Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft
File: rSzoJufkLt3WnfrTpZqbmqTigYM.mft (raw, json)
Hash identifier: Xe4e9VPJVrEM+QjXujBrR7LH5762thV5UisgDjuEQEo=
Subject key identifier: F1:D1:14:2A:9D:BE:D2:B9:98:9B:8D:A2:34:50:9E:35:74:60:7E:40
Authority key identifier: AD:2C:E8:26:E7:E4:2E:DD:D6:9D:FA:D3:A5:9A:9B:9A:A4:E2:81:83
Certificate issuer: /CN=ad2ce826e7e42eddd69dfad3a59a9b9aa4e28183
Certificate serial: 019893DB2ACA608AFAB1A5CC58310F36565A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSzoJufkLt3WnfrTpZqbmqTigYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft
Manifest number: 1523
Signing time: Sun 10 Aug 2025 12:01:10 +0000
Manifest this update: Sun 10 Aug 2025 12:01:10 +0000
Manifest next update: Mon 11 Aug 2025 12:01:10 +0000
Files and hashes: 1: rSzoJufkLt3WnfrTpZqbmqTigYM.crl (hash: sKr+VTTNwD7a75m7nyLz+lPN3Nmp36faHK+CtMZs4Jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rSzoJufkLt3WnfrTpZqbmqTigYM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 12:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:db:2a:ca:60:8a:fa:b1:a5:cc:58:31:0f:36:56:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad2ce826e7e42eddd69dfad3a59a9b9aa4e28183
Validity
Not Before: Aug 10 12:01:10 2025 GMT
Not After : Aug 11 12:01:10 2025 GMT
Subject: CN=f1d1142a9dbed2b9989b8da234509e3574607e40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ca:a5:90:98:0d:29:c6:10:06:65:21:50:e9:
f4:44:be:8c:e9:ab:98:bd:fa:1e:34:49:ab:10:b9:
66:4b:e1:73:1d:41:5e:ca:4c:4b:7c:61:60:0c:7f:
d3:a8:fc:60:37:7f:75:d8:57:d7:ce:fa:7c:5c:c3:
1f:4e:ad:c7:92:14:49:76:1c:26:de:c8:37:51:67:
94:79:73:a0:a0:c3:4b:17:69:a4:1d:62:92:dc:c4:
1c:3c:aa:f2:0d:a6:79:db:ca:e8:05:61:f1:43:1c:
a9:f6:bd:29:8d:78:b9:73:9d:e0:99:7a:c4:d3:1c:
83:43:75:51:15:b5:a6:b7:6c:99:cc:22:e9:e5:84:
c6:61:1a:bf:03:33:63:4d:a2:65:4c:0d:5b:80:4d:
24:f6:b2:f2:bd:93:4c:b4:ec:d7:1e:e5:65:2a:61:
7e:61:7f:2d:11:94:aa:04:d2:98:b0:55:01:d8:85:
de:11:f2:2c:6d:82:6c:a3:98:f6:91:fd:13:6d:28:
8c:23:e5:a2:18:20:19:c4:76:a2:e1:31:8f:73:fe:
5f:34:30:3f:3e:29:3c:b3:92:95:71:b8:e5:db:43:
19:04:1d:bc:98:3b:1a:4b:7d:7f:33:ce:1b:e5:85:
6f:a3:e1:b1:98:95:ec:00:5e:bc:1b:b3:04:11:a8:
ff:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D1:14:2A:9D:BE:D2:B9:98:9B:8D:A2:34:50:9E:35:74:60:7E:40
X509v3 Authority Key Identifier:
keyid:AD:2C:E8:26:E7:E4:2E:DD:D6:9D:FA:D3:A5:9A:9B:9A:A4:E2:81:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSzoJufkLt3WnfrTpZqbmqTigYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:4d:c3:0f:bf:a7:4f:33:c5:e1:18:83:9e:32:c7:d5:91:d0:
