Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft
File: 5YAuENSvnLelksYbu0sJLqw4htY.mft (raw, json)
Hash identifier: eMsQzh+kjFN7MDe0q8f7TpuPIUK0P8FfVAM443kFIUk=
Subject key identifier: EC:47:A9:47:3B:2C:80:04:89:26:88:3C:A3:C9:B1:F4:A5:16:F1:E8
Authority key identifier: E5:80:2E:10:D4:AF:9C:B7:A5:92:C6:1B:BB:4B:09:2E:AC:38:86:D6
Certificate issuer: /CN=e5802e10d4af9cb7a592c61bbb4b092eac3886d6
Certificate serial: 019A70A56C10C0BEC0134C4BB859257749FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAuENSvnLelksYbu0sJLqw4htY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft
Manifest number: 4C
Signing time: Tue 11 Nov 2025 02:01:20 +0000
Manifest this update: Tue 11 Nov 2025 02:01:20 +0000
Manifest next update: Wed 12 Nov 2025 02:01:20 +0000
Files and hashes: 1: 5YAuENSvnLelksYbu0sJLqw4htY.crl (hash: 9bc0hlGuB0BS97f/IyFWJTal6Cw3bGG8yoy/9zqL6kg=)
2: usMLAG6YZUxgwHs51gx5TCy7zzI.roa (hash: pY+WXtHRbgCgVUJPNgpPcMNtikZqJuq/uJTTR/ANulA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft
rsync://rpki.ripe.net/repository/DEFAULT/5YAuENSvnLelksYbu0sJLqw4htY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:6c:10:c0:be:c0:13:4c:4b:b8:59:25:77:49:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5802e10d4af9cb7a592c61bbb4b092eac3886d6
Validity
Not Before: Nov 11 02:01:20 2025 GMT
Not After : Nov 12 02:01:20 2025 GMT
Subject: CN=ec47a9473b2c80048926883ca3c9b1f4a516f1e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9f:38:74:f7:e2:e1:59:06:5b:bb:a6:f2:6b:
c0:1b:1b:bb:79:45:65:25:de:4e:c6:5b:be:11:73:
95:3b:0e:73:24:48:ba:73:5a:49:ec:38:50:54:8b:
ca:80:ba:68:14:b7:77:4f:c2:24:b7:f7:8c:e6:74:
38:77:55:20:53:8f:e0:8a:a4:0e:3d:9a:4d:95:44:
8f:be:5d:c8:e4:ed:9e:c8:0f:fb:bf:03:69:61:c7:
91:6d:36:cf:0b:86:ea:14:de:be:48:10:94:c6:bb:
ff:d4:70:63:77:51:03:8b:64:cf:e2:b8:c9:79:a7:
a1:92:43:b7:3a:6d:9c:13:c3:6b:09:b5:1d:b7:87:
19:96:f9:ba:40:f2:4c:32:3b:2a:51:88:4b:2a:ef:
d1:6f:df:35:be:89:c2:7e:44:f5:f7:ae:91:3c:68:
8e:fc:1f:b4:13:ee:b1:09:ac:1f:54:f4:47:03:b1:
a9:1d:8e:98:1b:43:49:65:60:81:fb:57:9d:51:2e:
29:53:2e:cc:43:a3:5d:2c:5e:6b:84:71:6d:ef:21:
5d:03:e5:2b:92:47:79:a0:d0:99:e0:78:d5:36:7f:
0f:a7:02:66:da:e2:fb:fc:f4:7f:0f:d3:db:82:98:
30:3c:4d:87:ca:6b:45:b9:71:c4:e3:5e:c0:55:b1:
1a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:47:A9:47:3B:2C:80:04:89:26:88:3C:A3:C9:B1:F4:A5:16:F1:E8
X509v3 Authority Key Identifier:
keyid:E5:80:2E:10:D4:AF:9C:B7:A5:92:C6:1B:BB:4B:09:2E:AC:38:86:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAuENSvnLelksYbu0sJLqw4htY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:52:cd:15:96:44:2b:a1:a0:d4:f4:b4:23:5c:cf:4d:6f:49:
b3:c8:55:30:94:78:de:43:ee:3a:8f:a0:f3:f2:98:b4:79:34:
90:95:e5:95:fd:47:a8:fe:7c:e5:dc:b6:87:1d:99:ea:8a:83:
f7:28:65:71:cf:68:12:c4:83:5b:2e:c2:5b:d9:47:e4:f0:6e:
e5:a1:17:eb:2c:73:7e:42:60:ca:bd:47:a4:66:71:41:e0:36:
70:41:6c:7e:e7:11:d9:13:29:f0:db:ae:33:4a:fe:2a:6e:be:
4d:5f:86:ab:39:51:d3:f1:e0:79:6c:01:ae:c9:e3:c7:9a:2d:
6a:9e:a3:a7:6c:69:67:e3:6f:85:1a:7e:1b:07:66:ee:91:ce:
59:f6:2f:0e:b0:fb:c3:f5:5a:8f:c3:ed:cb:49:a9:a1:c7:a5:
6d:83:8d:b8:56:35:e8:5d:2a:39:80:5b:fb:b5:fc:75:a5:9c:
47:cd:a1:fe:29:ad:d3:a3:fb:1e:af:80:f2:34:06:02:6a:e4:
ce:5f:5d:80:83:9d:36:6a:0a:15:11:02:17:ec:0e:29:a7:ef:
14:a2:a8:18:6f:e8:f6:13:79:13:76:bf:02:9f:ba:d3:73:27:
b9:e4:43:7e:0a:15:65:e5:6f:68:a0:34:09:70:25:67:5a:fc:
89:52:ee:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:37:08 2025 by rpki-client