Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
File: WzgltIs1me_6oLyBqN3bmPHYAsQ.mft (raw, json)
Hash identifier: fLtuZLOsWdTTyfwjH1EDwoNL725dYTtu/V+V5pUMobA=
Subject key identifier: B6:08:FB:D7:63:46:65:64:C0:B5:A7:DA:3B:14:64:2F:0F:28:A5:12
Authority key identifier: 5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
Certificate issuer: /CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Certificate serial: 019A4D7412769E6556AB61DF759CE2315294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
Manifest number: 169D
Signing time: Tue 04 Nov 2025 06:00:43 +0000
Manifest this update: Tue 04 Nov 2025 06:00:43 +0000
Manifest next update: Wed 05 Nov 2025 06:00:43 +0000
Files and hashes: 1: WzgltIs1me_6oLyBqN3bmPHYAsQ.crl (hash: 2FfyL/1sC7VpolLNDDSfsoRoi0ZfzjfpJCMKm3ZbPw8=)
2: iiZidHMAHkbcf8XyOTt3Z_vw0jE.roa (hash: xKnilsXqPSaJ4FjR+VlNoOzanS4pqyzg7Ofj3A9rVOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:12:76:9e:65:56:ab:61:df:75:9c:e2:31:52:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Validity
Not Before: Nov 4 06:00:43 2025 GMT
Not After : Nov 5 06:00:43 2025 GMT
Subject: CN=b608fbd763466564c0b5a7da3b14642f0f28a512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:41:11:75:c6:fd:2b:48:3d:5b:27:7d:b6:9c:
0a:df:eb:87:af:38:b8:83:b5:03:b5:2a:89:9e:0b:
80:00:1a:45:3b:63:15:25:69:ad:c8:f2:a4:a1:da:
d3:86:9e:74:ed:71:d8:ab:d9:f3:2b:54:bc:72:80:
61:1b:9b:a8:dd:21:64:1d:4c:95:fe:03:5a:82:c0:
8e:3f:4e:2b:47:f9:33:9f:39:1b:a7:1e:2a:0d:28:
d9:da:2c:0d:7a:dd:8f:ae:32:45:c1:f2:30:d6:80:
2b:89:e0:13:e0:fb:8a:0e:2e:25:3a:11:c7:83:3a:
c8:05:0a:a0:f1:a8:4a:63:bb:5f:ef:05:9e:a6:c9:
4f:82:9b:d5:27:e3:d1:42:37:65:e9:4a:0c:38:61:
e4:50:b6:68:d5:38:08:d1:d0:e3:3b:54:6f:d3:82:
16:6c:2d:0b:dc:2b:98:2f:ce:d6:7c:6e:c6:6f:88:
a6:2b:e8:60:18:7c:f1:fc:6c:5f:05:22:c1:9c:aa:
99:42:57:59:d2:ca:8c:85:73:e1:36:bb:ef:c2:5c:
fa:27:d4:3a:e9:a3:7c:29:83:63:32:c4:61:2c:cf:
45:bb:76:e4:d1:5f:d1:3c:85:6b:f5:44:b7:1c:73:
77:ef:ab:1e:89:55:24:f7:39:6c:33:95:86:5f:30:
3d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:08:FB:D7:63:46:65:64:C0:B5:A7:DA:3B:14:64:2F:0F:28:A5:12
X509v3 Authority Key Identifier:
keyid:5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8f:af:3e:ad:64:ca:ef:9e:9b:ba:93:6e:0f:64:ab:32:c0:
09:8b:d7:7e:c7:8d:fc:c1:f3:fe:db:3e:80:60:23:1a:cb:17:
e6:f0:e6:3c:11:4d:21:8a:82:dd:d6:e5:1b:45:fe:63:64:47:
ea:c4:a7:82:5c:e5:94:28:2c:41:f2:73:25:8b:27:0c:c3:6f:
63:c0:31:ee:88:e4:d4:e7:66:96:5c:46:0f:22:6e:cf:2c:39:
03:62:6a:d5:c7:ac:9f:b7:75:f7:ee:e9:61:19:98:b9:32:a9:
82:94:de:f5:06:2a:c3:10:28:bc:6f:d8:0c:a7:6c:e1:8d:ee:
2a:16:77:74:ac:14:da:e8:e3:b0:5d:57:54:24:33:d3:f6:72:
8f:73:40:9c:97:f8:ce:e3:f6:c5:29:31:0a:6c:2d:69:b3:7e:
fb:57:b9:d9:31:56:37:10:63:02:d4:f3:bf:e5:30:8f:0a:03:
a4:87:8c:93:52:63:72:63:ec:1a:6e:23:bf:5e:b5:ce:7c:96:
bd:be:f1:3d:90:11:4f:fd:48:9b:8b:17:e2:d3:50:e1:bb:41:
ec:7e:de:d4:c5:9b:4d:e0:ef:da:4c:78:53:1b:b6:7e:bb:f6:
d0:be:58:5a:e7:74:29:b5:d4:b8:eb:82:fa:15:b0:cf:0e:9b:
2c:0e:85:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:51 2025 by rpki-client