Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: kSJUf+ot5E/UuVJtd+BAW6q3ptL86/HLbsjvOAsvTYE=
Subject key identifier: 75:AD:5F:AD:8E:A2:C3:D5:6A:5C:02:9E:F3:73:E9:C5:B6:C7:AA:B8
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 019A526306B63DF39125DB867C717987A396
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0D0B
Signing time: Wed 05 Nov 2025 05:00:12 +0000
Manifest this update: Wed 05 Nov 2025 05:00:12 +0000
Manifest next update: Thu 06 Nov 2025 05:00:12 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: Gc0/KV7gMQIQQESA8U0gfCvIjj7fE2cA0kGN98cPaWc=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:63:06:b6:3d:f3:91:25:db:86:7c:71:79:87:a3:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Nov 5 05:00:12 2025 GMT
Not After : Nov 6 05:00:12 2025 GMT
Subject: CN=75ad5fad8ea2c3d56a5c029ef373e9c5b6c7aab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:93:f5:ea:bc:ce:d4:13:1c:cb:52:e2:2e:77:
92:42:67:6e:87:d4:70:43:68:01:21:7b:90:3f:1b:
0d:e3:70:5a:13:5f:bb:13:f0:1c:2f:70:61:bc:0a:
d9:24:aa:1c:12:23:06:45:f8:2a:de:bb:6a:d4:68:
21:f7:42:46:9c:91:33:27:58:7f:2f:57:7e:d1:d5:
1b:6f:eb:cd:57:d4:fb:cc:7e:ad:d3:36:17:bf:ed:
2d:24:fd:28:42:88:da:d3:e6:4f:50:e5:0b:f8:5e:
7e:d1:29:bf:c3:f2:fe:23:61:ae:08:89:af:8a:85:
86:a2:72:9a:27:59:a1:38:ee:10:fc:98:11:b3:c2:
d9:58:71:d2:be:7e:51:b4:f2:97:95:2f:09:4c:c4:
f2:32:4c:28:c0:89:6f:5e:c8:97:55:60:4d:d3:a5:
11:5a:f9:84:de:6c:a0:9d:e9:ab:51:0f:41:07:db:
5e:8b:9c:9e:77:f8:e2:a8:71:da:c1:fd:3a:c7:cd:
aa:55:ee:d1:e4:a7:c9:7a:c2:99:43:dd:f4:87:b6:
bd:2b:28:f7:8c:be:09:06:84:10:e2:6a:b4:38:03:
dd:57:1f:22:57:cb:68:51:5a:b0:0a:2e:55:59:0b:
01:e3:59:e2:1c:e5:8c:4e:51:85:e2:35:70:27:2f:
5d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AD:5F:AD:8E:A2:C3:D5:6A:5C:02:9E:F3:73:E9:C5:B6:C7:AA:B8
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:4e:89:56:01:ca:74:5a:2d:72:06:2c:c4:93:81:51:ed:38:
64:bd:f0:18:fb:0f:2f:4d:1f:7a:35:37:00:ce:d0:aa:77:9d:
42:17:ea:6a:9e:76:b3:fd:9a:30:ea:e7:99:a0:f9:b5:71:e0:
b8:76:89:30:b5:d1:25:bf:95:08:da:b8:e4:f2:54:17:cf:e5:
df:8f:98:2a:75:81:c9:fb:46:f0:88:55:58:d6:2a:c2:8b:6e:
c4:b5:6a:32:3b:ac:fe:e4:ad:6f:10:ba:55:b7:e2:04:85:c4:
f2:5f:23:ef:0f:ca:f0:52:be:ba:d6:c0:f0:86:80:d9:78:f2:
10:53:ac:55:c4:ef:dd:8f:37:ab:8d:8a:5f:86:7a:34:62:65:
8d:fd:37:6d:1e:02:03:ec:af:ae:ac:69:c8:98:11:4a:2d:a3:
64:fe:84:b6:fa:c7:6e:ec:97:1d:e9:90:d3:cf:8c:37:e7:92:
fc:c7:50:d2:f6:d7:e4:51:26:35:5e:5f:9e:16:ac:1c:4e:6e:
34:f1:cc:30:59:ca:be:33:b8:dc:99:6b:d2:55:65:8b:d5:a1:
bf:08:fd:98:89:b4:59:35:37:c8:e2:44:8c:9b:a9:58:5d:40:
fd:41:d8:c5:17:a5:4c:1f:db:a2:2e:db:5f:73:c5:cc:71:e2:
e3:2b:d2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:45:20 2025 by rpki-client