Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
File: v5gt73eibXzBlHOzpAZNzFIX5HE.mft (raw, json)
Hash identifier: kHcjCXp1OTs+9mZ8WK4vFbseI/FPERRS+d8UXww6GWk=
Subject key identifier: 1D:90:5B:DA:62:43:1E:A6:FA:81:25:61:CD:87:02:54:73:08:84:50
Authority key identifier: BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
Certificate issuer: /CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Certificate serial: 019A4DE1CF6B0B328EC3E09B28B8438B8932
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 08:00:35 +0000
Manifest this update: Tue 04 Nov 2025 08:00:35 +0000
Manifest next update: Wed 05 Nov 2025 08:00:35 +0000
Files and hashes: 1: JoXkjArh1eQOEzJmDg5eyKhlAZU.roa (hash: IpnTumi25Jm35YnmbE0mTeFwDsMDbPll4BvRMHinz6I=)
2: v5gt73eibXzBlHOzpAZNzFIX5HE.crl (hash: KoE1Ekj3oy5wJsYsZkLJy/CsYggWpBjTos98piQAb+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:cf:6b:0b:32:8e:c3:e0:9b:28:b8:43:8b:89:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Validity
Not Before: Nov 4 08:00:35 2025 GMT
Not After : Nov 5 08:00:35 2025 GMT
Subject: CN=1d905bda62431ea6fa812561cd87025473088450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:43:83:5a:5e:59:38:51:6e:c6:c8:08:9e:8b:
8b:df:5a:0c:4f:a7:de:6e:47:f2:f2:72:5f:c1:f8:
77:e6:df:1a:65:b9:21:34:d3:25:2a:99:c6:60:35:
c2:57:09:6d:67:42:4f:97:d6:f3:57:ed:23:10:2a:
c2:78:3a:f2:63:1b:d8:40:4a:0b:eb:db:60:a7:b8:
1b:12:82:d5:59:33:69:ea:84:90:df:2b:98:85:e2:
a8:39:73:06:f6:d7:5d:e8:32:53:c7:4c:e2:65:3e:
a2:c9:36:7f:ae:a2:0a:79:e7:00:b6:c6:0c:91:36:
f4:4e:a2:b1:20:76:c2:7c:f5:9e:96:6a:55:64:c6:
35:a0:41:67:6d:78:20:74:51:ff:7f:65:1f:04:f1:
fd:6e:bd:97:03:62:26:9c:8a:d4:6e:04:f1:c9:3a:
f4:b8:5e:22:64:07:9e:d3:95:b8:50:a3:63:8b:32:
83:05:1f:f4:ba:63:90:2e:22:7a:07:df:28:e2:29:
3c:d2:ad:bc:d1:c5:95:17:fb:4a:f4:63:d6:e3:52:
4b:d8:86:ac:5b:5a:26:ba:12:3f:e2:83:0b:60:83:
a2:43:6d:27:88:86:5e:e2:37:2a:9d:e8:bd:0e:a2:
bd:cf:3e:68:7e:5f:64:a3:d6:0b:91:ff:a5:21:eb:
65:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:90:5B:DA:62:43:1E:A6:FA:81:25:61:CD:87:02:54:73:08:84:50
X509v3 Authority Key Identifier:
keyid:BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:b0:20:6c:df:a5:92:69:dc:39:36:0a:73:f8:da:23:23:5a:
32:8a:a3:da:c1:f1:41:b5:b0:94:73:c5:ff:37:12:79:bd:54:
7a:3f:01:fc:76:d2:22:4a:75:cc:1c:f5:5a:82:a7:89:27:da:
3f:0e:57:fa:1a:2a:27:96:e1:38:d5:d5:68:b5:86:ec:82:8b:
f1:e8:b5:77:95:93:b8:e6:2b:b0:df:c4:57:98:a6:1a:19:2b:
d8:01:4c:13:ab:30:a8:5f:d1:c8:be:e4:3e:2e:73:e3:fb:09:
bc:84:fc:4b:2e:88:d2:ab:86:ee:73:52:7a:ac:34:89:7b:4e:
4d:1c:ff:f4:bc:86:27:58:3c:1e:2c:bb:3a:5c:62:f8:c6:f7:
08:ea:b9:bf:49:c9:2a:53:b2:eb:64:4a:ff:a1:d3:d3:11:27:
de:db:9d:bf:39:1b:44:e8:ad:ac:69:48:44:92:d6:bf:cd:4a:
6e:81:bf:39:6c:17:93:03:99:89:a0:02:08:d6:b9:55:7d:08:
c2:02:2a:a8:db:a3:84:73:09:f0:69:98:c5:0c:cf:0f:17:d8:
f5:62:aa:ab:04:c8:a5:99:fd:39:27:08:a2:8c:24:9e:48:45:
cb:cc:a3:ce:02:fe:2e:7e:1d:c8:50:29:f4:7c:6e:6f:72:41:
25:07:cf:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:00:46 2025 by rpki-client