Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
File: sQeA3za1uUL2YOQDov5ginXk5X0.mft (raw, json)
Hash identifier: 8EFSjTpvpOTsaQJwymB4U9EpL79DrrJ1H4UtJbQzX4c=
Subject key identifier: 5B:D9:A9:FE:EB:FF:BA:3A:65:5B:49:A3:2E:46:B0:A1:80:AE:DF:7D
Authority key identifier: B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
Certificate issuer: /CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Certificate serial: 019A51BE19CEC765EE3E2C854C4A62ECDB45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
Manifest number: 16A0
Signing time: Wed 05 Nov 2025 02:00:04 +0000
Manifest this update: Wed 05 Nov 2025 02:00:04 +0000
Manifest next update: Thu 06 Nov 2025 02:00:04 +0000
Files and hashes: 1: dc2u-8bkbufd4cw_d9F3xDaopuc.roa (hash: Umyl5IxYyTMcYEGSrVHWEMRSVhNtzrLiUEYgvIObXig=)
2: sQeA3za1uUL2YOQDov5ginXk5X0.crl (hash: O48A39KmslL9mH9ucxyi3Do+ur0Jo+Xu9ywaP/RY/Pg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:19:ce:c7:65:ee:3e:2c:85:4c:4a:62:ec:db:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Validity
Not Before: Nov 5 02:00:04 2025 GMT
Not After : Nov 6 02:00:04 2025 GMT
Subject: CN=5bd9a9feebffba3a655b49a32e46b0a180aedf7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:42:95:50:60:1e:1c:b5:61:f6:ac:b9:db:ee:
ee:e6:6f:ce:9c:9b:40:62:78:f2:57:a0:6c:f8:2f:
9a:9d:38:4d:30:8d:8a:b8:5b:2a:9c:f4:78:5d:bd:
0b:e2:73:73:b0:de:07:da:c2:0b:62:57:82:c5:01:
66:f8:e3:41:59:96:b1:9b:14:80:07:28:fc:36:97:
0b:d4:76:fe:94:78:18:e8:2e:52:1c:48:56:52:6c:
ad:d8:fc:e0:71:09:7c:49:ed:3f:dc:10:d1:2a:f4:
03:ae:d8:e1:f2:a2:4f:ae:d7:a5:c5:ec:ec:66:c4:
61:f6:1a:b8:40:8b:45:0d:30:e1:06:eb:7b:53:94:
89:bd:1b:4c:d3:71:71:71:ec:83:21:a5:56:21:6c:
45:bd:5b:15:97:64:7a:6a:f5:6b:9f:ee:d3:f7:a0:
f9:a7:93:8c:c6:62:e1:75:f3:68:8e:e0:85:66:c9:
8c:37:ac:36:0b:d8:39:f4:7f:d1:35:03:f3:ca:9b:
5d:83:f9:e6:c3:c6:a7:eb:ae:6a:e3:cf:bd:2e:20:
36:07:57:69:60:59:cc:f0:85:2c:da:e7:0e:4b:4d:
a8:96:14:3e:f5:83:27:80:51:68:1a:c1:a9:91:ef:
71:10:b5:cf:55:f7:13:91:c7:c6:dd:cb:50:da:7b:
c1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D9:A9:FE:EB:FF:BA:3A:65:5B:49:A3:2E:46:B0:A1:80:AE:DF:7D
X509v3 Authority Key Identifier:
keyid:B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:b4:99:20:5e:58:67:84:5d:18:b0:ac:92:dc:0f:f8:bf:03:
9e:0d:78:3b:2b:45:c1:61:55:e2:22:92:de:4e:60:d4:8f:5e:
64:aa:5e:7f:d4:e3:65:bd:5a:d7:7e:96:6f:1b:53:05:9e:d2:
5d:4c:43:18:f9:71:f3:f5:ed:22:1f:3a:42:c3:cf:bd:83:55:
d1:a3:39:8e:68:26:18:65:4e:be:4d:47:31:b3:08:d3:a8:fb:
b7:ff:98:cf:26:89:68:cd:e5:af:c0:72:ca:bb:c8:82:1e:67:
88:a0:4f:3d:90:2f:75:34:eb:f3:56:8d:37:2a:8d:78:e0:18:
4a:ea:33:01:cf:0e:96:66:99:55:9f:86:b4:8b:d1:28:b9:7c:
3f:49:96:51:13:c7:7a:10:f1:8e:7d:70:15:50:9c:d2:f1:a0:
84:bc:83:5e:fb:66:25:5e:1a:22:e9:8b:3f:e7:cd:51:aa:e6:
7c:ea:44:05:7d:29:48:1b:29:05:b4:eb:46:55:fa:78:a8:d7:
f0:78:06:32:31:11:6f:c9:d3:9f:17:29:1e:f2:8b:ce:36:49:
f8:93:e9:8a:c3:9e:e7:cc:ad:c2:6d:c5:61:81:ae:ae:ca:ba:
1a:91:b4:e7:d0:77:97:7f:3f:88:98:3c:3e:82:1c:53:20:19:
30:f7:25:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 04:38:25 2025 by rpki-client