Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
File: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft (raw, json)
Hash identifier: 8d1fqjI71+tHnlCftwxcooNY0fAkF75ao5NVJgnuF/8=
Subject key identifier: 75:99:22:C3:85:25:B7:71:69:04:23:5A:B6:C1:BF:AC:AF:48:77:86
Authority key identifier: AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
Certificate issuer: /CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Certificate serial: 019A4D7465B8A7C74F30A59DF969A430D1A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
Manifest number: 03E9
Signing time: Tue 04 Nov 2025 06:01:05 +0000
Manifest this update: Tue 04 Nov 2025 06:01:05 +0000
Manifest next update: Wed 05 Nov 2025 06:01:05 +0000
Files and hashes: 1: HlRrYVzs80ZJA5_JZ3csPGXIkEY.roa (hash: 2WA22A/U8/r4tDX+UDoYIX+va554GCdeOFSCw5V25j8=)
2: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl (hash: rRCGbsgu7Kutq4huwdd/f7SARG7QGKo8cIOPoerP7KI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:65:b8:a7:c7:4f:30:a5:9d:f9:69:a4:30:d1:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Validity
Not Before: Nov 4 06:01:05 2025 GMT
Not After : Nov 5 06:01:05 2025 GMT
Subject: CN=759922c38525b7716904235ab6c1bfacaf487786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a1:4e:c4:96:82:88:98:5a:96:55:84:9a:02:
09:a8:b8:8b:5c:01:83:ff:c9:82:f4:c2:9c:d1:9c:
52:0e:aa:7d:17:1d:9b:ba:e7:45:fd:2b:c2:5a:18:
4f:e1:44:07:d5:fd:f4:17:58:6c:1b:20:ec:c9:19:
e0:f9:c8:4b:74:96:8c:5c:ef:13:53:51:3f:bb:39:
77:12:5e:0c:74:c7:54:28:9e:ac:4c:7d:45:92:1e:
c6:8d:d2:a4:6d:b1:71:c7:d7:74:5b:15:d1:71:1e:
9b:13:9f:91:9c:bd:70:ff:75:e8:99:03:8f:ba:99:
19:b5:a7:a7:8d:b4:ce:48:74:2d:53:65:e7:61:f9:
a4:07:10:fc:1c:b7:37:3f:0c:b6:b5:a3:63:9e:d4:
12:06:83:d8:c4:76:59:9b:ae:2a:ae:d6:92:f6:52:
fc:8d:03:01:d3:da:6e:17:a8:b4:f0:1e:fb:aa:20:
20:ab:df:14:04:0f:59:5d:4c:96:7b:91:62:c5:e8:
01:2f:56:e8:d4:9e:a2:8f:89:91:4a:ff:23:e1:8b:
c7:76:d9:36:4d:5a:3e:ef:9b:22:34:f5:be:d4:b8:
30:0a:2b:ce:74:0b:46:4f:43:4d:f4:e8:4c:ea:3a:
ef:b2:d3:6e:01:9b:e2:c1:6d:36:c7:02:6d:df:35:
dd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:99:22:C3:85:25:B7:71:69:04:23:5A:B6:C1:BF:AC:AF:48:77:86
X509v3 Authority Key Identifier:
keyid:AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:57:fe:b7:27:a4:97:98:fb:03:65:a8:0d:2b:db:bf:6c:58:
e1:d0:4e:4b:d0:cb:74:d3:8f:5e:87:ee:3b:f2:60:a1:80:b3:
b9:cf:c8:15:b1:06:ee:1c:7b:42:a6:28:30:a7:4b:48:94:dd:
1a:f9:ae:c8:93:fe:37:12:c9:8b:a7:67:4f:61:13:de:e5:ca:
b4:bc:ab:10:b3:94:01:8d:be:20:0a:a1:61:60:47:84:ed:26:
3c:ca:45:c4:48:1f:47:3d:ac:ad:52:e6:f0:d6:98:97:56:47:
15:cc:23:bc:a8:39:25:62:a3:02:74:e1:52:11:38:03:27:8a:
d3:2f:40:1b:11:27:9e:44:5a:09:f6:93:0e:11:88:01:b1:f8:
91:03:f6:a0:3a:ab:cd:b5:e2:fc:e8:7d:fe:d9:f1:10:12:f1:
fe:3f:c8:a2:d1:0b:32:30:ab:a7:e2:60:cf:8e:0e:93:8a:48:
48:18:d4:b2:f5:5f:48:22:78:dc:34:d6:4a:fd:ee:19:d2:4f:
d1:53:e8:96:13:05:9a:6e:2d:9e:17:5d:bb:2b:63:b6:3b:b2:
f8:5c:74:64:44:69:fb:df:cf:91:b5:ec:26:6b:d5:23:0a:13:
a9:bd:f0:8f:74:b8:74:bd:ee:5c:5d:9a:61:d0:1f:ce:96:48:
3b:93:a9:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:49 2025 by rpki-client