Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
File: AF_5zInGaoo6XXNKDWXGH9yFGL4.mft (raw, json)
Hash identifier: GM96WasIF+puGQ4yuIV5q7Zaq7aEp4iEfZRcOSwv8R4=
Subject key identifier: CE:72:0D:39:29:5C:FC:BD:AF:2C:87:BD:26:3D:AF:EC:80:E0:07:49
Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Certificate serial: 019A21E46DE8933E25237101B3C6031940F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
Manifest number: 16F9
Signing time: Sun 26 Oct 2025 19:00:09 +0000
Manifest this update: Sun 26 Oct 2025 19:00:09 +0000
Manifest next update: Mon 27 Oct 2025 19:00:09 +0000
Files and hashes: 1: 0KFOTw8mw8rqvR73lDvTvz4eLlM.roa (hash: czZq6CrDBuBW60D89viYE/HEQ3Elp6ceJu/itDlsmLQ=)
2: 1-IEGfanW1eDg4hey_mFD59jQ4Tw.roa (hash: TEwUAYBqywOE+CrQSa2/94fxmftWbXC3tqwYRSHTWvM=)
3: 7fvFmCf70OoyCtjW6q-YAjjiptE.roa (hash: lD6p2V3Fh7qOAiBluHoM70XX68qSFbEeobI0lYUOj4E=)
4: AF_5zInGaoo6XXNKDWXGH9yFGL4.crl (hash: 5Zbne9CHq49m5uF4e1FIODFlzxxTcRM6deu8Y/j8NF8=)
5: XXc1R4QzqDrW8SviK6xRNkQ-hUM.roa (hash: YZxuonbhRtd70cdMZUvtG4tx6j8PhsH2pz0J9ByQ1UQ=)
6: mVS8rlA27Rm5BH1YZmHsYliJgHk.roa (hash: kSobMvLQWQPPJ+5wYRzt2RMBbz/GSTGKNOrc7qdwFJQ=)
7: svn5qGrzwkwprTn6parcyTvhbAo.roa (hash: /W0ZX7Qy3yFb8g6EosJAqdHBnY5DD0AAIXPV5XPQQ5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 14:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:e4:6d:e8:93:3e:25:23:71:01:b3:c6:03:19:40:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Validity
Not Before: Oct 26 19:00:09 2025 GMT
Not After : Oct 27 19:00:09 2025 GMT
Subject: CN=ce720d39295cfcbdaf2c87bd263dafec80e00749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d3:cf:ce:66:2d:eb:4e:0b:89:82:57:c8:52:
8d:db:56:4c:0f:64:e8:f4:7f:cf:56:b8:0b:88:a8:
b9:7f:44:ac:ee:6f:d0:0f:6d:87:48:ef:22:e8:7c:
79:c9:a8:91:f3:10:38:54:ce:50:17:07:53:02:59:
97:44:0f:74:7b:fd:b3:bd:57:d6:0f:f0:89:20:b6:
78:f9:6e:d0:01:7e:9c:e3:84:6d:c3:89:5e:02:00:
37:6d:1a:f2:ff:17:66:e4:43:42:a1:40:a4:24:03:
64:7e:ce:ec:c7:c7:ea:1e:43:b5:a4:9c:4c:45:41:
70:74:5e:12:88:8b:6d:31:27:0b:7a:e2:55:f5:23:
aa:99:2d:d6:66:ac:8a:ca:f8:42:42:9e:70:50:d1:
5b:11:1a:b2:7c:77:fa:a8:da:f8:cd:11:b8:79:72:
03:9b:99:16:d8:89:be:22:07:ef:06:7f:4a:2e:0b:
1c:a9:f4:af:8f:05:23:aa:6b:a1:68:86:73:f3:22:
b4:4b:06:7d:a6:04:2d:04:f4:b5:13:52:26:c9:02:
b2:52:d0:15:61:51:97:8d:1c:c1:99:24:59:df:ef:
39:e0:3e:06:4f:01:68:3f:1e:fa:6a:59:a9:b8:88:
b5:08:9e:b8:b5:71:14:72:37:e6:12:96:49:26:9d:
17:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:72:0D:39:29:5C:FC:BD:AF:2C:87:BD:26:3D:AF:EC:80:E0:07:49
X509v3 Authority Key Identifier:
keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:6e:f6:72:d9:85:03:55:de:d3:d8:54:09:20:a7:f7:7b:35:
ab:2a:88:5a:fb:37:81:1f:94:a3:ca:86:ca:29:01:8f:35:76:
f7:cd:93:13:91:cb:fc:ee:68:dd:3c:74:03:61:31:e6:79:8b:
d2:13:99:ac:15:c1:43:e2:07:76:ac:fc:b1:4f:11:8b:1f:ff:
70:66:7c:51:72:35:20:27:c3:25:a3:98:ce:9c:90:d0:13:58:
5f:43:f5:2d:77:fe:0f:d0:94:bc:01:38:8e:c8:64:38:1f:9d:
9f:2c:b5:e4:27:39:00:ca:52:e5:15:d1:d7:81:58:e6:9e:f5:
69:d7:d2:d1:9f:ab:97:6e:0b:42:14:c7:17:03:04:44:41:be:
c5:1a:33:03:fe:3c:42:ae:08:ae:0d:61:8c:47:3e:cc:af:fa:
51:c5:88:bd:c2:a1:97:ca:44:ed:b2:b2:b5:50:70:0e:fb:82:
ad:fd:a4:ee:60:e8:c6:2d:aa:48:8d:ba:f5:81:78:6d:cd:d9:
fc:c9:45:a9:b1:33:b4:79:0f:f4:70:db:29:7e:47:31:bc:f4:
55:fe:2d:5b:b4:36:ca:f8:32:fe:d1:dd:b1:7f:94:39:c2:9e:
f4:21:3c:c6:47:3f:81:a8:fd:53:51:7d:9e:b4:2b:00:45:88:
dc:14:50:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 23:21:08 2025 by rpki-client