Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
File: 5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft (raw, json)
Hash identifier: Hhyf8gcvXPVq1xsDqQevi6OokCJlHlazEqpF5mEO/xo=
Subject key identifier: 36:64:CA:4B:4E:5C:E2:2C:1C:69:36:A9:1B:A8:E7:8C:B6:26:30:26
Authority key identifier: E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33
Certificate issuer: /CN=e57731ea857b903aa40a8e5fd8d88446505b5233
Certificate serial: 019A73019D88FFB0429A9C46E4647C2360B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 13:01:16 +0000
Manifest this update: Tue 11 Nov 2025 13:01:16 +0000
Manifest next update: Wed 12 Nov 2025 13:01:16 +0000
Files and hashes: 1: 5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl (hash: lbLgpUb7T6kw+qRF1VJPiNS9M6gnY0uX2tJlth2lmbc=)
2: orFnLXI1TH7Jt_MUuyCNlezlJcQ.roa (hash: hsQhpxV8CsTitmZs0YwImGnMA+twiLDEhUnDv5rariM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:9d:88:ff:b0:42:9a:9c:46:e4:64:7c:23:60:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e57731ea857b903aa40a8e5fd8d88446505b5233
Validity
Not Before: Nov 11 13:01:16 2025 GMT
Not After : Nov 12 13:01:16 2025 GMT
Subject: CN=3664ca4b4e5ce22c1c6936a91ba8e78cb6263026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:20:9d:bb:8a:2a:a5:ba:33:60:ab:de:93:ef:
58:1b:c8:f1:60:ba:13:12:89:52:0c:d1:20:fc:c6:
5d:f1:61:22:fe:5b:3a:0c:47:a1:b1:16:e0:dd:66:
c1:19:c8:e6:9c:e2:62:4e:ce:2f:80:45:f4:fd:f6:
55:ee:07:66:57:eb:ea:4e:52:08:f5:aa:da:f9:a9:
dd:4e:64:a9:10:be:8b:db:5b:dd:b1:e9:82:8a:12:
c0:84:61:d2:b7:a5:7b:e1:10:3e:e8:2e:80:d5:2c:
22:2b:b0:2b:02:34:01:59:69:9f:be:a0:c3:bb:d5:
d1:39:fa:8e:f6:a8:a9:57:f1:5b:56:64:32:c9:86:
b7:d3:84:9e:81:c4:df:4e:63:76:43:c9:a9:03:c0:
55:22:d6:ab:f3:65:e9:f9:8f:f1:0a:0a:5a:47:e2:
c5:e1:2e:b3:f7:0e:b2:46:38:94:1c:3b:5c:29:19:
cf:73:cd:b5:dc:6d:b3:b5:49:ab:30:77:52:91:f6:
cc:ba:73:69:e0:1f:90:02:ad:bd:fe:73:d0:63:f7:
2f:fe:80:89:29:b8:75:ae:63:4d:b7:cc:83:55:15:
e3:b8:00:70:e8:6b:c2:4f:da:58:70:29:c3:75:66:
e0:92:47:c0:47:53:8f:cb:b0:14:2a:0a:1f:7f:ef:
bc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:64:CA:4B:4E:5C:E2:2C:1C:69:36:A9:1B:A8:E7:8C:B6:26:30:26
X509v3 Authority Key Identifier:
keyid:E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:dc:64:3a:41:4c:6f:47:8b:bd:5a:b2:84:b9:0a:65:81:30:
2b:b6:6f:39:c7:a4:14:af:99:8f:57:15:0b:7d:70:b9:d2:8a:
cf:d7:8e:be:5a:8d:e0:0c:14:d0:92:c8:d9:ac:de:3c:e4:cf:
9c:05:83:6a:5d:72:d6:73:8a:1e:cd:5a:71:d1:7e:32:64:43:
cb:3a:e8:04:12:df:8f:63:5f:d3:3d:5e:ca:26:e9:9b:37:f6:
69:8a:a0:5d:cd:fa:9d:e9:ad:13:8a:c3:3e:97:96:5f:5f:05:
e1:b2:b2:54:c2:aa:f5:6b:52:2d:c9:6b:3c:f1:99:ec:cc:07:
c6:20:e0:d2:1b:46:6a:48:dd:5f:71:d3:72:f8:c8:d3:8d:2b:
65:6b:ae:6d:7b:b7:6e:78:ff:04:5c:bc:87:0e:27:ee:59:d6:
24:3c:9c:1b:c7:5f:fc:4a:8b:30:de:9f:6c:2f:d5:7b:4a:cc:
05:78:ff:67:d5:9b:14:23:d5:19:23:01:80:25:18:a3:9d:58:
cc:51:91:73:3a:91:2f:00:dd:35:96:ae:07:e8:40:3a:df:c0:
39:05:f2:0e:01:63:01:41:d0:af:b0:ba:73:77:00:54:f8:5a:
07:3b:b2:88:2e:f0:c8:cf:94:ad:bc:1f:f3:ac:d8:6e:68:9f:
ce:d6:2d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:36:20 2025 by rpki-client