Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft (raw, json)
Hash identifier: kOgYzjLoqGoyg1JQIYGa+ns4/sgtbPn1T/y21wuYSC4=
Subject key identifier: 4A:13:7C:70:38:A5:9B:60:69:18:B8:EB:66:DF:D0:FD:4A:BD:FF:12
Authority key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
Certificate issuer: /CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Certificate serial: 0199228C808BB863AE7E5D6FA9DEDBE06BB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
Manifest number: 1375
Signing time: Sun 07 Sep 2025 05:00:57 +0000
Manifest this update: Sun 07 Sep 2025 05:00:57 +0000
Manifest next update: Mon 08 Sep 2025 05:00:57 +0000
Files and hashes: 1: 6nka26L-7vbT-huqQ7zH80Ad2_Q.roa (hash: bi36P0sQvSkI3t0S3Th1jO23VxQKQmTqbcjBaO1g00A=)
2: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl (hash: 03plLRNcGSBgcCzaX0bpQ2wTadivI5RqwpjwiifTCDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:80:8b:b8:63:ae:7e:5d:6f:a9:de:db:e0:6b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Validity
Not Before: Sep 7 05:00:57 2025 GMT
Not After : Sep 8 05:00:57 2025 GMT
Subject: CN=4a137c7038a59b606918b8eb66dfd0fd4abdff12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:35:a0:a3:05:51:79:72:e4:5d:8f:72:cc:96:
15:c8:a8:28:ab:0d:66:2f:3c:50:3a:8f:4c:ae:9c:
a6:87:8f:96:f8:9e:a2:b6:df:0c:18:6a:80:8a:54:
ba:b8:52:9c:64:74:64:cd:83:32:de:c8:67:8e:7f:
18:8b:be:3b:01:63:2f:27:5d:79:9e:a2:80:88:96:
bc:70:93:77:bd:0c:59:19:f5:51:d4:79:de:8a:6b:
fb:97:01:e2:ce:27:7d:05:7c:a4:74:e6:ce:0f:57:
6a:c1:6c:fd:23:80:e2:c7:0a:00:e2:2e:3e:d7:92:
fa:f7:22:11:cf:be:b2:98:72:dc:95:ff:14:1f:03:
12:82:ae:da:56:3b:4c:96:81:40:d0:dc:bf:74:1f:
1d:5e:71:0b:9b:12:05:de:de:c7:0e:76:eb:5e:7a:
f7:0a:f7:d0:38:9c:95:8d:ca:b2:b1:da:b0:52:9e:
99:45:07:0e:c2:b3:f6:fe:d3:af:ad:f4:02:cb:cb:
4d:18:9e:d6:cb:a2:50:68:4b:b5:d7:1d:5c:f9:05:
0f:b9:de:4d:b7:ee:70:cc:f8:14:49:4a:7d:9f:25:
65:c5:c6:06:d8:d4:f1:5d:6b:e9:97:81:78:7f:83:
a3:d2:8b:65:ea:fa:b2:d5:d3:ab:7b:16:54:73:da:
70:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:13:7C:70:38:A5:9B:60:69:18:B8:EB:66:DF:D0:FD:4A:BD:FF:12
X509v3 Authority Key Identifier:
keyid:A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:df:29:e9:c4:d4:01:c4:b2:47:80:fd:ec:85:06:2e:e9:97:
ba:6c:79:86:3f:68:e1:42:d1:16:6a:ba:7a:99:96:1d:80:1e:
0d:b3:73:0a:75:01:92:28:83:44:b6:7e:c3:56:08:15:b6:10:
98:62:6b:52:a5:1f:e1:c1:4e:7d:8d:e3:5d:bf:78:1b:19:fb:
c0:a0:da:b5:4b:46:4b:9d:ca:4a:d9:ed:e7:ee:c3:56:df:20:
cc:3d:aa:04:ce:82:ef:3b:cb:28:97:73:17:5e:fe:49:a1:5e:
4d:62:b0:47:23:2a:c6:d8:8d:ea:3c:4d:2c:19:52:57:82:16:
0e:49:93:7d:67:11:26:f1:22:0f:b5:bb:15:fa:7e:d4:d4:e8:
2a:fd:b2:04:af:2b:b7:e7:a1:b0:c5:70:9b:70:aa:4b:28:c5:
94:be:41:ce:17:36:1f:cd:4a:36:5e:94:c0:6a:de:eb:44:cb:
b9:af:bb:f9:93:75:5b:a2:98:e1:89:82:41:95:2d:c7:0f:3e:
6a:e9:a4:81:ff:b5:42:9b:53:df:12:df:25:7a:54:2e:cc:2e:
5c:15:36:0e:9f:24:db:12:f6:07:06:27:2d:9b:27:25:50:c4:
70:19:9f:bc:fe:26:f3:78:08:a8:b3:c7:2b:83:f6:4c:a7:47:
60:95:8b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:09 2025 by rpki-client