Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
File: 5hbHsgGVYH8nsT2I-Svx0Os45g8.mft (raw, json)
Hash identifier: YfoYY6Yk1EHUwYFbQVh+hlM+yLie5eimPA05X3wfxvs=
Subject key identifier: 64:61:9D:C3:B3:96:AB:09:CC:15:1E:55:8B:DB:D3:23:D3:C1:E8:77
Authority key identifier: E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F
Certificate issuer: /CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f
Certificate serial: 01992330FF8DD69111356628CFE45E397976
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
Manifest number: 0126
Signing time: Sun 07 Sep 2025 08:00:37 +0000
Manifest this update: Sun 07 Sep 2025 08:00:37 +0000
Manifest next update: Mon 08 Sep 2025 08:00:37 +0000
Files and hashes: 1: 5hbHsgGVYH8nsT2I-Svx0Os45g8.crl (hash: GtrazPIYHMLiV6mxLQyL7SMNbe/qvhXxnKCrBwj0Xlg=)
2: kGI3GYIY0x4KUvkaQBv3fV9ynWg.roa (hash: gmJPfaxRI83koFjZWztv8K0vXqe3xOaLvXeiVBQz3Ts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:ff:8d:d6:91:11:35:66:28:cf:e4:5e:39:79:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f
Validity
Not Before: Sep 7 08:00:37 2025 GMT
Not After : Sep 8 08:00:37 2025 GMT
Subject: CN=64619dc3b396ab09cc151e558bdbd323d3c1e877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c3:5c:0e:3e:c1:4f:41:70:46:e0:ca:5e:39:
74:10:97:f5:ff:dc:99:86:98:ce:90:b7:f0:c5:5a:
55:d0:2e:c7:de:65:28:87:9c:5f:de:62:25:e0:c9:
e3:82:0e:16:ed:20:33:bc:a4:d3:f2:bb:73:4d:10:
df:08:a8:36:fe:fd:cd:58:25:ba:53:20:7d:92:d3:
55:ef:30:6d:39:a1:8a:cb:c5:1b:e6:e3:93:98:ad:
5a:25:33:39:00:da:5e:1e:a7:39:0f:61:43:0f:d7:
78:87:ee:38:98:1b:8f:4b:dc:f7:34:84:50:99:9f:
bb:42:2e:3d:66:4b:ef:45:bd:03:66:36:10:02:bd:
49:bb:01:96:c0:ab:d2:94:70:92:c3:8c:e7:47:32:
67:89:1d:d1:9d:40:17:d2:78:fd:39:4f:2a:e1:e3:
93:80:63:59:3b:1b:5b:62:98:4f:ff:77:27:78:8c:
8b:50:57:1c:06:f1:0e:1b:16:ac:9c:36:b3:0b:2f:
82:cb:0c:83:1e:0c:4a:ff:f6:1b:22:1b:e0:bd:54:
2a:4a:2c:b2:ad:d4:5e:ba:47:b0:05:55:9b:81:88:
58:1f:4b:5a:3c:35:b8:95:9c:97:69:bc:d3:96:a9:
2a:ba:71:c7:ed:4f:40:be:bf:65:20:45:d0:b2:52:
05:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:61:9D:C3:B3:96:AB:09:CC:15:1E:55:8B:DB:D3:23:D3:C1:E8:77
X509v3 Authority Key Identifier:
keyid:E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:94:34:df:df:72:16:e6:ad:6b:86:73:85:0a:77:83:0b:de:
a9:79:b4:74:c2:98:12:eb:61:02:a0:07:6f:df:36:0d:1a:6e:
0f:ee:11:a8:92:c1:52:26:77:e2:2e:30:bc:27:0d:a9:76:18:
12:cc:35:ee:bc:45:4f:52:ff:e6:58:de:74:39:61:ef:45:60:
b2:ef:1e:53:03:0d:cf:f1:77:30:4d:c0:13:aa:7b:74:be:ff:
d5:02:ba:96:5a:11:a2:17:c4:04:52:20:26:9e:a7:c3:ec:6c:
0f:2b:92:db:1d:a0:22:d7:bd:43:8e:75:b9:01:65:62:7b:d8:
d6:b0:da:ee:5e:65:ba:06:28:84:c9:18:bd:cd:df:2c:1a:aa:
ed:a2:6a:1d:49:c5:37:5c:1c:98:1d:b6:3e:82:fb:9d:1d:c0:
d5:cd:fc:4a:a3:6c:4b:5d:77:2b:e6:cb:2f:36:5b:f3:83:d5:
3d:68:bd:8d:62:14:2c:2c:37:0d:10:bb:48:58:a7:7f:02:be:
13:5e:51:e9:7c:c1:58:ca:d6:ec:93:79:e3:d9:e4:9d:cd:a3:
86:82:5a:06:ca:99:4b:9a:f9:20:f3:04:34:09:4e:b7:4b:d7:
19:f7:28:cb:cb:70:47:cb:6a:aa:91:92:c5:e9:ad:05:3b:0c:
bf:e4:19:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:22 2025 by rpki-client