Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
File: 5HZ7Uea0grnnp0g2YqXb7huNhaA.mft (raw, json)
Hash identifier: LTgvo5MhmzKBgge81WhccTQGR9trFPTWd8WfYV1HfU8=
Subject key identifier: 0D:50:0C:8B:08:B9:94:6E:49:DD:68:8A:07:B4:79:FB:8F:9A:5C:BA
Authority key identifier: E4:76:7B:51:E6:B4:82:B9:E7:A7:48:36:62:A5:DB:EE:1B:8D:85:A0
Certificate issuer: /CN=e4767b51e6b482b9e7a7483662a5dbee1b8d85a0
Certificate serial: 0199228C654D44109AA824DC0746B31FAA8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 05:00:49 +0000
Manifest this update: Sun 07 Sep 2025 05:00:49 +0000
Manifest next update: Mon 08 Sep 2025 05:00:49 +0000
Files and hashes: 1: 1-2kAM8E1UL_Pvf9Vzt6AdGfyh8o.roa (hash: Ohp9jg/lWKCAW1pqYiDBNHfJGsbI7n6Nnedeq9nVw0Y=)
2: 5HZ7Uea0grnnp0g2YqXb7huNhaA.crl (hash: gFBtRnmSGMk/gJHS6ZYxkkh2X9s2lokXWWr/v7vRJMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:65:4d:44:10:9a:a8:24:dc:07:46:b3:1f:aa:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4767b51e6b482b9e7a7483662a5dbee1b8d85a0
Validity
Not Before: Sep 7 05:00:49 2025 GMT
Not After : Sep 8 05:00:49 2025 GMT
Subject: CN=0d500c8b08b9946e49dd688a07b479fb8f9a5cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c7:5a:15:b1:3a:a6:e8:43:79:ac:bc:2c:16:
f5:80:98:59:61:e4:44:df:f0:36:ab:11:41:b7:cd:
b8:ad:a5:e5:57:6b:ab:6e:e6:df:a1:b7:cb:75:40:
06:1d:2e:f2:10:ea:8e:8c:7e:bd:71:bd:49:69:6c:
9c:b5:1a:f4:8d:40:31:f4:fd:16:25:05:65:bc:75:
50:13:ea:d9:e8:c7:ab:39:50:eb:56:a9:5d:b6:47:
de:d1:40:47:29:a1:9f:37:f3:0d:fd:e0:95:a2:de:
da:7f:31:6b:73:0c:fc:cb:49:fb:d0:5a:c4:e3:6e:
97:84:f4:54:a4:8f:8c:f3:81:11:dd:10:67:be:a4:
1d:ed:8e:a3:1d:56:f0:db:71:39:25:01:2c:5a:f3:
63:c7:24:be:19:67:a1:b7:1e:8a:90:e3:98:ce:ea:
e9:84:dd:2f:58:41:b5:71:ab:7e:04:9a:70:26:fa:
ad:27:62:4f:b6:df:09:77:77:e1:6f:2b:1c:8e:e4:
ee:d5:32:66:63:a0:f3:0d:53:cf:cc:b4:72:9e:4e:
69:77:ce:53:c3:47:6a:cb:62:3f:d0:e1:43:bb:15:
4a:26:09:d4:d7:83:ef:29:0e:ec:f7:db:82:92:f4:
d9:c5:92:77:c7:63:ae:4f:51:05:a2:46:c3:e7:c8:
20:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:50:0C:8B:08:B9:94:6E:49:DD:68:8A:07:B4:79:FB:8F:9A:5C:BA
X509v3 Authority Key Identifier:
keyid:E4:76:7B:51:E6:B4:82:B9:E7:A7:48:36:62:A5:DB:EE:1B:8D:85:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:2b:5b:2c:a9:50:a3:b7:f0:c7:bd:b0:d0:28:5b:38:3d:a0:
c0:05:bd:93:d0:66:b4:ff:45:c0:e4:d1:f2:6c:3a:ad:eb:37:
8c:dd:5c:a9:88:43:a2:95:12:96:23:f2:d3:ad:63:5f:8e:25:
4b:3e:0b:d0:d3:fb:f2:06:bf:9f:b1:41:06:19:10:d0:ec:95:
2e:cb:cf:37:ba:b0:75:fa:d9:b6:a1:82:de:67:6c:a2:f8:16:
d0:46:f3:cc:b2:49:71:43:6e:14:62:dc:d0:9a:ae:37:9b:fc:
08:d1:7c:61:b8:ee:74:69:cf:e2:c2:e9:0b:6e:53:f0:dc:8f:
db:6f:41:5f:f5:80:4b:ff:9b:91:1f:56:5b:e0:0a:ec:d3:6e:
8a:8c:71:30:7f:a1:63:b5:d0:ad:16:a8:0f:66:f5:13:d5:a8:
67:df:81:99:e2:b4:5f:35:61:87:58:b5:53:6f:c5:da:61:27:
7b:d6:c6:ff:02:e9:46:c7:ff:46:11:38:5f:db:0f:6a:ea:55:
50:8f:be:8f:55:63:22:3f:65:7d:02:87:eb:7c:c9:1c:b8:69:
e0:d5:51:ce:5f:3b:d1:00:2c:32:b1:ed:b9:4c:7e:c7:22:b7:
41:28:04:13:a2:27:57:96:ca:aa:65:54:4d:44:50:e4:43:3f:
05:c4:a6:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:25:22 2025 by rpki-client