95:e1:62:65:0f:d1:18:5e:fa:b3:30:a3:ff:9a:19:cd:47:f9:
16:73:54:14:5e:b8:50:a8:c2:e3:06:b7:4d:e8:f3:f4:dc:07:
c1:5c:f9:6e:b1:fc:d4:b7:73:a0:99:9a:b9:0d:82:39:a3:a2:
a6:40:03:91:cd:bb:3a:1b:e0:06:cb:f0:4e:ba:8b:b8:ed:4c:
84:8c:a7:ec:15:26:09:78:c4:f3:f0:01:59:b1:c2:ee:61:dc:
2f:6e:a3:4a:39:eb:09:46:65:97:ee:08:a4:ba:89:f8:8d:cf:
03:d0:61:ae:2a:f4:64:c9:11:f0:6b:53:cf:6d:10:83:c9:35:
10:b9:19:6c:96:38:90:67:92:af:6c:4a:bb:0c:7a:9e:25:4b:
d5:ab:cb:8f:19:a4:43:04:e6:0d:35:c6:fd:dc:a1:67:db:4d:
94:fb:76:91:b2:4b:ea:c6:87:e9:45:c1:e0:29:d7:26:92:28:
b6:8e:c3:77:9d:36:76:f3:9f:32:e8:6b:28:68:2c:bf:dc:31:
f6:e2:64:b7:40:72:c8:4d:3b:49:2c:91:f6:4b:e2:91:fd:bb:
75:ee:ec:69:10:f1:2f:9a:33:c7:24:26:02:4c:ed:bf:4e:da:
2e:96:0c:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiT2yrKYIr6saXMWDEPNlZaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMmNlODI2ZTdlNDJlZGRkNjlkZmFkM2E1OWE5YjlhYTRl
MjgxODMwHhcNMjUwODEwMTIwMTEwWhcNMjUwODExMTIwMTEwWjAzMTEwLwYDVQQD
EyhmMWQxMTQyYTlkYmVkMmI5OTg5YjhkYTIzNDUwOWUzNTc0NjA3ZTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMqlkJgNKcYQBmUhUOn0RL6M6auY
vfoeNEmrELlmS+FzHUFeykxLfGFgDH/TqPxgN3912FfXzvp8XMMfTq3HkhRJdhwm
3sg3UWeUeXOgoMNLF2mkHWKS3MQcPKryDaZ528roBWHxQxyp9r0pjXi5c53gmXrE
0xyDQ3VRFbWmt2yZzCLp5YTGYRq/AzNjTaJlTA1bgE0k9rLyvZNMtOzXHuVlKmF+
YX8tEZSqBNKYsFUB2IXeEfIsbYJso5j2kf0TbSiMI+WiGCAZxHai4TGPc/5fNDA/
Pik8s5KVcbjl20MZBB28mDsaS31/M84b5YVvo+GxmJXsAF68G7MEEaj/MwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPHRFCqdvtK5mJuNojRQnjV0YH5AMB8GA1UdIwQY
MBaAFK0s6Cbn5C7d1p3606Wam5qk4oGDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclN6b0p1ZmtMdDNXbmZyVHBacWJtcVRpZ1lNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iZWM1NjMtNTgxZS00OWU0LTljYzct
YTgzYThkNTMzMjc1LzEvclN6b0p1ZmtMdDNXbmZyVHBacWJtcVRpZ1lNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9iZWM1NjMtNTgxZS00OWU0LTljYzctYTgzYThkNTMzMjc1
LzEvclN6b0p1ZmtMdDNXbmZyVHBacWJtcVRpZ1lNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGE3DD7+n
TzPF4RiDnjLH1ZHQleFiZQ/RGF76szCj/5oZzUf5FnNUFF64UKjC4wa3Tejz9NwH
wVz5brH81LdzoJmauQ2COaOipkADkc27OhvgBsvwTrqLuO1MhIyn7BUmCXjE8/AB
WbHC7mHcL26jSjnrCUZll+4IpLqJ+I3PA9Bhrir0ZMkR8GtTz20Qg8k1ELkZbJY4
kGeSr2xKuwx6niVL1avLjxmkQwTmDTXG/dyhZ9tNlPt2kbJL6saH6UXB4CnXJpIo
to7Dd502dvOfMuhrKGgsv9wx9uJkt0ByyE07SSyR9kvikf27de7saRDxL5ozxyQm
Akztv07aLpYM5A==
-----END CERTIFICATE-----
Generated at Sun Aug 10 20:59:47 2025 by rpki-client