Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
File: 5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft (raw, json)
Hash identifier: /pS4RCR+a72Wzvzc9LrL/5jdDIsBvvgD4LQDAXD/f9c=
Subject key identifier: 5A:BA:D2:0D:F6:F7:E3:2C:47:D3:38:57:8C:5F:F7:D5:E0:D7:1A:75
Authority key identifier: E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA
Certificate issuer: /CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
Certificate serial: 019A725C9F64AFF449BD7D56EA05BC15B5E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
Manifest number: 171C
Signing time: Tue 11 Nov 2025 10:01:03 +0000
Manifest this update: Tue 11 Nov 2025 10:01:03 +0000
Manifest next update: Wed 12 Nov 2025 10:01:03 +0000
Files and hashes: 1: 5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl (hash: BeqqNE6AnB5aBLjyRxwkdXuA4ijtvA6Tg0jw5fZkv20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:9f:64:af:f4:49:bd:7d:56:ea:05:bc:15:b5:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
Validity
Not Before: Nov 11 10:01:03 2025 GMT
Not After : Nov 12 10:01:03 2025 GMT
Subject: CN=5abad20df6f7e32c47d338578c5ff7d5e0d71a75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4d:1f:2d:30:ac:01:21:c5:b2:b3:94:fc:97:
a6:b3:5f:a1:86:7f:da:53:04:89:3b:6a:c1:f0:70:
fc:4e:f1:78:11:28:32:5d:c3:6e:7e:58:f8:ef:66:
23:00:c1:40:a4:92:92:d6:7b:cc:bf:21:bd:c9:f8:
e0:54:39:ee:2e:11:04:fd:03:39:d0:43:ab:ba:63:
62:16:d3:a8:b2:f5:67:4a:42:81:b9:48:8d:c7:95:
35:49:bd:9e:10:54:d6:1d:07:ff:e1:0f:57:8d:93:
35:78:42:ee:5a:b7:0d:32:f9:a1:3b:60:4f:9c:05:
4c:c1:38:cb:c8:bc:16:64:04:d6:d9:4c:a5:1a:a9:
0f:cc:8a:30:8c:8c:e9:cc:55:97:31:50:4d:ac:22:
d4:40:79:5e:d7:b0:f1:98:10:62:07:a5:ad:cb:c0:
8d:02:13:7c:da:7d:bc:91:08:fe:f0:67:e1:11:c4:
30:45:af:5c:ec:e6:30:e5:7e:0f:42:4f:63:f4:92:
f1:40:c3:ee:de:ee:71:8b:b8:ef:0a:3a:a4:99:e7:
55:a0:20:33:b2:0b:2e:7d:05:8e:60:ef:c1:ee:ee:
20:fd:39:5b:66:38:8d:41:e5:81:fe:31:f6:b7:9a:
74:da:ac:cd:ff:c5:c0:f0:a7:4d:68:b6:89:39:f8:
06:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BA:D2:0D:F6:F7:E3:2C:47:D3:38:57:8C:5F:F7:D5:E0:D7:1A:75
X509v3 Authority Key Identifier:
keyid:E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:59:bb:95:7c:6a:c1:cb:cf:4b:35:a6:56:f7:55:45:0c:49:
d3:de:59:37:4d:99:cb:d4:7f:6b:3c:8a:c6:42:99:6d:c2:d4:
8e:88:06:88:4c:05:7f:a4:96:4d:f6:a2:78:38:65:4f:fe:2a:
ac:ed:aa:59:97:5d:f8:b8:b4:16:9e:af:ef:0a:b5:c1:fd:3e:
a4:7e:05:58:9b:36:0a:9d:67:b3:c1:a1:f7:64:5d:e1:de:ac:
1a:3a:e0:b2:14:e3:e1:b6:86:57:05:c8:bc:44:62:ef:c3:d7:
c1:7e:b4:83:f3:eb:6b:62:61:fc:70:79:4e:c6:b3:76:9b:50:
a0:c7:3b:05:9f:05:0e:7d:b6:0a:e0:4f:3f:9e:4b:00:c3:e2:
8e:21:b9:00:3d:10:c3:1c:e7:fb:3a:5a:3f:10:73:29:bb:e0:
46:a3:cc:fa:2e:52:99:34:c1:dc:18:21:c7:c9:4c:aa:08:f2:
6e:9f:e6:1c:4f:62:8a:55:85:d1:f1:ed:6e:47:54:da:41:12:
a9:8e:86:aa:17:1d:dd:b4:7f:ec:a9:63:4e:3e:16:5c:d3:9d:
3c:24:2f:7a:b0:21:a1:e7:60:72:74:0a:9a:b2:70:a0:85:16:
0a:10:61:a9:f8:11:fb:07:62:e8:e6:7b:f6:f6:37:51:53:d4:
15:18:68:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:41:48 2025 by rpki-client