Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File: 5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier: kocuDWGYOmAR5j5iGda/B4dGKbflcZC0auXLb1yo0+M=
Subject key identifier: 6F:2B:AB:33:04:02:8A:4C:B8:E5:83:99:71:CF:A5:AF:E1:BE:46:BC
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer: /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial: 019A7149B74E085795CDAB8431C3891B3E28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number: 16AE
Signing time: Tue 11 Nov 2025 05:00:47 +0000
Manifest this update: Tue 11 Nov 2025 05:00:47 +0000
Manifest next update: Wed 12 Nov 2025 05:00:47 +0000
Files and hashes: 1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: luRqn4tNLb7gZS2Qr564XDNhCvvUZh+8jfpwXgivW1U=)
2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:b7:4e:08:57:95:cd:ab:84:31:c3:89:1b:3e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Validity
Not Before: Nov 11 05:00:47 2025 GMT
Not After : Nov 12 05:00:47 2025 GMT
Subject: CN=6f2bab3304028a4cb8e5839971cfa5afe1be46bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:07:b9:e4:cd:1d:50:d3:c3:59:a2:32:1b:73:
ed:6f:bb:bb:80:0a:c2:19:53:ad:d9:c2:f3:35:78:
a7:6a:4c:ed:53:38:17:e4:4c:ae:86:78:1b:0f:13:
e6:cf:52:24:ed:3d:33:d7:34:da:43:b7:ab:c6:8d:
d2:18:ef:f3:3e:f4:a2:77:f2:65:0d:db:9a:23:8b:
ad:46:f6:c2:9e:a2:74:06:56:f1:fd:5f:3e:7a:7d:
96:ad:aa:71:0f:17:6f:aa:da:cd:93:e0:41:37:ca:
42:8b:10:63:d1:ba:ab:84:6c:23:cb:bf:31:ff:08:
76:3e:8a:93:bf:6b:32:fb:46:33:f0:d9:c9:43:f1:
20:0a:64:bc:df:82:ce:2d:6e:65:96:03:e6:53:c8:
58:6f:ad:a3:99:ff:3c:55:8c:03:b0:55:68:3c:9c:
d1:32:72:4b:ee:1c:25:1d:95:43:0f:eb:84:70:90:
34:6f:9f:51:4f:33:a4:3a:16:f1:ec:45:15:63:d0:
bc:a3:3b:b8:bc:a3:76:b7:31:d7:1a:d1:80:e3:9b:
9e:f0:f6:d6:d6:c3:63:07:d2:ad:1f:01:6e:0e:bb:
99:23:f9:03:8b:fd:5b:29:04:3b:c8:85:65:a2:f5:
d3:67:05:3d:eb:55:8a:0e:a8:bf:e0:d5:b8:cc:0b:
28:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2B:AB:33:04:02:8A:4C:B8:E5:83:99:71:CF:A5:AF:E1:BE:46:BC
X509v3 Authority Key Identifier:
keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:8c:de:b1:50:8c:eb:30:fd:2a:01:7f:85:d0:39:09:81:68:
5a:ac:d9:aa:4c:4c:1e:70:0d:1e:f7:e3:6a:d8:76:44:8d:79:
b5:04:17:20:6a:05:46:4f:8b:41:e8:f9:c8:13:2e:1a:14:9d:
1a:56:aa:99:93:45:c8:8d:69:05:b2:31:83:02:a3:b8:69:7a:
6e:be:28:a2:a1:43:a3:6e:6e:05:77:ec:11:e1:b6:ba:2e:b4:
14:2f:8b:d3:2e:a4:26:44:80:c3:54:ec:a4:e6:a3:c5:23:94:
1a:5e:67:a7:8b:46:85:62:f4:d7:1a:6d:dd:6c:a3:5c:d5:23:
65:56:c4:b8:bc:22:c9:b5:63:65:14:37:3b:eb:cd:ee:b7:27:
13:97:05:1a:d1:4e:8c:e7:0d:71:5d:13:18:6a:2a:f2:39:a6:
36:6d:93:20:d2:7c:4f:63:c8:4a:6c:90:8c:cb:71:01:d9:43:
86:0e:a9:04:63:ce:35:5d:25:88:4f:78:24:dc:74:03:d0:bb:
2d:fe:3a:95:67:85:cf:7e:e6:52:41:86:dc:f4:fe:13:e8:a3:
92:65:be:49:fb:5c:bf:6e:ed:91:60:b0:64:74:ff:44:46:b1:
d9:6d:35:67:10:80:89:94:24:c9:fe:d0:25:fe:c7:53:45:6b:
f4:c8:a4:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:13:57 2025 by rpki-client