Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
File: 5HZ7Uea0grnnp0g2YqXb7huNhaA.mft (raw, json)
Hash identifier: l1pyP2Ud9f30qmT0hJMBHaaIP7Ql9zkQLqwk6htBIHk=
Subject key identifier: 3B:C0:A1:39:3C:93:5D:81:C7:07:5C:E9:B4:FD:90:3B:37:69:D8:21
Authority key identifier: E4:76:7B:51:E6:B4:82:B9:E7:A7:48:36:62:A5:DB:EE:1B:8D:85:A0
Certificate issuer: /CN=e4767b51e6b482b9e7a7483662a5dbee1b8d85a0
Certificate serial: 019A70A563780DCD27DA80D53459B9B30276
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 02:01:18 +0000
Manifest this update: Tue 11 Nov 2025 02:01:18 +0000
Manifest next update: Wed 12 Nov 2025 02:01:18 +0000
Files and hashes: 1: 1-2kAM8E1UL_Pvf9Vzt6AdGfyh8o.roa (hash: Ohp9jg/lWKCAW1pqYiDBNHfJGsbI7n6Nnedeq9nVw0Y=)
2: 5HZ7Uea0grnnp0g2YqXb7huNhaA.crl (hash: cOEPBv+byGwkEyWG+LZThIQxE/NYCXsZ7CAZwdzLywg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:63:78:0d:cd:27:da:80:d5:34:59:b9:b3:02:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4767b51e6b482b9e7a7483662a5dbee1b8d85a0
Validity
Not Before: Nov 11 02:01:18 2025 GMT
Not After : Nov 12 02:01:18 2025 GMT
Subject: CN=3bc0a1393c935d81c7075ce9b4fd903b3769d821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f3:7f:fc:16:67:fe:62:b9:9d:e3:d7:2b:57:
8c:14:97:b6:8b:c0:d5:02:e3:35:cc:68:fa:04:74:
96:38:7a:a0:35:3e:53:bf:c6:30:9a:07:4e:d8:f8:
fa:8c:58:13:8f:8f:e2:60:92:9d:2a:25:7b:ee:90:
7c:e7:37:a4:d5:8f:34:51:a6:a4:f4:44:90:f0:4e:
66:f2:09:91:10:d1:11:11:ee:cd:74:67:70:fc:c2:
d9:81:80:77:eb:93:1b:04:ed:60:ed:ca:e3:19:74:
47:b6:e6:61:0f:e7:47:fe:ad:3b:b9:e5:5b:a6:a9:
c3:8c:8e:f1:2e:e7:8d:43:04:2d:f8:40:11:79:a8:
11:bf:95:6f:9d:71:7d:8c:37:37:48:9b:a3:bf:b4:
27:e4:94:a6:dc:50:c7:28:f2:80:66:ec:6e:d2:18:
a4:45:10:7e:90:e1:6e:e7:82:3f:55:a3:da:22:ee:
36:57:4f:92:9d:d2:6e:c8:9b:9e:c9:cb:da:c5:d5:
95:8f:f4:f0:bd:0d:25:ee:f8:7d:c9:d4:ea:7e:cf:
36:97:47:9c:42:e9:5b:b9:2c:12:30:1f:0f:3f:1e:
9e:34:ae:4a:a3:7d:bb:a1:66:38:29:cf:04:67:b4:
1a:c0:74:70:6b:3c:1a:a3:fc:56:fb:e5:c8:65:fd:
af:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C0:A1:39:3C:93:5D:81:C7:07:5C:E9:B4:FD:90:3B:37:69:D8:21
X509v3 Authority Key Identifier:
keyid:E4:76:7B:51:E6:B4:82:B9:E7:A7:48:36:62:A5:DB:EE:1B:8D:85:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HZ7Uea0grnnp0g2YqXb7huNhaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/745768-ba80-4e76-a1d8-bdbe16806616/1/5HZ7Uea0grnnp0g2YqXb7huNhaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:8b:78:37:fd:a6:41:e4:53:a0:1c:2d:17:33:55:70:81:10:
51:4f:f5:00:99:56:f1:bd:b6:c8:15:f3:83:7c:47:73:47:b2:
8d:e8:85:ed:12:33:17:c8:e6:6c:dc:43:6a:b7:cd:3e:09:24:
8b:5d:fa:74:5e:60:a6:c4:63:8f:cc:79:0f:4f:d3:e8:43:a4:
05:f9:e3:ff:76:8d:9e:4e:f2:f9:50:0a:e9:10:89:f9:6a:e6:
3d:c4:e1:43:da:bf:6a:27:78:fe:bf:d9:55:5d:d9:1a:77:8a:
38:2a:5c:6a:66:a4:7b:22:9a:a3:65:57:4f:37:16:fb:99:91:
ed:84:af:25:8a:b4:d4:3a:e1:45:ac:52:ab:3d:35:f7:2d:1e:
d5:4d:51:60:50:84:8d:35:8c:f0:ed:27:bd:54:e5:1a:f4:9a:
d7:45:7a:7c:2f:4a:4f:12:d1:30:f7:60:c9:e2:6e:1e:24:a0:
97:fb:a7:be:83:8d:13:b0:dd:6f:bc:6e:79:ae:61:65:13:2a:
cb:04:d9:a9:b0:18:89:ae:4b:10:fc:b4:c1:cb:79:d1:20:06:
b2:41:5e:7d:9b:91:ee:d1:c0:aa:b2:c9:27:d9:5f:3b:f2:c9:
1b:e3:84:dc:c7:33:ab:61:92:74:fa:3a:39:c2:58:c8:29:65:
30:9e:fa:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:43 2025 by rpki-client