
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
File: rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft (raw, json)
Hash identifier: 33xSIS+Em+7tVanMIg0W4OzgrPRcdm5X2kMWqKW/BCo=
Subject key identifier: C5:91:15:CD:94:8C:00:B3:03:E4:EC:2D:74:1A:D2:D1:67:3E:10:6A
Authority key identifier: AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
Certificate issuer: /CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Certificate serial: 01988B0EF8E1F9497B7F028228A659ECC09A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
Manifest number: 0B20
Signing time: Fri 08 Aug 2025 19:01:10 +0000
Manifest this update: Fri 08 Aug 2025 19:01:10 +0000
Manifest next update: Sat 09 Aug 2025 19:01:10 +0000
Files and hashes: 1: rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl (hash: wXtHwvzcS8wbfJVivZ68ItYG9kJyGRYwXvzdeRJ71ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0e:f8:e1:f9:49:7b:7f:02:82:28:a6:59:ec:c0:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Validity
Not Before: Aug 8 19:01:10 2025 GMT
Not After : Aug 9 19:01:10 2025 GMT
Subject: CN=c59115cd948c00b303e4ec2d741ad2d1673e106a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7b:2c:fc:54:1d:56:b2:d0:13:7c:c0:32:ed:
e8:73:41:61:93:d3:bf:81:35:18:07:45:84:17:91:
b6:40:4c:07:bd:84:a1:d4:24:42:6e:99:64:c3:cd:
89:f2:9b:4c:36:75:ac:df:65:0a:7a:4e:23:31:3a:
8e:ef:24:a9:05:a2:63:a7:68:82:40:37:7d:5d:b5:
14:a6:15:d9:1e:7f:a1:79:3b:37:04:4b:8d:31:a8:
bd:ee:d4:65:cf:2a:a9:6b:65:42:99:36:c1:15:35:
6c:cc:d6:ad:ac:29:49:27:2e:d6:59:ee:bd:9f:e5:
a5:c1:74:46:70:01:14:25:d5:16:52:9e:a0:31:a4:
a2:3c:9d:3c:ad:46:e4:8b:51:9e:d5:83:27:4e:03:
88:ad:4b:03:0e:f5:76:9a:c4:b0:96:b7:6d:eb:02:
12:61:3f:6b:b7:da:5e:d7:89:f0:90:00:a2:84:1b:
43:43:92:bf:7c:c9:2b:e3:2f:46:11:79:ff:cd:8f:
e9:c8:b8:b8:db:61:df:02:36:8a:6b:29:c4:e4:19:
58:20:4c:9f:f6:af:b9:68:36:48:0e:02:bb:c5:9e:
cf:79:5b:e4:2e:e8:66:54:cd:c8:b2:3d:fb:50:a0:
2f:85:07:91:06:5f:a2:1d:e8:b4:73:99:24:ec:d5:
0e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:91:15:CD:94:8C:00:B3:03:E4:EC:2D:74:1A:D2:D1:67:3E:10:6A
X509v3 Authority Key Identifier:
keyid:AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:7a:f5:76:1b:1f:2f:47:53:4d:08:68:df:1d:b2:0b:fd:42:
55:ad:0b:fb:73:59:43:31:95:44:a7:39:6d:60:86:5f:e2:bd:
fc:dc:e5:68:3e:d4:68:8d:9b:2d:7d:c0:f6:1f:ab:fb:36:c8:
94:89:0f:f3:44:46:07:d2:a6:4a:f0:60:b2:6c:de:32:80:9f:
56:11:e1:63:aa:aa:a0:47:61:2f:b4:7f:ba:b0:df:4f:4a:b7:
4a:9b:08:ae:8f:9a:da:23:ca:f0:3f:24:84:39:3f:49:2b:23:
44:56:93:41:85:59:0d:79:75:a0:81:56:87:f1:85:d7:84:18:
e7:6d:54:5b:56:93:ee:31:60:be:75:83:21:c0:0e:21:7b:23:
f6:67:01:f6:30:8c:d7:bf:72:0d:5b:80:07:af:2c:40:ad:f1:
3e:14:4d:02:25:1e:c9:73:bd:9d:f1:19:17:f5:21:a2:6a:9b:
d7:68:4d:20:ad:65:24:08:b6:a3:8a:85:c9:63:6a:31:c7:fb:
59:ca:6a:29:61:6c:f1:fc:81:93:4f:f8:73:2d:97:4e:90:f0:
28:70:f9:a5:95:1c:a2:b1:f8:40:be:12:73:32:64:53:62:b3:
0c:78:cf:8d:8a:6d:89:49:75:3e:86:50:1b:1d:ee:0b:04:b9:
b6:c8:bf:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLDvjh+Ul7fwKCKKZZ7MCaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlYzVjN2FiNWI3MjE4MWU0ZTQyMTEzMjIyMTVlOTc3NmI0
OTAwZjkwHhcNMjUwODA4MTkwMTEwWhcNMjUwODA5MTkwMTEwWjAzMTEwLwYDVQQD
EyhjNTkxMTVjZDk0OGMwMGIzMDNlNGVjMmQ3NDFhZDJkMTY3M2UxMDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXss/FQdVrLQE3zAMu3oc0Fhk9O/
gTUYB0WEF5G2QEwHvYSh1CRCbplkw82J8ptMNnWs32UKek4jMTqO7ySpBaJjp2iC
QDd9XbUUphXZHn+heTs3BEuNMai97tRlzyqpa2VCmTbBFTVszNatrClJJy7WWe69
n+WlwXRGcAEUJdUWUp6gMaSiPJ08rUbki1Ge1YMnTgOIrUsDDvV2msSwlrdt6wIS
YT9rt9pe14nwkACihBtDQ5K/fMkr4y9GEXn/zY/pyLi422HfAjaKaynE5BlYIEyf
9q+5aDZIDgK7xZ7PeVvkLuhmVM3Isj37UKAvhQeRBl+iHei0c5kk7NUONQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMWRFc2UjACzA+TsLXQa0tFnPhBqMB8GA1UdIwQY
MBaAFK7Fx6tbchgeTkIRMiIV6XdrSQD5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnNYSHExdHlHQjVPUWhFeUloWHBkMnRKQVBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC85ODgxOGQtZjhiMy00NjQ1LTg2YTgt
MzAyZDkyMjI0Y2IyLzEvcnNYSHExdHlHQjVPUWhFeUloWHBkMnRKQVBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC85ODgxOGQtZjhiMy00NjQ1LTg2YTgtMzAyZDkyMjI0Y2Iy
LzEvcnNYSHExdHlHQjVPUWhFeUloWHBkMnRKQVBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw3r1dhsf
L0dTTQho3x2yC/1CVa0L+3NZQzGVRKc5bWCGX+K9/NzlaD7UaI2bLX3A9h+r+zbI
lIkP80RGB9KmSvBgsmzeMoCfVhHhY6qqoEdhL7R/urDfT0q3SpsIro+a2iPK8D8k
hDk/SSsjRFaTQYVZDXl1oIFWh/GF14QY521UW1aT7jFgvnWDIcAOIXsj9mcB9jCM
179yDVuAB68sQK3xPhRNAiUeyXO9nfEZF/Uhomqb12hNIK1lJAi2o4qFyWNqMcf7
WcpqKWFs8fyBk0/4cy2XTpDwKHD5pZUcorH4QL4SczJkU2KzDHjPjYptiUl1PoZQ
Gx3uCwS5tsi/tg==
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:02 2025 by rpki-client