Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft (raw, json)
Hash identifier: hubuwhOXXazE74M6EKhpprvJ7V7CdfBkaV+HYDIqnsA=
Subject key identifier: 5E:32:58:AC:28:63:EC:A4:37:51:91:43:07:56:98:3F:09:C9:7D:49
Authority key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
Certificate issuer: /CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Certificate serial: 019A70A4EB683D4C5730995C7AF8B03CAA4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
Manifest number: 1422
Signing time: Tue 11 Nov 2025 02:00:47 +0000
Manifest this update: Tue 11 Nov 2025 02:00:47 +0000
Manifest next update: Wed 12 Nov 2025 02:00:47 +0000
Files and hashes: 1: 6nka26L-7vbT-huqQ7zH80Ad2_Q.roa (hash: bi36P0sQvSkI3t0S3Th1jO23VxQKQmTqbcjBaO1g00A=)
2: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl (hash: LFpvPP6jd1BYP61Ro/G63EQZm7pD/lVD7+16jJOz4xk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a4:eb:68:3d:4c:57:30:99:5c:7a:f8:b0:3c:aa:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Validity
Not Before: Nov 11 02:00:47 2025 GMT
Not After : Nov 12 02:00:47 2025 GMT
Subject: CN=5e3258ac2863eca4375191430756983f09c97d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:f1:df:5a:67:09:06:3b:60:1a:a5:43:eb:
00:cf:30:92:fb:e3:a0:86:c2:22:bf:46:10:d4:3f:
1c:96:0c:ba:dc:ce:6d:75:c0:ee:9c:05:26:13:01:
a8:32:6d:a6:d8:20:7e:11:5d:6d:73:db:e5:85:0c:
ab:67:2b:df:a3:07:85:6f:7f:4d:47:3f:08:d5:e0:
1a:5b:67:35:71:7e:14:3a:6d:e5:bb:c6:06:54:41:
2e:66:e0:3d:19:09:30:26:54:3a:ce:15:14:5a:2e:
44:b6:15:44:22:db:ce:b9:28:dd:ef:a3:53:90:3f:
ed:83:aa:82:60:34:34:cd:3f:44:6f:08:da:27:30:
15:17:84:20:1b:b2:a2:39:14:b8:46:6e:b1:7f:eb:
58:a4:90:d3:9f:33:f9:be:ba:bf:e1:f8:8c:32:d1:
b8:94:0e:de:56:60:be:47:41:f8:87:84:16:16:1c:
18:62:85:ce:11:1d:9b:29:6d:cf:42:0a:71:c2:30:
a6:4c:4e:98:6a:a7:92:dc:00:91:4a:3d:4e:0e:40:
d7:32:e1:d6:2a:6e:03:cc:58:b8:be:ee:3f:3e:96:
24:63:48:fc:c2:f1:b0:be:39:f6:0f:7d:8c:7b:cb:
b2:dc:b2:c3:83:4d:fd:b3:2d:0d:02:3a:bc:6e:41:
db:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:32:58:AC:28:63:EC:A4:37:51:91:43:07:56:98:3F:09:C9:7D:49
X509v3 Authority Key Identifier:
keyid:A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:d3:d3:54:6c:e9:40:a6:db:73:79:85:cb:44:fa:11:2f:33:
f3:ea:d9:7d:c3:f3:e7:99:db:92:93:f0:4d:2f:c8:83:5a:4b:
29:48:10:75:86:00:ac:2a:d2:bf:98:81:30:33:a7:75:37:74:
01:6b:7d:39:78:bd:41:01:94:57:82:6d:3c:be:26:a5:57:65:
77:e6:07:66:a6:66:3d:23:6e:ff:04:82:59:df:76:63:4e:a0:
dd:b7:44:93:98:e1:78:19:fd:47:8e:5b:3f:da:3e:15:ae:29:
bc:fa:17:9d:b5:95:b5:17:68:f1:c2:7e:18:46:11:35:dd:fb:
94:d7:b9:33:d1:a3:47:ac:31:e3:04:7b:f1:27:a4:9e:63:ed:
5e:07:aa:1e:cd:f7:27:a2:4e:24:d3:61:92:df:c1:de:23:af:
0e:1a:7d:a4:6f:c3:64:28:ea:3a:d1:e7:eb:3f:07:a8:3c:51:
3a:60:b6:73:9c:a3:e3:b7:3b:08:de:74:ba:bb:79:a0:6d:ee:
33:06:52:62:5b:0b:39:3f:ba:50:c4:a9:5a:7e:ca:1a:b7:52:
76:6e:7e:92:1f:45:07:82:87:3d:0b:8d:e8:45:e6:82:72:4c:
30:d9:b6:4c:28:01:6b:a4:fe:d5:62:d8:ed:82:a4:6b:69:b9:
6c:31:1b:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:55 2025 by rpki-client