Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
File: N5fgOfAlolqm6ZI5HZJCYGmbpns.mft (raw, json)
Hash identifier: KZL7yhkT0zN7sFEeHqnIwXkeVG0P3ChTR5aFmDF3BkE=
Subject key identifier: 17:18:F1:25:EB:24:4A:D8:30:F6:4A:52:43:3C:55:1E:C1:32:47:DE
Authority key identifier: 37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
Certificate issuer: /CN=3797e039f025a25aa6e992391d924260699ba67b
Certificate serial: 019A7301AAAC269E871E03807E4B2D12D417
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
Manifest number: 109A
Signing time: Tue 11 Nov 2025 13:01:20 +0000
Manifest this update: Tue 11 Nov 2025 13:01:20 +0000
Manifest next update: Wed 12 Nov 2025 13:01:20 +0000
Files and hashes: 1: N5fgOfAlolqm6ZI5HZJCYGmbpns.crl (hash: cZBsGvkr1uXuxCqj7Db578X0ZxG0FECOdhkYhCPx7A4=)
2: sVzqlUVXrHqVsVw4yhzSu1oYIjM.roa (hash: HaD8do3X9duYtx96VIyzNjLwjQlO2MrTlBSjfqbB5ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:aa:ac:26:9e:87:1e:03:80:7e:4b:2d:12:d4:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3797e039f025a25aa6e992391d924260699ba67b
Validity
Not Before: Nov 11 13:01:20 2025 GMT
Not After : Nov 12 13:01:20 2025 GMT
Subject: CN=1718f125eb244ad830f64a52433c551ec13247de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b8:99:4c:87:16:f3:6a:16:9a:b1:b7:56:95:
e3:41:c8:4c:d5:55:5e:34:62:20:88:40:f3:a3:8b:
8c:05:66:46:06:0e:60:bc:4a:a1:ee:ae:31:db:08:
68:a9:34:87:3c:31:c6:9f:fb:32:28:10:c6:0e:59:
44:49:94:b2:24:6e:6b:8e:dd:1b:e6:0d:b0:c1:c2:
2a:5b:a5:c1:d1:f7:fd:aa:0f:8d:50:09:5b:3f:39:
1d:4c:8f:ee:16:e3:c9:a9:5a:01:e4:08:9e:93:d4:
16:84:09:cf:99:81:07:ae:dc:53:48:0a:f0:05:4b:
c5:4f:92:48:c2:a7:fb:5e:f6:9a:ce:e6:c5:52:9a:
71:1c:98:e1:ad:2d:ce:fe:db:d6:6f:59:1c:9d:ce:
09:12:cb:4c:58:a2:c7:4f:85:70:48:7b:59:3f:d5:
4c:af:7d:11:91:20:cb:f5:7a:39:35:78:d2:cd:17:
b7:d7:69:fc:ba:a7:13:e3:2a:74:3b:40:3a:2d:aa:
8d:3e:35:76:8e:c1:74:0b:b4:12:61:60:19:31:7c:
dc:22:29:93:9c:20:8c:bb:5c:3f:07:7f:56:d4:5d:
11:dc:ad:ec:9b:00:30:16:74:96:66:89:40:a7:0e:
76:4d:f7:df:4c:c6:1d:2f:83:aa:8c:cd:76:bc:4f:
e4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:18:F1:25:EB:24:4A:D8:30:F6:4A:52:43:3C:55:1E:C1:32:47:DE
X509v3 Authority Key Identifier:
keyid:37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:ba:a3:05:63:71:65:55:f6:24:ce:6d:e8:a8:ba:8f:87:d2:
eb:ed:04:7e:cb:f0:75:27:03:e8:af:95:c2:f5:a5:37:35:f2:
71:e1:56:0f:37:59:18:4a:26:f3:2d:5b:27:08:1d:94:c1:fc:
b6:65:46:59:38:79:57:b0:9f:14:2f:01:53:27:99:e8:a9:19:
e7:86:5f:42:cd:db:d9:76:a9:aa:bc:6d:dd:71:77:a6:b7:5d:
fe:86:c2:f0:59:45:12:3a:fc:db:6c:96:35:2b:9c:95:79:8f:
d6:45:e8:07:a8:27:5b:a5:c9:e4:bb:1d:19:25:ea:1a:d2:10:
e7:f9:7c:5e:0a:18:9f:aa:e9:8e:eb:95:42:b2:fe:28:3d:ac:
f2:67:7d:f1:a3:78:01:4f:36:5f:e9:19:ec:d4:a5:82:b5:c4:
e0:94:3b:cf:14:b4:28:aa:21:5f:3d:9f:cf:88:c8:d1:fd:4c:
4d:20:77:9d:25:33:44:27:f3:a1:08:ca:1f:70:25:df:77:71:
1e:4b:f7:84:38:02:2d:dc:bb:44:04:df:ae:ed:43:96:21:b6:
2e:c7:43:69:e1:6c:f1:34:9b:13:a1:f7:79:a4:96:f2:e5:fa:
15:31:e6:11:f4:97:ef:20:d2:93:46:12:87:65:52:40:d5:7e:
e7:57:4a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:54:05 2025 by rpki-client