Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
File: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft (raw, json)
Hash identifier: W1BkL0UwudCPPedyVZc5m/zRG5vj8Ik9DYeS4M++c3E=
Subject key identifier: 64:DF:D5:5C:CA:DD:E6:C8:EE:21:0F:4D:B3:25:CB:32:F5:86:39:6D
Authority key identifier: 77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
Certificate issuer: /CN=779fbaaac6541ab318529eb025613c6520e47646
Certificate serial: 019A266648BB9A76F9B83ACB5C826CD7C8DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
Manifest number: 05AA
Signing time: Mon 27 Oct 2025 16:00:28 +0000
Manifest this update: Mon 27 Oct 2025 16:00:28 +0000
Manifest next update: Tue 28 Oct 2025 16:00:28 +0000
Files and hashes: 1: bKhEoTi8VyX_Q5KODWRSQwgQwKY.roa (hash: xvVp0HHxMjOmKvNmsan4is7a0Z8jz8EK1PXrOk2MzSo=)
2: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl (hash: nzqf2Rz4D6ycriAs6nbYrqXWqqrG1m9V+9V38ImUuXo=)
3: k3MkBKIkrmXV8hBuw2gGPp_sASw.roa (hash: kkGwe02sJUGG5OVjC1fC3C/lnFwMVxsODhInEGGgNMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:66:48:bb:9a:76:f9:b8:3a:cb:5c:82:6c:d7:c8:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779fbaaac6541ab318529eb025613c6520e47646
Validity
Not Before: Oct 27 16:00:28 2025 GMT
Not After : Oct 28 16:00:28 2025 GMT
Subject: CN=64dfd55ccadde6c8ee210f4db325cb32f586396d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:08:7b:5e:3c:71:a2:bd:04:22:21:d5:f0:62:
36:e5:68:b7:1f:80:e7:bf:8e:b0:df:96:2b:f6:d6:
2b:d9:5f:46:96:8e:ed:3e:70:ff:98:b9:ce:e2:0c:
e3:b6:91:58:ae:0a:44:2f:4f:a6:36:77:69:ba:49:
9a:e3:cd:8b:13:61:17:ab:34:e0:83:04:25:57:35:
ed:41:13:3f:52:0e:da:8e:09:53:73:d6:de:08:08:
38:95:8f:fe:2e:be:f8:5b:70:f2:55:69:b4:f9:95:
ed:ea:1b:55:5f:31:69:ec:35:39:84:da:94:6e:c7:
6a:ce:bd:a0:0f:9a:b3:4e:af:ab:6b:e0:4f:01:10:
e1:a7:38:03:bd:10:46:0a:f0:1c:25:1b:37:5f:f9:
2b:29:cd:41:e9:1d:1a:0d:6c:d4:c3:aa:5b:cc:c2:
f6:6a:5c:d8:87:1a:f2:99:99:1a:5d:64:6f:60:b6:
48:92:42:e4:00:45:1f:20:2b:98:c6:39:f5:ef:22:
69:b9:ae:49:b3:24:02:21:72:2b:bb:98:73:bf:13:
8b:63:75:4e:bc:ea:a6:ae:85:78:be:e6:cb:f7:d9:
1e:da:60:eb:ec:c3:f4:7d:4c:75:3d:78:8e:41:eb:
87:05:1b:06:69:fa:b2:c5:64:6b:22:8e:73:06:f2:
a4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DF:D5:5C:CA:DD:E6:C8:EE:21:0F:4D:B3:25:CB:32:F5:86:39:6D
X509v3 Authority Key Identifier:
keyid:77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:f2:66:16:9a:6c:d1:f5:12:50:82:fe:f7:0f:71:46:ce:db:
57:ea:3c:94:3a:77:98:f2:9a:5b:37:8f:9b:5f:48:7f:30:d5:
88:6a:2d:ec:e0:33:15:30:78:76:d5:e7:8a:98:4a:4f:b4:30:
c4:58:16:c8:95:bf:50:3d:b2:1b:06:d9:69:76:27:32:eb:44:
d0:0a:3f:06:73:01:16:87:d2:be:71:6d:8f:02:a0:a4:26:08:
81:c5:9b:39:db:bc:44:cc:6c:07:dc:c6:50:61:4d:06:09:6f:
98:8d:51:41:4a:3a:1e:7e:22:6a:be:6c:31:77:2c:9c:c2:3d:
21:93:a5:0c:c2:b6:70:38:de:f9:75:f1:a1:77:28:2a:70:6b:
4a:4b:7d:33:d8:bd:09:7c:69:d4:18:6a:f9:f4:e9:9a:d6:9f:
be:e9:3a:d9:e4:3e:60:fe:62:d6:03:05:33:d1:2d:f6:4c:73:
4b:dd:71:25:0b:e1:52:cc:0b:ca:c6:8b:13:7b:ea:9b:b2:1c:
8e:e8:0d:3f:9e:4f:5a:28:05:f6:87:7c:20:ca:74:ed:17:01:
97:52:75:ea:41:cf:1a:69:b3:94:2f:67:63:ba:f9:5d:b9:32:
3e:d0:2b:54:ff:b4:c4:db:bc:06:98:3b:6a:10:f7:9b:4b:68:
2d:4d:cb:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 22:27:49 2025 by rpki-client