Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
File: v5gt73eibXzBlHOzpAZNzFIX5HE.mft (raw, json)
Hash identifier: 53zQs0mGQ0PPXMtShFz43nMjCgPksVTsJ7Sf7QHoWm8=
Subject key identifier: 25:D0:B7:9F:4F:16:72:31:E1:77:49:E8:0A:77:4E:A3:51:FC:13:9D
Authority key identifier: BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
Certificate issuer: /CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Certificate serial: 01988BEA8EA785135DF12EE0F91306DD22DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
Manifest number: 1624
Signing time: Fri 08 Aug 2025 23:01:01 +0000
Manifest this update: Fri 08 Aug 2025 23:01:01 +0000
Manifest next update: Sat 09 Aug 2025 23:01:01 +0000
Files and hashes: 1: JoXkjArh1eQOEzJmDg5eyKhlAZU.roa (hash: IpnTumi25Jm35YnmbE0mTeFwDsMDbPll4BvRMHinz6I=)
2: v5gt73eibXzBlHOzpAZNzFIX5HE.crl (hash: SeTy4PKW44uR8M+YNYEpzrgQFO9NpjCu3iHwrv1xxKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:8e:a7:85:13:5d:f1:2e:e0:f9:13:06:dd:22:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Validity
Not Before: Aug 8 23:01:01 2025 GMT
Not After : Aug 9 23:01:01 2025 GMT
Subject: CN=25d0b79f4f167231e17749e80a774ea351fc139d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6b:98:45:d7:25:c1:86:99:6a:b4:e1:1f:25:
c9:b0:d8:36:4b:75:ee:f5:7f:62:81:f8:72:64:26:
46:09:b3:75:0e:04:e8:cc:c2:82:b6:09:c0:a2:94:
0b:bd:e7:c3:f9:94:b8:c1:7e:dd:26:d8:61:2d:b6:
fb:b3:a3:84:85:07:f0:1c:68:15:93:d8:40:26:5c:
88:a2:b4:0b:4f:78:30:e0:03:ac:0e:57:d9:38:b8:
a3:50:79:87:12:a2:41:91:b0:cf:7a:80:64:82:cc:
50:55:55:3b:58:8c:53:37:80:8d:d7:f7:60:39:a8:
a5:c8:db:d4:5f:d7:a7:b2:79:30:67:ac:7a:c3:d9:
1c:94:e7:f3:92:aa:c2:3c:30:4d:d0:66:d9:05:80:
f1:ac:56:5d:fe:b5:42:7a:44:3e:c6:4d:ac:4d:11:
29:87:fd:98:d9:e8:5e:0d:2b:2d:e4:6b:4d:ef:91:
6b:54:8e:5a:88:3a:25:6f:55:4a:9a:3a:ab:2f:29:
68:fe:ec:3f:95:f4:37:04:bb:f6:9b:56:b6:08:bc:
85:70:66:8f:0c:80:3c:d3:ad:3b:f7:0b:6f:d2:40:
7e:81:b2:55:67:ab:e5:31:09:79:25:a8:f2:4b:b7:
ba:35:2e:e4:10:6c:ef:d8:51:d9:d4:e3:e6:2d:70:
82:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D0:B7:9F:4F:16:72:31:E1:77:49:E8:0A:77:4E:A3:51:FC:13:9D
X509v3 Authority Key Identifier:
keyid:BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:8d:8a:25:0f:c8:31:c3:58:f2:bb:4b:b4:6d:6b:c8:a3:51:
7c:4c:19:9f:d7:1f:80:05:5d:ce:d1:29:24:91:0b:10:e5:49:
e6:13:af:12:37:c0:58:a6:de:ad:7f:66:de:b4:4c:b9:05:9e:
b7:53:a9:5b:7e:d4:f4:89:55:42:65:8c:96:17:f7:9e:93:07:
d2:55:c7:43:41:a8:67:17:23:ea:af:71:b4:5b:18:13:c0:76:
ae:f4:a4:4b:e8:5c:15:14:47:35:b7:3c:94:a6:47:30:05:98:
39:80:ab:53:1c:06:3b:a1:07:7b:d5:c2:5a:dc:44:d5:54:b6:
68:a8:bc:65:61:92:d7:d0:92:98:11:0a:06:ea:66:b0:a7:84:
b9:7c:77:ca:dc:e1:e7:8c:46:08:0f:11:32:c7:6b:11:67:65:
94:a3:00:26:d1:2a:38:dc:77:96:33:2b:cc:61:ca:77:ae:c3:
12:7d:c2:2b:83:2c:0a:f7:98:be:f3:0d:f3:6e:59:c7:97:55:
75:89:2b:5c:4e:2e:b7:f8:87:14:1f:8c:86:fb:b4:ef:2b:26:
dd:71:0d:26:5c:22:7c:14:bd:a5:26:17:7b:41:6e:54:74:26:
9a:1d:1c:78:9a:fd:5b:99:79:98:1b:16:bf:1c:e4:2a:f0:cf:
c2:c1:64:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:36 2025 by rpki-client