Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File: 5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier: pNv5oTphNFNMUAmC5eOPQPMiedUSlwJlfZb2KSOA44k=
Subject key identifier: 85:09:A6:1B:31:1B:97:F6:A9:CF:3D:09:36:E8:0F:52:5D:95:0C:D2
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer: /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial: 019923314C72C47ECD79844C48A884FEFCBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number: 1601
Signing time: Sun 07 Sep 2025 08:00:57 +0000
Manifest this update: Sun 07 Sep 2025 08:00:57 +0000
Manifest next update: Mon 08 Sep 2025 08:00:57 +0000
Files and hashes: 1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: waBnPra0dKXb1B1thqHIE1K0GheY4A6CFQHi8elfirQ=)
2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:4c:72:c4:7e:cd:79:84:4c:48:a8:84:fe:fc:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Validity
Not Before: Sep 7 08:00:57 2025 GMT
Not After : Sep 8 08:00:57 2025 GMT
Subject: CN=8509a61b311b97f6a9cf3d0936e80f525d950cd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5f:1e:47:e9:9c:1d:cd:f8:04:66:2f:b9:f1:
46:a5:a8:b1:bf:91:9d:87:b8:db:4c:0e:85:55:59:
d8:69:6b:af:6f:82:92:8b:df:6c:fb:c9:d7:a7:51:
0e:70:55:0e:9f:b0:35:e1:d1:c9:cd:7d:e6:62:d9:
79:4c:40:9e:92:1b:c6:1d:02:ab:f8:ac:88:be:fa:
f1:2d:36:88:20:91:7e:74:9d:c1:e0:1a:6b:c2:f1:
62:9d:c0:93:ef:76:55:53:d7:b9:33:2c:bb:93:16:
e2:a5:ac:f4:e6:b2:d5:d4:37:d0:de:55:9e:ee:b4:
64:f1:d6:75:2b:20:ab:d1:4a:4f:94:b2:e1:f5:3b:
dd:9f:d7:a9:90:05:1a:85:9b:36:13:2c:4b:25:e7:
b7:1f:eb:52:37:bd:19:9c:91:df:fd:94:fa:aa:9b:
50:ad:2c:72:59:45:21:f0:0b:36:09:13:cb:64:86:
ac:58:bd:08:83:85:99:5e:59:0e:1a:b1:0d:2b:35:
56:a0:c8:35:8f:c1:3c:5b:2f:ce:43:01:81:37:fb:
7f:4f:fa:ce:ed:af:0c:8e:b0:82:22:73:a5:24:46:
a6:8c:e7:d6:d7:eb:ec:da:ef:1c:bb:4a:ee:da:7c:
9c:e4:df:8b:38:f1:b2:7a:80:97:77:06:64:8e:9f:
72:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:09:A6:1B:31:1B:97:F6:A9:CF:3D:09:36:E8:0F:52:5D:95:0C:D2
X509v3 Authority Key Identifier:
keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:d3:95:aa:9f:ff:47:81:d9:56:ec:09:b6:2a:cd:7c:b8:c1:
8b:69:49:4e:c2:67:89:59:4c:9c:61:b6:88:bb:c7:61:e2:d1:
78:0b:a1:c4:6a:4d:a5:4a:04:f5:73:8f:24:5a:0d:3e:f3:73:
4c:69:00:cc:92:a3:a1:0c:3a:36:f2:4b:ab:8f:1e:d1:72:83:
8f:47:22:d2:03:97:85:c8:51:04:b9:8a:3d:9d:c1:42:0c:97:
77:ef:eb:fe:69:c9:4e:c4:65:e0:e3:0c:b5:cd:a6:ba:51:ff:
d1:2d:5d:1e:4d:11:ed:b4:31:36:f2:cd:a7:bd:23:58:1c:c1:
75:95:70:f1:69:73:d5:04:f2:d8:5e:54:e7:b6:e1:b3:5c:b7:
b4:a6:a9:bc:6f:ec:77:bb:35:1d:5f:22:d4:4d:bf:6c:fe:a2:
dd:9f:be:4d:a0:aa:d9:ee:17:0e:03:38:33:93:3f:f9:e2:4e:
44:95:65:0b:78:ef:be:54:06:74:44:af:44:fb:92:43:18:91:
7b:3d:f5:3d:52:f1:55:7e:f5:53:af:e8:8c:eb:16:d0:68:be:
06:dd:c1:fe:c1:06:bd:79:ac:a2:54:33:66:97:9f:3f:28:33:
4c:41:85:d7:58:02:f0:a3:1c:18:b5:b7:3e:ba:5a:1f:46:5e:
86:ad:4a:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:42:00 2025 by rpki-client