Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
File: 5oClYQES3yA5h_MvDl4VrTXnENI.mft (raw, json)
Hash identifier: ni8X2IGVC8bbrrfEkdKsPKJAV8t4WNEnrNXo2W3AGhM=
Subject key identifier: D3:FB:F1:47:20:30:FB:36:3D:B3:1D:C7:91:66:E4:EF:BC:9D:51:3C
Authority key identifier: E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
Certificate issuer: /CN=e680a5610112df203987f32f0e5e15ad35e710d2
Certificate serial: 019889FC05CBA6A08F6EBC511E44C0AB9B1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
Manifest number: 05FC
Signing time: Fri 08 Aug 2025 14:00:51 +0000
Manifest this update: Fri 08 Aug 2025 14:00:51 +0000
Manifest next update: Sat 09 Aug 2025 14:00:51 +0000
Files and hashes: 1: 5oClYQES3yA5h_MvDl4VrTXnENI.crl (hash: 8qiSm8h1+RbIaLRhyHz8KlmupmY2DeLjIikziFeCuvA=)
2: DhNK6wzjByDnasFkDiVozXApAMA.roa (hash: axPPgHJK+DsZDTes1Z8jvmiFkJ86vZLUMhnI7D0ebHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:fc:05:cb:a6:a0:8f:6e:bc:51:1e:44:c0:ab:9b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e680a5610112df203987f32f0e5e15ad35e710d2
Validity
Not Before: Aug 8 14:00:51 2025 GMT
Not After : Aug 9 14:00:51 2025 GMT
Subject: CN=d3fbf1472030fb363db31dc79166e4efbc9d513c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1c:50:ba:1e:02:04:a3:31:3e:a7:5f:6e:1a:
59:24:d7:17:5c:ab:a4:4c:22:bc:a7:f9:40:0d:d7:
bc:5a:5c:3d:90:af:6a:75:4a:e5:7d:05:59:58:9c:
5e:c2:5d:bf:4b:d4:1b:fe:c5:1e:22:2f:46:d0:08:
60:a3:9b:aa:96:33:6c:83:1f:4f:50:7a:a6:31:c5:
9c:fd:06:e5:cf:4d:2c:fb:25:0b:a7:d6:bb:9c:7f:
6e:51:e1:9d:8b:8a:f8:df:d0:ba:d5:74:18:0f:2c:
70:08:c5:a4:d3:a6:63:87:c1:d3:49:ec:6c:fe:64:
51:78:02:3d:da:39:6b:a1:80:93:7b:9b:02:d8:72:
5b:f3:b1:aa:f8:42:30:d8:09:f5:ad:e3:c3:94:54:
4c:a5:83:01:fd:02:46:5b:b9:79:de:73:8a:66:4d:
08:a1:7b:2c:5a:b2:f1:42:85:f8:b3:ec:7a:c2:64:
32:12:1b:97:a0:dd:38:1e:26:81:db:91:db:55:6c:
65:d8:6f:ae:43:6b:b7:d0:5a:45:dc:f1:4e:39:09:
6b:dc:18:f3:6f:d0:db:1a:7e:52:8c:13:4d:c7:75:
d6:8d:bc:cc:9a:d2:9d:e0:bd:e2:cc:cf:08:ec:c8:
f7:d2:90:8d:a7:35:1e:fd:ba:30:0b:73:93:90:3e:
82:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FB:F1:47:20:30:FB:36:3D:B3:1D:C7:91:66:E4:EF:BC:9D:51:3C
X509v3 Authority Key Identifier:
keyid:E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:78:86:76:d9:c2:c4:79:06:12:a1:1d:5a:7c:6c:13:c5:51:
73:91:45:1e:f2:22:eb:1d:32:23:94:f9:59:5b:5a:fa:c1:01:
16:27:a0:ec:58:aa:f1:83:70:e8:c9:24:3f:4f:db:a9:c8:fc:
f5:f8:38:0d:8c:d6:c6:58:89:72:71:14:17:22:b8:a7:63:20:
a6:84:67:66:1b:25:88:98:de:9b:53:8a:f1:2f:9a:60:bc:86:
42:49:63:33:bc:86:a0:89:ae:08:c9:cc:45:7a:80:60:11:fa:
da:73:79:7c:9c:df:a7:5a:95:a8:b0:f7:ce:dd:3d:c8:15:50:
75:56:ff:8b:4e:9d:e7:ba:6f:8f:aa:b2:c3:fa:50:30:2e:3d:
39:ab:ae:cf:d2:c7:f5:27:cd:71:fb:af:e7:c5:c4:d0:ee:10:
fa:2a:68:25:0c:88:21:68:ed:58:a2:33:c5:d6:61:3c:94:07:
2c:4d:32:7f:70:d2:db:fc:6a:e2:2a:4a:3a:6f:ff:c9:b9:fb:
0d:eb:a6:87:78:9c:d6:37:47:53:6f:25:07:c0:94:90:c3:1e:
4c:c4:04:2e:f1:4b:f5:09:25:93:4e:52:48:30:eb:bd:96:b9:
fa:f5:32:0b:6d:2b:76:ac:05:74:9c:c6:1e:21:8b:93:f0:0d:
8e:5d:3c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:26:17 2025 by rpki-client