Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
File: 5hbHsgGVYH8nsT2I-Svx0Os45g8.mft (raw, json)
Hash identifier: JOmIschutPcGIY+urs+HK7+8ZIx8/G4lEi8CtkJAtAI=
Subject key identifier: B5:D8:4B:32:88:6D:3C:04:0D:10:BC:68:04:68:4E:ED:89:E8:8B:29
Authority key identifier: E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F
Certificate issuer: /CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f
Certificate serial: 019A221B9EF66521DAF9A1C0DFD633D3716A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
Manifest number: 01AA
Signing time: Sun 26 Oct 2025 20:00:26 +0000
Manifest this update: Sun 26 Oct 2025 20:00:26 +0000
Manifest next update: Mon 27 Oct 2025 20:00:26 +0000
Files and hashes: 1: 5hbHsgGVYH8nsT2I-Svx0Os45g8.crl (hash: yrBrLr4m7owcP6tQabh1ymK2sk1G7eesYjqxtL0UFXA=)
2: kGI3GYIY0x4KUvkaQBv3fV9ynWg.roa (hash: gmJPfaxRI83koFjZWztv8K0vXqe3xOaLvXeiVBQz3Ts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 20:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:1b:9e:f6:65:21:da:f9:a1:c0:df:d6:33:d3:71:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f
Validity
Not Before: Oct 26 20:00:26 2025 GMT
Not After : Oct 27 20:00:26 2025 GMT
Subject: CN=b5d84b32886d3c040d10bc6804684eed89e88b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:73:52:11:c0:fd:4f:fb:3b:47:74:34:cd:9b:
0c:21:83:8b:3b:dd:db:86:17:99:d9:2c:1a:0a:1f:
9b:22:63:20:6a:20:33:2e:56:d2:79:7a:e5:90:5b:
19:84:08:08:69:64:8e:fb:5f:4c:05:8b:7b:b7:44:
e4:04:26:67:b2:ef:57:04:3f:24:e2:b4:97:2a:bc:
24:29:e8:9c:2c:f9:25:f7:b0:2a:d6:9e:3f:d2:a1:
0b:0b:43:c0:3e:0b:fe:d2:22:57:4c:0e:b5:a1:59:
c1:6c:10:25:09:5c:6d:e9:93:04:3d:be:a6:13:4e:
ac:05:27:23:9c:57:1d:24:66:27:93:47:94:42:26:
fc:28:53:3e:25:85:fc:4e:10:c0:f5:75:25:7e:d3:
e6:b3:4e:ec:d1:33:77:b1:11:96:15:95:29:30:82:
cc:49:3b:7b:ea:94:79:e5:6d:91:c8:c6:2b:b2:30:
05:e8:84:c5:95:cb:39:e1:a8:b5:e4:25:fb:b2:b4:
63:73:1c:07:57:04:f1:57:95:d4:44:c8:8d:3d:fb:
a9:78:21:dd:6d:54:5f:0f:84:8f:58:5c:2c:e2:bb:
e9:9a:07:f1:c6:2b:fa:de:61:4d:56:07:dd:b7:f9:
c3:13:b3:27:fa:3f:5b:1d:ec:a7:15:e5:8a:e5:d9:
89:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D8:4B:32:88:6D:3C:04:0D:10:BC:68:04:68:4E:ED:89:E8:8B:29
X509v3 Authority Key Identifier:
keyid:E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:e8:63:0d:1d:3c:27:d8:09:d3:8c:24:a0:ac:12:db:37:8f:
1c:59:12:74:b8:ea:1a:8c:5f:e7:6d:62:f4:34:ec:2b:4d:7c:
26:3c:a6:10:ce:06:6e:3d:ab:4d:44:fe:2e:68:ef:f1:d7:c7:
80:fc:a7:ef:22:bf:cb:41:15:73:15:0f:33:e1:98:e6:fc:da:
6b:c8:97:0b:5c:15:ea:66:bc:ee:15:b7:4f:7b:8e:f5:6a:aa:
fc:70:c3:44:34:d0:bf:2f:65:46:39:25:5d:46:ca:0f:45:9a:
7a:5b:25:6a:26:4f:74:2c:5b:08:0b:6d:fa:06:65:29:34:97:
c9:99:8f:5e:45:6c:c7:12:95:9d:02:76:e9:23:06:a1:74:ed:
fc:bc:00:2f:f3:d0:3b:f2:70:5a:c4:46:df:3f:b1:56:64:f8:
6d:9f:32:52:62:35:7f:d2:e4:e6:2d:fb:e2:e8:ba:d5:c6:4c:
a4:7d:c2:83:33:53:16:6d:21:69:f9:4a:d7:45:21:35:93:85:
37:73:65:89:8a:40:7f:e1:93:e6:14:74:bb:81:cb:6a:ca:7c:
ad:53:7b:01:c0:f3:e7:8c:a4:3c:ff:41:65:b6:35:46:39:a1:
05:2c:d0:e8:57:5f:be:bf:05:2b:91:12:a9:2f:4b:42:1f:59:
e7:68:50:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 06:32:50 2025 by rpki-client