Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
File: 5O8X9MtP6SrQU-7yXznWOuEgfdM.mft (raw, json)
Hash identifier: HOQy2gUyYXBCkTABF31L7x1HPFy8BJbkINHB84kHrxA=
Subject key identifier: A4:BB:56:F3:A8:E9:EE:90:FD:C3:BA:D1:86:BF:F1:74:83:C6:5C:6F
Authority key identifier: E4:EF:17:F4:CB:4F:E9:2A:D0:53:EE:F2:5F:39:D6:3A:E1:20:7D:D3
Certificate issuer: /CN=e4ef17f4cb4fe92ad053eef25f39d63ae1207dd3
Certificate serial: 019A71B897AE957065D9A973EEECB80E037B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
Manifest number: 0355
Signing time: Tue 11 Nov 2025 07:01:51 +0000
Manifest this update: Tue 11 Nov 2025 07:01:51 +0000
Manifest next update: Wed 12 Nov 2025 07:01:51 +0000
Files and hashes: 1: 5O8X9MtP6SrQU-7yXznWOuEgfdM.crl (hash: Wed6QmEhTBmV9GGmkngFM4wUMdCeqEmGEoz30YfggNQ=)
2: hkqw3W9-pdwewEMPwrQBPExOldQ.roa (hash: GNMEaQG7JI+6R+GxCRi11C7wb2KrqYyAM0elThFtbVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:97:ae:95:70:65:d9:a9:73:ee:ec:b8:0e:03:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4ef17f4cb4fe92ad053eef25f39d63ae1207dd3
Validity
Not Before: Nov 11 07:01:51 2025 GMT
Not After : Nov 12 07:01:51 2025 GMT
Subject: CN=a4bb56f3a8e9ee90fdc3bad186bff17483c65c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:97:7b:97:bd:14:79:75:70:37:31:4f:f1:bb:
bf:65:a0:85:68:51:cb:15:a6:90:2e:d0:d4:f2:21:
30:82:fa:f4:f0:f5:92:49:06:1d:44:c9:62:4e:57:
97:95:5c:0e:92:00:b0:07:19:76:cc:8e:1d:f9:ab:
f7:3f:dd:61:4b:83:3c:ad:3e:41:8c:f0:ba:19:54:
bb:ba:86:4e:76:5b:7a:24:c6:d8:be:0e:d6:89:9c:
f4:37:81:54:b7:c6:e2:87:04:21:8e:f7:68:25:76:
39:11:81:ae:8f:91:ce:e6:78:45:0e:5a:70:f4:eb:
b6:dd:a7:4c:6a:da:45:64:69:60:9b:d0:ab:83:bf:
12:b8:3c:90:f6:90:a5:8f:be:fc:58:1f:9d:67:3f:
c4:88:36:20:a2:e7:6e:b6:cc:65:82:38:db:dd:20:
7b:2d:7a:11:41:53:1b:82:43:ac:4f:0c:2d:94:34:
aa:d5:f5:7d:fd:f9:a5:36:85:86:68:77:57:31:e9:
2c:f5:a5:42:bb:15:d2:ea:e2:78:dc:8c:2b:87:7a:
5a:70:38:7e:d0:b8:81:c5:80:09:74:f8:09:58:91:
c2:be:f1:01:45:27:a7:d4:a9:7c:49:e5:97:15:85:
74:3c:cf:7c:52:cc:0b:f9:53:fa:94:24:04:0f:bd:
f3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:BB:56:F3:A8:E9:EE:90:FD:C3:BA:D1:86:BF:F1:74:83:C6:5C:6F
X509v3 Authority Key Identifier:
keyid:E4:EF:17:F4:CB:4F:E9:2A:D0:53:EE:F2:5F:39:D6:3A:E1:20:7D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:6a:81:0d:71:8c:83:9e:66:db:16:4e:aa:75:00:e2:fd:9e:
4f:01:79:e2:97:06:8d:8b:43:f9:c5:27:8a:12:15:97:24:fd:
fb:93:cc:5b:7f:a5:7a:ae:81:8d:15:4b:5f:d2:47:9e:04:f3:
88:86:bc:0f:e4:6d:5f:d0:0e:2d:15:1a:0e:ae:a5:2a:8c:b2:
9b:34:15:62:47:8f:37:9c:80:06:aa:76:d3:34:82:86:c5:7c:
cb:0a:b1:c4:53:41:1f:d9:52:92:65:9a:56:dd:0c:42:3c:a8:
97:c9:19:f8:0c:98:73:d2:10:0f:8c:c9:5d:f6:c3:cd:48:ca:
88:15:48:81:16:27:8d:a6:cf:72:78:f2:37:bb:11:fd:a8:a9:
e7:69:9e:0a:9d:dc:be:39:cf:e0:f1:74:35:d8:8e:89:65:48:
ba:6b:20:1c:96:09:4e:a1:72:9d:cf:c0:b3:69:50:cf:f2:b8:
1f:f0:45:9e:c5:7a:cf:d5:a5:db:30:3b:9e:58:9b:29:2c:e1:
5d:69:85:91:a6:29:ac:6f:57:2c:f4:e9:74:d2:f4:f9:f9:aa:
02:d6:6d:4e:f0:b8:a8:67:15:9a:3e:e3:7e:29:4a:ac:9d:ff:
50:46:46:bf:f8:54:cc:7e:33:32:6f:44:f0:53:ea:eb:69:65:
22:e9:6a:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:39 2025 by rpki-client