a9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:23:A5:7D:70:E1:13:21:36:B8:26:46:94:E9:4A:1F:BD:11:B6:1A
X509v3 Authority Key Identifier:
keyid:E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:10:72:0c:97:93:1d:79:dd:81:3a:b2:c9:f5:22:c8:a2:2f:
c6:02:b7:33:fd:ee:53:69:f4:ba:60:95:14:a6:f9:6c:f5:50:
8b:2f:81:62:74:19:f0:90:86:24:c5:5d:03:81:47:15:5a:76:
3b:40:72:e7:c2:42:be:a4:d8:95:fd:75:5e:62:99:bb:c3:ee:
d2:3a:b5:69:59:1c:ed:f7:d8:2f:67:3c:2f:77:64:d3:c3:d4:
04:31:86:3b:70:ed:eb:05:22:4f:82:b1:a7:a0:39:62:d0:04:
93:77:29:8c:4c:f3:e7:a5:40:cd:04:54:70:6f:e0:10:75:50:
c6:f2:aa:2a:ab:c2:39:87:4e:9b:65:6f:0a:a4:03:ed:15:7c:
fa:0f:7d:0c:a1:3e:25:b5:25:c0:7a:8d:65:54:f0:c5:0b:30:
85:4f:2a:1a:3c:52:db:3a:fc:1f:2f:3b:9c:8a:e4:6b:65:e6:
5a:ea:f8:23:1b:dc:a9:8f:f7:92:93:52:54:b5:6d:a7:5c:12:
19:2f:0e:05:b5:d6:c6:8a:d8:c0:a6:7f:8c:3e:a3:e2:09:f6:
5c:e0:c9:cb:5d:0e:9a:06:f1:42:75:b3:b4:c1:5e:11:35:75:
c5:62:e6:1a:4b:a4:95:73:7a:98:63:11:2d:40:78:19:6e:4f:
5e:28:d5:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:05:50 2025 by rpki-client