Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
File: 5gSc-H3Y8f1MgCS1psnqlPF7b70.mft (raw, json)
Hash identifier: 6tADqyVIm9Y/EVvbtcXLUxtpEOQJ9NR0HR3TNhBEGRs=
Subject key identifier: 5E:5F:2A:54:1C:35:12:1E:CE:B6:C0:2E:99:69:CB:28:87:E4:AB:80
Authority key identifier: E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
Certificate issuer: /CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Certificate serial: 019A266736DB5B12F5F88C987C38DC0EB7C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
Manifest number: 168B
Signing time: Mon 27 Oct 2025 16:01:29 +0000
Manifest this update: Mon 27 Oct 2025 16:01:29 +0000
Manifest next update: Tue 28 Oct 2025 16:01:29 +0000
Files and hashes: 1: 5gSc-H3Y8f1MgCS1psnqlPF7b70.crl (hash: wkS9DYptWxansitvGMHSkNeQ4CUaeR9/Zwbq3boBdWk=)
2: cu8xrGCLqiGHp1db_MgiG0UxHW8.roa (hash: giP9e0QpRuK7Urrt2Hhvj2cOHwVCXlF67CRutRL96MA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:67:36:db:5b:12:f5:f8:8c:98:7c:38:dc:0e:b7:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Validity
Not Before: Oct 27 16:01:29 2025 GMT
Not After : Oct 28 16:01:29 2025 GMT
Subject: CN=5e5f2a541c35121eceb6c02e9969cb2887e4ab80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1f:44:a4:a8:c1:94:94:99:b7:03:61:25:bf:
7d:f7:c6:37:52:bc:74:f1:50:1b:c3:58:e0:2a:15:
13:fd:ce:fd:a1:bb:9b:4b:d7:7b:04:d8:60:6b:24:
15:c4:c4:a6:c3:16:51:07:66:fd:a3:fa:63:dd:f4:
51:1b:1c:e3:d1:eb:1a:87:3b:d2:e0:6b:cb:ba:51:
31:9c:d9:d9:e0:a9:14:6c:f5:97:37:18:6a:73:20:
be:ed:df:cc:13:a1:7c:4c:80:31:8d:90:44:b1:9e:
bc:fe:d4:cd:e1:36:bb:20:91:ac:41:40:92:09:df:
7a:14:1d:f9:7f:45:35:c5:7c:9c:6d:82:a6:17:50:
d7:23:62:1f:75:65:d8:14:a0:12:88:8f:ab:6c:0b:
5a:0a:46:1d:16:13:8d:8f:a7:b3:3d:7b:e3:eb:44:
3b:96:9d:e3:a2:c8:9f:f6:68:73:38:e5:7f:23:48:
a1:1e:26:bc:99:75:cb:23:65:e2:7e:1a:47:60:34:
d0:dd:67:cb:1d:0b:4d:5a:21:e6:9a:da:51:b8:6d:
db:1d:7c:15:7b:46:3c:17:6d:07:2e:93:b4:48:f3:
1f:7e:19:b4:a6:2b:e7:65:fc:32:eb:10:82:1e:9b:
12:9f:03:ac:8c:ef:58:cf:45:98:70:b9:23:1c:a0:
1a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5F:2A:54:1C:35:12:1E:CE:B6:C0:2E:99:69:CB:28:87:E4:AB:80
X509v3 Authority Key Identifier:
keyid:E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:5c:d2:51:be:6b:87:47:dd:84:99:a5:ee:5c:a4:ac:17:ac:
5c:f2:97:0f:4a:8a:d0:b2:fa:39:c2:72:4d:95:ca:9d:fe:58:
e4:f1:8d:3a:76:f1:a3:10:76:1e:2a:37:09:18:d4:a5:24:f6:
b7:dc:19:5f:e5:4d:32:59:d9:20:0f:fc:a4:c1:04:0a:56:f4:
0c:22:3d:cf:1f:e4:c2:cd:d7:97:be:c2:73:d4:9b:d8:c5:31:
93:63:04:5b:19:12:47:3a:75:45:91:c4:5d:81:c1:fc:9f:24:
58:48:f5:4b:c0:49:7c:40:20:31:98:dd:4a:37:c4:ce:ed:21:
47:f9:09:06:5d:3a:df:3c:a4:f1:f2:b9:18:4b:6b:f3:7a:56:
b5:98:f5:c5:6b:67:61:2a:5e:fd:81:c5:63:c4:e3:75:f8:b4:
61:fa:76:da:c6:63:cb:50:c6:0a:3d:53:03:e1:41:e7:51:94:
f5:ef:cc:c1:74:00:70:d3:e7:45:09:82:b1:17:46:3f:a2:22:
8c:ea:33:f8:60:3f:2a:2e:aa:ee:07:3e:f0:ab:26:9c:bf:ef:
8e:c7:0f:15:ef:4e:b0:c3:14:51:0f:f2:a9:94:6c:9f:3b:d3:
c3:66:b4:39:d9:e1:2e:92:6a:df:49:fc:1b:4f:f1:f8:24:63:
d1:fc:3e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 00:20:48 2025 by rpki-client