Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
File: v5gt73eibXzBlHOzpAZNzFIX5HE.mft (raw, json)
Hash identifier: SbRs9ErQhS7vXn7/gt74S47m7L4TfwWOI7/ewyHEMGM=
Subject key identifier: 5F:5B:16:D9:45:54:0B:7B:72:7F:F3:53:1C:55:BB:DF:47:3A:A1:F2
Authority key identifier: BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
Certificate issuer: /CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Certificate serial: 019A29302B9410FE665C3EFDE27CC46BBE0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
Manifest number: 16FA
Signing time: Tue 28 Oct 2025 05:00:13 +0000
Manifest this update: Tue 28 Oct 2025 05:00:13 +0000
Manifest next update: Wed 29 Oct 2025 05:00:13 +0000
Files and hashes: 1: JoXkjArh1eQOEzJmDg5eyKhlAZU.roa (hash: IpnTumi25Jm35YnmbE0mTeFwDsMDbPll4BvRMHinz6I=)
2: v5gt73eibXzBlHOzpAZNzFIX5HE.crl (hash: YYDnKKTmeoKdy0aO6oP7w1Lggkd4TeI/CJA0fq2t9Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:29:30:2b:94:10:fe:66:5c:3e:fd:e2:7c:c4:6b:be:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Validity
Not Before: Oct 28 05:00:13 2025 GMT
Not After : Oct 29 05:00:13 2025 GMT
Subject: CN=5f5b16d945540b7b727ff3531c55bbdf473aa1f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:14:c3:28:2d:b9:9c:1d:42:81:ee:bf:7c:58:
ee:8c:5e:40:2a:74:e7:ee:bf:8a:83:15:cd:21:23:
4b:26:07:16:bc:91:30:02:8e:2a:7d:aa:55:8d:8c:
a3:af:f6:8f:21:c1:6b:31:75:67:8f:f5:58:95:d6:
5a:c3:71:49:56:1a:e7:df:c9:17:1a:fa:a6:58:d4:
ab:29:70:cd:3d:7b:56:7b:1f:c1:e4:d7:91:5f:06:
53:e6:f9:ff:3f:f6:19:a1:f9:7c:d2:dc:18:5e:ba:
c1:8c:ea:09:ea:a9:b8:16:c5:f4:1d:41:50:47:f4:
ea:97:64:d1:8f:94:bd:e7:00:59:cc:c3:0d:b7:ce:
a4:fe:31:48:ea:24:e9:03:07:ea:62:29:6e:b7:c3:
dc:23:59:5b:18:00:00:49:a1:93:8b:a1:12:a0:f7:
83:17:4a:7f:16:1f:a8:36:01:8b:f4:31:5f:41:bf:
86:1a:e0:30:15:e2:fe:1d:84:7a:21:66:71:31:ec:
b8:35:fe:ce:20:95:bb:01:ac:e8:88:b1:1a:b2:7d:
df:15:4d:11:36:14:08:32:1f:d4:10:0c:92:a5:8c:
73:a5:1c:51:a4:b6:e9:50:48:cf:09:52:85:2b:fe:
18:2a:3b:38:c7:dc:8b:fc:3b:52:00:dc:50:00:9f:
e4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:5B:16:D9:45:54:0B:7B:72:7F:F3:53:1C:55:BB:DF:47:3A:A1:F2
X509v3 Authority Key Identifier:
keyid:BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:53:88:92:d5:c7:a6:1d:c5:b9:fc:88:c1:6b:78:23:df:09:
58:4a:15:92:38:c4:d1:7e:40:17:91:c7:da:3b:ad:f9:d2:3e:
17:5e:1b:06:60:41:0d:97:b2:b6:5b:90:10:9c:98:1e:b1:c4:
0a:76:e3:79:93:73:4f:3e:08:44:c0:9e:d2:cb:83:2e:44:27:
00:2a:a5:d2:a4:43:02:6c:92:4e:4b:38:cf:0a:f9:f2:4e:cf:
64:a1:21:1c:6d:72:a7:2a:c9:c6:a0:49:30:81:5c:49:7d:60:
0f:f8:60:d7:e1:2b:67:51:a2:cd:c0:a0:91:0f:b9:86:60:2d:
10:9f:a0:eb:4a:ab:99:cb:7e:45:4d:b0:1e:6a:76:a8:36:67:
14:99:75:b8:25:52:cd:6c:a6:ec:47:b7:ac:a5:c7:08:7f:da:
78:b8:ff:12:00:e5:52:0b:22:83:42:84:09:e3:3f:0d:9e:8d:
85:ce:7a:23:b1:81:9e:c9:0f:90:da:0a:3d:34:bb:3f:83:26:
fd:02:68:63:d7:2a:69:d5:59:fe:fa:87:7b:23:7c:1e:3a:52:
3f:c4:80:d5:ca:ac:36:dc:2c:95:31:84:91:74:da:71:67:0f:
ff:11:19:03:6a:50:af:c7:2c:2e:f1:6b:39:3d:d8:5e:a9:d3:
79:50:35:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 10:35:16 2025 by rpki-client