Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
File: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft (raw, json)
Hash identifier: F+JsyyAB6PvXfIEvjf0OvNsBY1E0FgKUMEJdNfhUxGc=
Subject key identifier: 9E:B0:D7:C9:45:3E:76:8C:56:8B:C0:7C:E4:60:48:CD:A0:BB:15:B4
Authority key identifier: E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
Certificate issuer: /CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Certificate serial: 019A72262FA42B872D070B0A41742FA3CDF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
Manifest number: 1660
Signing time: Tue 11 Nov 2025 09:01:36 +0000
Manifest this update: Tue 11 Nov 2025 09:01:36 +0000
Manifest next update: Wed 12 Nov 2025 09:01:36 +0000
Files and hashes: 1: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl (hash: T5HMMpPlYcqpwXqVQTCgWpqvC6lr79oGRJUfIB+lG1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:2f:a4:2b:87:2d:07:0b:0a:41:74:2f:a3:cd:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Validity
Not Before: Nov 11 09:01:36 2025 GMT
Not After : Nov 12 09:01:36 2025 GMT
Subject: CN=9eb0d7c9453e768c568bc07ce46048cda0bb15b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:54:e9:8a:df:0d:52:89:1b:84:22:d0:a2:cd:
e8:13:d5:10:da:3f:97:2a:3c:60:9f:45:a4:53:74:
28:67:22:40:14:6f:6a:74:f2:8a:44:a2:22:02:05:
65:f2:14:97:66:0f:9d:f5:6e:ed:99:f7:fb:b2:21:
51:00:c0:34:e6:e3:a0:ac:cd:ae:02:6b:f2:b2:8b:
c3:f7:88:c9:32:4c:5b:dc:f8:2b:dc:d4:23:37:3d:
55:9f:38:1c:f1:b5:69:26:21:f2:8b:f1:f9:17:7d:
1a:a5:43:7d:df:df:24:f7:4e:2b:cf:ef:86:4d:30:
47:bd:5b:b8:7b:dd:7a:91:25:73:48:1e:58:22:13:
ff:08:7a:3b:64:50:2a:91:7a:2e:01:af:06:c7:ad:
87:b5:da:38:57:8e:fd:10:23:9d:4c:a5:71:54:32:
fc:5e:35:ff:9d:5f:81:39:c2:c2:0a:27:ca:c7:4e:
9e:2a:84:48:84:cb:a3:ad:1c:37:9a:d4:f2:32:02:
cf:3c:c9:24:d6:7b:58:7b:e3:6f:bd:f5:a8:b4:53:
c9:f7:99:5d:b8:89:c8:0f:cb:9a:e8:48:7f:26:77:
a5:74:4f:bc:bd:c3:92:93:b4:fe:7c:aa:0f:1e:1b:
14:07:b4:ed:52:3b:97:41:23:09:c6:19:12:7e:d7:
d4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B0:D7:C9:45:3E:76:8C:56:8B:C0:7C:E4:60:48:CD:A0:BB:15:B4
X509v3 Authority Key Identifier:
keyid:E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:f5:9e:eb:e8:fe:0e:82:37:a6:70:da:ae:91:6c:a3:e6:57:
53:b7:2a:9c:f7:7a:74:b5:b1:94:d8:6e:c3:5c:f6:fa:3b:7c:
b8:dd:07:47:4b:af:70:c7:28:51:d1:20:0a:c7:74:8e:96:38:
18:8a:db:0c:e3:c1:b1:6c:40:74:a4:8f:6d:6d:99:f6:b1:35:
e3:a4:06:3a:dc:2d:87:6b:d6:bb:4d:55:4c:d7:29:23:0a:ae:
cd:51:35:d8:4a:f8:60:4e:a9:c4:6d:c7:fe:e5:8e:f7:fc:4a:
df:ac:b7:03:bd:bc:f6:6f:3e:41:48:3d:4a:8b:a8:f3:03:5f:
9d:49:54:18:80:6a:02:06:12:36:18:b9:c9:b9:5f:83:a9:e4:
f8:e0:27:28:2b:d4:0b:2a:7b:21:a3:59:66:bc:0c:6d:4f:54:
7a:ed:f7:b1:e4:5c:a4:c9:b4:99:48:21:ab:9e:26:09:35:b0:
76:4d:2e:ac:83:e0:d7:e2:66:fa:3a:56:cd:4f:e8:b3:9e:b1:
57:e6:63:79:d4:8f:4c:d6:39:66:80:e4:e3:ce:2e:eb:e2:b4:
84:3c:76:e7:02:62:d4:3a:07:15:4c:14:ff:af:1e:85:9e:03:
f1:bb:75:a4:e5:87:f5:db:32:65:bc:f1:28:57:26:2c:76:42:
f5:f3:47:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:16:12 2025 by rpki-client