Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
File: 5aiGWRTezNyYByQf1wtrsIOkRLM.mft (raw, json)
Hash identifier: uq8HC0NMPSqpBzcw4BJPQTFKs3P+9j9DZ0i79GROWgo=
Subject key identifier: FD:27:E0:85:15:37:F1:10:F0:B0:96:53:23:9F:77:B8:58:45:81:B0
Authority key identifier: E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
Certificate issuer: /CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Certificate serial: 019A71EE88F020088183EDAF84D12F22C8FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
Manifest number: 109B
Signing time: Tue 11 Nov 2025 08:00:49 +0000
Manifest this update: Tue 11 Nov 2025 08:00:49 +0000
Manifest next update: Wed 12 Nov 2025 08:00:49 +0000
Files and hashes: 1: 5aiGWRTezNyYByQf1wtrsIOkRLM.crl (hash: ShpMecfy1MT9EeY28Nl0/MoMYxrhdiDvy/L/PV/fLa8=)
2: syWGgITCZamVo-nCUcKih8Fhw7k.roa (hash: Y9UTs9CcobIoVtNfLT2NYBFUloNQFN2szm6vlcjIvRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:88:f0:20:08:81:83:ed:af:84:d1:2f:22:c8:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Validity
Not Before: Nov 11 08:00:49 2025 GMT
Not After : Nov 12 08:00:49 2025 GMT
Subject: CN=fd27e0851537f110f0b09653239f77b8584581b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c8:01:f3:c9:dd:2e:97:bb:94:41:94:ab:6d:
6f:ed:54:6d:b9:e8:91:24:4f:7a:64:a3:8c:e8:ee:
00:cc:cb:71:cd:43:59:22:f7:47:05:30:3b:ab:d9:
9d:da:15:53:25:98:c9:3b:c7:3c:b0:58:70:41:14:
44:a7:1c:7c:3b:fc:81:0b:96:ef:b8:27:28:b6:44:
7a:a5:d4:63:c5:08:df:a3:57:22:9d:e9:5a:b5:f5:
69:e6:12:70:46:6a:47:34:0b:69:fc:60:53:ab:35:
a8:b1:0a:64:df:b2:a1:ae:51:a1:da:75:6d:04:4f:
94:f8:0b:4f:87:02:64:14:bc:96:7a:a1:6f:6f:4e:
30:c6:00:e0:52:81:4e:b0:8e:7d:53:e7:01:da:da:
8c:d4:a3:93:ca:61:97:26:ee:8f:61:4a:fd:c2:75:
57:5d:74:fe:b9:aa:25:d6:78:48:5d:1f:26:4c:08:
04:17:50:02:dd:7d:46:fd:aa:58:1f:27:04:c6:36:
60:52:15:7c:d0:30:85:4a:a7:ec:25:c1:57:95:2b:
01:16:c7:56:42:0b:3a:8f:31:ca:f4:da:6c:4e:07:
0e:63:9b:28:9a:bf:b2:50:63:b9:99:0c:e7:4c:b3:
a1:cd:6c:47:cb:07:fe:13:e4:3d:38:fa:e7:da:df:
ca:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:27:E0:85:15:37:F1:10:F0:B0:96:53:23:9F:77:B8:58:45:81:B0
X509v3 Authority Key Identifier:
keyid:E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:43:1e:88:7f:7c:ab:1b:a5:6e:db:5f:8b:9b:58:72:39:9d:
4d:dd:3d:df:19:c8:38:be:0a:9b:bb:86:41:72:64:29:e0:1c:
0d:4b:ec:99:8d:5b:cc:20:ba:7d:73:e4:b2:c3:6d:e0:25:2f:
29:11:21:57:de:50:1e:75:af:01:c2:82:55:7d:17:53:78:d8:
09:ca:d2:7b:ae:3b:cd:0f:e2:2c:7b:ee:98:ec:63:63:ce:e5:
eb:7b:3e:2d:7d:57:c7:37:6b:b4:19:b7:69:ab:da:07:8e:78:
1e:76:6b:b8:08:04:42:3c:9d:5a:c4:06:65:bd:2c:d7:aa:c9:
2e:f9:53:40:34:48:2a:20:88:e6:9a:41:53:1b:f8:21:39:14:
ac:43:8f:b1:5c:8d:1b:f4:fb:ce:e9:c0:7a:a4:01:86:01:bc:
23:8f:f1:62:77:e3:b5:0d:1a:c0:62:e9:b1:3b:d5:b2:56:9a:
cf:7e:43:dd:88:c5:41:45:12:b6:e3:a6:74:aa:b4:f5:80:27:
c6:f2:5e:01:8d:23:57:d9:48:a2:71:9e:bb:db:d8:28:cb:3d:
92:49:69:df:72:14:3f:e6:c2:e4:8a:34:f7:30:4a:9e:1f:b2:
a6:c7:04:21:95:b2:6e:94:45:31:3c:d3:be:e4:df:79:c2:28:
f7:77:e5:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:03:49 2025 by rpki-client