Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
File: 5oClYQES3yA5h_MvDl4VrTXnENI.mft (raw, json)
Hash identifier: 7ut0vLYLeDw/Gc6WHlbd582v9g14ejec34WiY/Kauy0=
Subject key identifier: F5:5C:FE:A0:DF:29:5E:A3:1F:F0:B3:9F:89:33:C5:06:20:F3:61:38
Authority key identifier: E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
Certificate issuer: /CN=e680a5610112df203987f32f0e5e15ad35e710d2
Certificate serial: 019A4DE1655E61805FCE9C3638C85D1160A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
Manifest number: 06E6
Signing time: Tue 04 Nov 2025 08:00:08 +0000
Manifest this update: Tue 04 Nov 2025 08:00:08 +0000
Manifest next update: Wed 05 Nov 2025 08:00:08 +0000
Files and hashes: 1: 5oClYQES3yA5h_MvDl4VrTXnENI.crl (hash: yKzxyzbawPiWp8sg+F6CANQabJXU3DI9VKfvbv5sPFE=)
2: DhNK6wzjByDnasFkDiVozXApAMA.roa (hash: axPPgHJK+DsZDTes1Z8jvmiFkJ86vZLUMhnI7D0ebHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:65:5e:61:80:5f:ce:9c:36:38:c8:5d:11:60:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e680a5610112df203987f32f0e5e15ad35e710d2
Validity
Not Before: Nov 4 08:00:08 2025 GMT
Not After : Nov 5 08:00:08 2025 GMT
Subject: CN=f55cfea0df295ea31ff0b39f8933c50620f36138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:02:2c:eb:cc:14:5c:36:9e:f9:58:88:89:c2:
c1:d3:1f:0d:a6:3b:ab:49:f8:b0:ca:9e:e3:4f:ce:
a7:9f:8b:a1:e2:8e:c8:87:4e:47:5f:97:52:f5:20:
33:b6:45:ab:85:ae:5f:3d:34:c7:7d:91:12:03:a9:
6f:01:bd:c0:61:79:8a:82:8e:db:17:ca:45:47:40:
ac:8e:c8:d2:a8:36:3a:2c:8d:17:01:b8:76:11:09:
1e:c8:30:33:dc:ac:69:15:04:00:c9:5a:61:9d:47:
6e:b3:e9:bc:16:e9:44:42:9a:b0:7d:9e:0a:6d:80:
9a:91:43:f2:c8:21:79:5d:09:4c:de:d4:be:ec:2a:
5d:ad:4f:d4:5c:10:de:97:ad:ed:5d:42:92:ae:d0:
48:58:c5:96:4e:d7:9c:30:c6:91:7b:af:17:1d:5f:
18:f6:f6:cf:8e:62:dc:38:0e:68:50:b8:80:1a:45:
af:a3:ff:a8:57:11:70:1d:44:1d:66:50:69:d6:ed:
af:97:92:c5:a0:5f:1a:97:21:a3:f9:51:8a:09:6b:
22:d5:da:3e:08:1a:9e:f8:b2:07:a2:86:ac:bf:f8:
30:2b:8d:a2:97:25:3e:84:7a:0b:58:b1:3f:c5:a8:
87:e5:e0:1a:38:54:77:07:e9:02:08:9e:f5:63:7d:
70:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5C:FE:A0:DF:29:5E:A3:1F:F0:B3:9F:89:33:C5:06:20:F3:61:38
X509v3 Authority Key Identifier:
keyid:E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ef:61:8a:53:3c:2d:b8:b8:2b:0d:46:a4:07:82:2a:42:74:
f2:4b:49:c6:0e:2b:dd:07:af:29:bf:fd:c2:e8:68:27:1b:ed:
9b:5f:0d:6b:dc:89:b4:af:26:f0:76:20:b4:e9:47:05:4f:57:
a3:44:24:d2:aa:9f:0e:a7:41:9a:d4:52:87:e1:f8:0a:3a:37:
94:73:db:1d:a7:6f:4b:82:18:02:aa:63:b5:ae:28:b6:63:cd:
78:a9:b1:ba:af:ff:af:bc:27:32:60:1f:ee:c7:c8:5c:0a:27:
f1:9f:b9:4e:f8:6f:19:81:4b:d8:9f:44:bc:83:25:ae:4d:5c:
f8:9f:1b:51:5a:b1:27:0f:6f:a1:c3:2c:21:79:8b:0f:98:45:
37:aa:2f:73:89:96:bd:ce:e6:3d:dc:f7:06:54:16:6f:65:f0:
9e:b8:e5:13:13:d6:39:3f:c3:84:e7:bb:01:3a:81:8a:2b:cf:
18:28:9f:bb:89:3e:3a:f3:f6:10:14:a5:ec:8b:db:b0:fd:29:
f5:30:19:e2:eb:1d:d5:55:3b:e8:c0:5f:18:3a:2c:0a:1a:72:
88:92:b9:ac:8e:34:44:3b:87:51:7f:08:47:21:ac:90:b9:e5:
15:00:3b:f5:78:33:1b:5b:82:b3:b3:7b:f2:89:d9:db:15:5d:
6e:5f:43:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:09:34 2025 by rpki-client