Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
File: 5_y3rNVfY0m52BRheGwSRY-G9y4.mft (raw, json)
Hash identifier: XZqudTpd/2z2Q4pzE3rQXZVxC3mlXcfhJBMwmFRXZ68=
Subject key identifier: FD:99:3E:44:07:EC:58:3B:71:75:59:B9:97:77:C7:F0:13:61:9F:E1
Authority key identifier: E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E
Certificate issuer: /CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
Certificate serial: 019922FADDAB59263287666B9D930C7780CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 07:01:29 +0000
Manifest this update: Sun 07 Sep 2025 07:01:29 +0000
Manifest next update: Mon 08 Sep 2025 07:01:29 +0000
Files and hashes: 1: 5_y3rNVfY0m52BRheGwSRY-G9y4.crl (hash: MVT5i8L1d4ZhyOY7xqk450KBskuhIXDKIGmlH9B+tFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:dd:ab:59:26:32:87:66:6b:9d:93:0c:77:80:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
Validity
Not Before: Sep 7 07:01:29 2025 GMT
Not After : Sep 8 07:01:29 2025 GMT
Subject: CN=fd993e4407ec583b717559b99777c7f013619fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ce:77:5d:fd:23:d9:34:75:36:d5:47:6c:0d:
78:02:15:05:56:1d:9f:73:8a:cf:84:6b:22:ef:08:
90:e0:a2:f2:cf:70:ee:da:6c:46:e8:fa:d4:59:fb:
55:85:5b:ed:ce:7d:54:ae:90:fc:b0:f8:f2:ad:81:
d3:e6:0e:2c:f5:f6:ee:11:70:c9:b2:a5:12:92:79:
6c:72:76:65:15:a0:9e:d0:da:e4:bf:89:ae:3b:03:
16:5e:c0:5e:4a:7a:de:20:a0:82:69:99:e6:4d:9a:
d2:27:ce:f0:ff:12:e1:6d:4d:06:a0:6e:94:a1:ce:
b3:1e:ab:bf:17:0a:45:66:75:82:50:74:c9:cc:58:
19:0e:39:4a:92:c2:21:bc:c1:77:18:04:b0:23:d9:
34:cb:07:40:2d:82:28:75:d1:92:3a:f8:41:a0:d4:
86:ce:94:ca:06:0e:62:f1:35:c9:07:bd:f4:b2:b1:
59:e6:4f:41:ee:95:99:3f:81:4e:61:7c:f2:8f:76:
ba:d1:39:a1:01:fe:50:b9:82:d9:11:35:a3:30:68:
f9:26:bc:8b:e7:8e:dc:da:5f:f2:df:f2:a8:1f:98:
ac:3a:9b:18:53:64:60:d4:1f:6a:fd:d1:4c:08:b0:
a5:be:45:07:ae:70:de:53:ed:74:ce:1c:05:05:eb:
7a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:99:3E:44:07:EC:58:3B:71:75:59:B9:97:77:C7:F0:13:61:9F:E1
X509v3 Authority Key Identifier:
keyid:E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:94:ef:06:69:f0:57:26:48:4c:20:15:54:54:c7:93:b4:d3:
f3:24:56:5e:19:ac:74:14:e3:dc:6c:0c:e1:42:9a:9b:a4:87:
64:d2:77:6b:c7:20:15:15:45:9d:90:04:5b:4e:b7:a7:37:fa:
ce:34:3b:97:95:5b:f6:10:da:c1:8e:21:ff:21:fc:7d:a5:9c:
d1:49:6b:aa:71:24:4c:05:e4:1a:86:66:bb:fd:d3:05:ef:50:
7b:fe:5b:41:11:3f:18:f9:19:10:c6:a3:e8:a9:c5:37:e7:70:
fb:9d:45:7d:40:ba:d3:b6:dd:17:7e:9e:33:f8:e2:d9:1d:d4:
37:31:16:5c:6a:8d:3d:fb:66:ac:9d:aa:65:46:67:d6:ef:9f:
da:ac:39:4d:d5:5d:94:ab:e0:e4:d5:42:93:59:a1:e3:32:d6:
00:71:52:f0:4a:40:88:52:a6:01:af:c8:2d:13:42:df:0e:91:
86:18:fa:c7:3c:de:e9:6a:7b:5c:04:de:d7:00:1b:c6:41:bd:
57:39:36:64:17:62:a2:0d:62:06:42:57:43:9f:63:ca:41:93:
ab:b4:02:f4:db:fd:2f:43:00:f6:58:16:68:e2:c2:9b:c3:64:
90:04:db:01:c9:d4:bd:2c:43:4c:00:b2:02:b2:37:4c:fb:5c:
6f:5f:b8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:24 2025 by rpki-client