Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
File: v5gt73eibXzBlHOzpAZNzFIX5HE.mft (raw, json)
Hash identifier: vs9fW2TT4idYSk0/mnm7/3gNcs5fJmYWcn8+GQnfYF4=
Subject key identifier: 57:91:2D:0F:A1:91:8D:A2:79:61:9D:08:C4:CA:9A:54:03:92:53:8A
Authority key identifier: BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
Certificate issuer: /CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Certificate serial: 0199228D193E5EB6268E878D7C2114DF3E9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 05:01:36 +0000
Manifest this update: Sun 07 Sep 2025 05:01:36 +0000
Manifest next update: Mon 08 Sep 2025 05:01:36 +0000
Files and hashes: 1: JoXkjArh1eQOEzJmDg5eyKhlAZU.roa (hash: IpnTumi25Jm35YnmbE0mTeFwDsMDbPll4BvRMHinz6I=)
2: v5gt73eibXzBlHOzpAZNzFIX5HE.crl (hash: SHv6B35LVwdLu1XZDERcACcS0fkKdNFMeQd4o+zbDrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:19:3e:5e:b6:26:8e:87:8d:7c:21:14:df:3e:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Validity
Not Before: Sep 7 05:01:36 2025 GMT
Not After : Sep 8 05:01:36 2025 GMT
Subject: CN=57912d0fa1918da279619d08c4ca9a540392538a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:76:b7:ba:f5:d0:44:53:a7:70:77:e9:28:78:
91:d6:d8:e0:49:01:1c:ff:2e:04:c2:51:bf:fc:a3:
f8:89:63:7f:99:82:0f:48:ee:31:25:85:3a:08:db:
78:b7:a7:c5:77:33:37:f5:51:30:98:c9:49:3b:0f:
25:37:3c:29:2b:b5:d6:35:b6:f4:07:2c:2d:1c:74:
16:86:86:23:d4:92:a1:4b:45:54:74:80:43:b3:61:
57:53:19:88:d4:44:c9:d9:63:16:b8:14:60:bd:79:
05:5e:fb:ea:60:7c:39:38:74:73:6e:9a:84:d7:4a:
a6:7e:a9:7a:e9:f1:d7:ae:dc:ce:71:64:69:05:17:
3e:d5:39:b8:d5:cf:6d:96:15:59:34:2a:7b:52:5c:
15:a2:79:9b:3c:77:36:75:0b:a7:df:b8:4b:9c:c7:
7c:f6:65:3e:15:90:77:43:34:be:56:19:56:af:17:
1d:37:85:8c:70:98:2f:5e:95:ad:15:fa:00:c8:b0:
e8:4b:7a:d6:6a:e7:d0:52:a4:72:da:3b:b9:9e:99:
29:28:07:32:a6:70:74:24:b9:5a:3b:99:71:b0:51:
e5:33:10:0f:7a:f2:9a:6c:cb:c2:0e:0d:81:de:d8:
94:ff:4f:b9:dc:2d:01:c8:57:f6:95:32:1a:70:c4:
40:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:91:2D:0F:A1:91:8D:A2:79:61:9D:08:C4:CA:9A:54:03:92:53:8A
X509v3 Authority Key Identifier:
keyid:BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:95:8f:cd:1b:ad:cd:98:cd:da:2b:c7:b8:bc:f0:a2:12:36:
ab:c4:be:5c:c8:a8:91:36:58:37:1e:75:73:0a:51:ff:6d:23:
82:0e:eb:c6:8d:f6:d0:bf:a1:2c:7d:27:e8:e7:a3:b8:ca:92:
21:9e:51:51:2e:d0:7e:af:00:91:14:c5:dc:de:d8:9a:a8:7f:
31:ec:ae:4a:4c:9b:75:01:f5:a6:9b:17:d4:ab:ed:24:95:8f:
ee:dd:5b:0e:f2:8b:51:57:65:30:36:53:ff:31:51:86:82:64:
fe:3a:ce:b3:2c:56:b1:b3:61:86:76:cf:d7:4f:4b:78:2b:61:
03:d7:42:59:1e:a0:ea:93:64:3b:44:6c:79:ed:2b:02:7f:4f:
69:22:b4:fa:11:ba:c2:f5:58:0b:91:74:2c:ea:fe:99:77:49:
a2:9a:e8:95:64:35:97:92:95:1f:22:8a:ee:e1:17:7c:12:83:
5e:7c:7d:d7:66:bf:b3:bf:b8:38:6a:ef:e3:85:f2:99:c6:33:
c3:88:cb:17:1d:ab:64:ab:0a:68:53:9d:3a:ca:cc:9d:f6:d2:
c9:0c:01:21:49:de:f9:5e:e6:2d:4f:9d:ee:3c:cd:41:e6:4e:
0c:7c:6c:90:cb:cc:31:88:4b:ff:b0:28:e1:2b:9b:46:e4:ad:
93:96:55:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:10 2025 by rpki-client