Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
File: AH5rWqQ302kxUVAqIRSW431K4sU.mft (raw, json)
Hash identifier: kMNi8WopLuY6JP6K8c4JGdY01W3McU0AWPiTA0SvYtk=
Subject key identifier: 55:EF:7A:0E:74:FA:34:35:93:8A:54:43:F5:8F:E2:81:EA:1C:B5:E3
Authority key identifier: 00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5
Certificate issuer: /CN=007e6b5aa437d3693151502a211496e37d4ae2c5
Certificate serial: 019A29D5040B2B4CE9504EAC2E66BB64830E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
Manifest number: 1478
Signing time: Tue 28 Oct 2025 08:00:17 +0000
Manifest this update: Tue 28 Oct 2025 08:00:17 +0000
Manifest next update: Wed 29 Oct 2025 08:00:17 +0000
Files and hashes: 1: 6F_Q4XpRKgEexZcCv84M_kGGwx8.roa (hash: jzUe5knYI2NZSGwBtOwn1dJh+2wMTZvaI6KEnoCDN6M=)
2: AH5rWqQ302kxUVAqIRSW431K4sU.crl (hash: bL6VDGAB+GNbJ4FnUWzD/w/+LYJU0F56FTWp8FpJLm4=)
3: Ry-o6BvHlNuOD_d14wdLVmhDsgM.roa (hash: S/jHrYJPbAAtdA+RZZOotd+GpMfWfmGdhS0b8Kc0V30=)
4: VFSqRzcGMZ3Y2JFZb1Fsblb27nQ.roa (hash: UUfcXkF0GWrqVSNu+3z9VDCb/uLRbXj4ZsTEe5POQ7M=)
5: W_b0Ax5Mpx_fhvv-92F8GttV04I.roa (hash: y/SVVGY3IuSmMubg1JbInzxD9q8qop1Ol37UDvpp3pE=)
6: gZrmTs3ukQIINjYb9akCKLL_iZM.roa (hash: WbSg2tywBgMqpLgEuUZPOKgd7CPp10c7QuJJvyuvaco=)
7: mV18Ah11BcP39CQhLtpf79pVug8.roa (hash: RGt06BrejPetx9+VOGQ2Y1/RTWPMTF5VhkkYrYGyW40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:29:d5:04:0b:2b:4c:e9:50:4e:ac:2e:66:bb:64:83:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=007e6b5aa437d3693151502a211496e37d4ae2c5
Validity
Not Before: Oct 28 08:00:17 2025 GMT
Not After : Oct 29 08:00:17 2025 GMT
Subject: CN=55ef7a0e74fa3435938a5443f58fe281ea1cb5e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:39:89:42:42:6b:61:35:90:76:1c:77:02:a6:
a6:03:59:1b:a0:f7:cb:6a:34:f1:04:3a:37:99:5f:
ed:f0:38:0f:c4:d2:24:9c:f1:81:e3:0b:88:db:da:
6e:51:53:9c:4d:2a:53:6c:49:0e:43:77:eb:3c:0a:
36:58:7a:44:aa:f3:92:df:19:b8:9b:c5:aa:0b:36:
5a:65:43:f7:5d:39:f1:c5:3b:ad:1e:1e:d5:5b:64:
f2:79:25:ef:79:a4:7d:2e:f1:97:2b:c9:b0:32:01:
cf:46:30:2c:92:f7:62:4e:a0:9c:ef:b3:7c:2c:bc:
f8:23:71:6f:78:2e:63:dd:c6:f5:2e:bd:59:43:a0:
f4:7c:a6:61:f2:11:e6:64:86:34:c7:db:3d:ae:07:
50:dd:3a:81:d9:76:ec:87:9c:81:8c:10:06:13:bb:
5e:79:4b:f7:87:60:77:71:a4:23:f1:61:1c:2a:83:
62:c3:53:70:1e:bb:94:ea:f6:30:35:1b:6b:e7:9e:
08:c0:54:67:03:fe:c6:10:9e:43:82:c5:74:88:2b:
2d:a5:75:8f:2e:0e:98:c3:f6:cf:a2:9f:d4:46:fc:
16:6b:fe:6f:ed:0c:69:2a:b8:04:70:74:19:e7:6d:
12:a3:13:4c:e7:7e:c4:ab:1f:3a:3c:60:a5:7e:d1:
ca:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:EF:7A:0E:74:FA:34:35:93:8A:54:43:F5:8F:E2:81:EA:1C:B5:E3
X509v3 Authority Key Identifier:
keyid:00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:bb:5f:6e:34:69:df:b9:02:56:13:6e:fb:b9:49:d6:d7:70:
9b:f3:3f:20:00:d7:2c:c4:26:ae:eb:0d:3a:a9:db:46:fa:9f:
ca:7d:d5:f4:ae:1e:a6:41:3d:98:38:ef:e9:32:a5:96:7e:58:
b6:f9:45:e3:86:61:ff:0a:dc:cb:cb:f5:21:58:2f:8c:b6:4e:
aa:03:e6:37:83:6c:cf:37:d6:92:2f:a8:5f:9d:4e:8a:76:4e:
3a:92:9b:54:4a:7b:3c:7c:31:54:58:fd:75:b0:4c:89:e3:64:
80:85:f3:36:af:17:95:fa:d0:c1:d3:29:c2:4c:b3:52:9c:4d:
5a:76:a7:41:cc:90:0d:3e:b9:97:d4:e5:60:3b:2a:74:e5:7f:
be:37:32:89:c5:52:15:f3:8c:e9:07:c7:b1:a3:ef:b9:c6:78:
fa:f4:e3:80:21:6c:34:8d:6e:1b:f8:13:51:b1:dd:72:89:54:
db:9c:7e:0d:8f:1f:19:fa:f0:da:ce:dd:53:a6:dc:23:80:66:
9a:d7:b0:ca:ac:d5:e7:e4:3b:0d:48:7e:6f:f2:32:92:a9:58:
22:b6:29:39:e2:a6:c7:14:00:9e:e1:12:a5:1e:29:9a:49:eb:
ff:67:7e:b0:2b:79:f8:30:c3:73:22:c5:61:23:e6:1f:9f:ba:
26:30:2b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 13:12:08 2025 by rpki-client