Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File: h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier: xypS3tGnUU547V7UEnrS0GGjns0ge8d2i443iG0I5+4=
Subject key identifier: AA:D4:B7:D0:86:AE:48:8A:AB:51:12:54:1E:35:5E:69:68:60:68:2E
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer: /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial: 019A2289CA2E5B0F5456AB514EFFD36681FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number: 16F7
Signing time: Sun 26 Oct 2025 22:00:46 +0000
Manifest this update: Sun 26 Oct 2025 22:00:46 +0000
Manifest next update: Mon 27 Oct 2025 22:00:46 +0000
Files and hashes: 1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: Uwh3vXYILxsXYXy6wgF9YMDvKMtytxFq5TYn5saWrC4=)
2: vH-eK3MDkjfjQIWGcNruZ1gYj6o.roa (hash: X8Ll3xNOyDNsY8OoD7P2fm6g2ckrfD35bOMThe6H4RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:89:ca:2e:5b:0f:54:56:ab:51:4e:ff:d3:66:81:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Validity
Not Before: Oct 26 22:00:46 2025 GMT
Not After : Oct 27 22:00:46 2025 GMT
Subject: CN=aad4b7d086ae488aab5112541e355e696860682e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:66:05:5f:89:45:8c:6a:a4:e0:62:4e:ae:5e:
7f:73:ce:b6:9f:b8:05:ef:a2:7a:90:c2:1b:4b:f7:
1b:81:9e:7d:33:fe:ef:c2:c3:ad:c2:af:dd:be:06:
68:f0:e8:7e:b3:8a:90:94:25:26:99:7a:04:36:cc:
96:29:19:9a:8e:52:c9:15:9f:0f:af:df:36:44:32:
18:b9:0c:20:8f:68:e2:42:78:e9:15:bc:66:db:56:
56:c5:27:2c:d7:b8:3b:69:c0:9a:95:ae:fa:79:68:
f6:7b:71:c3:cf:17:70:55:d5:99:42:6e:72:9f:59:
05:6c:0e:b2:b8:d4:3e:69:9d:43:18:5d:8d:9d:ab:
a1:06:fd:6d:a4:20:ea:d6:5d:b0:f9:15:2c:8e:85:
2e:be:10:1f:de:cc:be:a6:e1:dc:c2:a5:ee:30:be:
27:f5:1c:90:53:10:d6:6c:f6:43:f5:2c:1c:e7:38:
3e:c5:2a:ff:01:11:2c:19:0e:4b:7b:82:db:6d:de:
6c:01:b6:fb:0f:e8:0b:90:84:66:e8:c0:5d:31:45:
cc:d2:62:34:ac:f7:15:9d:fc:0e:fe:ff:5c:00:0c:
6d:f3:ac:b2:24:9c:94:87:53:e4:3b:fb:4d:99:15:
3e:54:9e:dc:f9:67:e7:ee:04:cf:ed:0b:69:6f:96:
62:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D4:B7:D0:86:AE:48:8A:AB:51:12:54:1E:35:5E:69:68:60:68:2E
X509v3 Authority Key Identifier:
keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:12:62:33:7e:a7:a7:37:8f:8e:00:a6:39:15:68:d1:bf:27:
bd:7e:bd:a4:a2:03:67:7d:5e:f6:80:24:ff:59:df:0c:75:5c:
98:8f:ef:c5:38:1c:f8:8d:f4:dd:4a:69:7e:35:67:0f:06:2a:
0e:59:2e:3b:fb:33:a1:bd:af:b4:b1:75:bc:c8:dc:76:61:45:
dc:ca:88:5d:87:b0:1c:35:a4:f7:4c:25:18:e1:0d:95:f2:1f:
83:16:56:e0:ba:5a:e6:98:4b:e9:4a:6e:c4:64:e1:2a:63:1f:
57:c8:67:f4:06:10:39:71:d2:10:da:ea:2d:b4:1b:61:36:ce:
57:25:08:77:fb:26:4e:44:2b:af:32:b9:c1:20:89:bb:5c:40:
22:b1:8d:e0:5e:8a:68:ca:d6:22:e9:55:6f:b0:cc:2b:0f:31:
05:bc:13:30:d3:01:ad:7e:e5:fa:01:3b:67:a3:28:28:ee:58:
a8:c6:63:52:07:46:06:b4:f7:2e:f6:28:0c:72:b4:5c:b1:99:
67:fb:1b:e3:9d:c8:8e:c7:db:91:95:58:63:a2:4f:29:a4:d1:
62:1a:2c:e1:ca:8b:9b:f5:ad:cd:85:f1:2f:b6:ca:f2:c6:dc:
5e:9b:bc:ac:7b:2c:5f:c4:b7:09:00:dd:fe:05:9d:13:da:c7:
bf:69:07:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:01:12 2025 by rpki-client