
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
File: 5fmFqUAlRIkU3qoXQiBzBDklE90.mft (raw, json)
Hash identifier: d/9AxRqwnKVYlg5CZ4vgATNFAP9yzQy6Y1BIxUT6pA4=
Subject key identifier: CF:B8:10:5A:97:57:F6:23:00:9F:C2:FA:D0:DE:36:95:28:78:17:1D
Authority key identifier: E5:F9:85:A9:40:25:44:89:14:DE:AA:17:42:20:73:04:39:25:13:DD
Certificate issuer: /CN=e5f985a94025448914deaa1742207304392513dd
Certificate serial: 01987D8B21B6E104326996E15CF29C2253C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5fmFqUAlRIkU3qoXQiBzBDklE90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
Manifest number: 01ED
Signing time: Wed 06 Aug 2025 04:02:06 +0000
Manifest this update: Wed 06 Aug 2025 04:02:06 +0000
Manifest next update: Thu 07 Aug 2025 04:02:06 +0000
Files and hashes: 1: 5fmFqUAlRIkU3qoXQiBzBDklE90.crl (hash: oUoRlWYOW0UJ/i3hr2DtSJjM8Y8KXVTVcwJ3J5vhTLI=)
2: nAZJBZ6VvJoN3Mjanp3D7Pbl_-s.roa (hash: toI1tT2hR8zRYJnuO8W3FR+ZELFSDV5ej6CQ6AsxKnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
rsync://rpki.ripe.net/repository/DEFAULT/5fmFqUAlRIkU3qoXQiBzBDklE90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:21:b6:e1:04:32:69:96:e1:5c:f2:9c:22:53:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5f985a94025448914deaa1742207304392513dd
Validity
Not Before: Aug 6 04:02:06 2025 GMT
Not After : Aug 7 04:02:06 2025 GMT
Subject: CN=cfb8105a9757f623009fc2fad0de36952878171d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:21:b5:75:9d:e3:5a:a9:81:ee:02:53:9e:5e:
6a:71:cb:0b:75:52:ff:ea:06:34:64:eb:e5:ba:0b:
35:2c:b6:31:36:5d:6e:2b:fc:74:0e:9a:2e:77:3b:
a1:3a:06:c5:d8:85:73:cd:59:7b:15:55:ee:d7:39:
09:6b:3e:4a:29:09:23:e2:5e:cd:25:87:88:e1:1b:
dc:80:f8:92:bb:0b:72:40:8e:5d:b3:ff:58:70:cb:
f9:d8:b5:b0:17:e1:2e:59:02:99:37:c1:22:b8:61:
9e:13:6e:70:9d:15:b8:5e:2e:d4:4f:d0:63:ac:6c:
06:da:d7:9c:ec:d2:41:6f:7f:3d:00:9d:47:53:d9:
be:20:6f:3d:c3:c7:9a:3d:a9:05:41:48:d8:36:2d:
74:48:80:cb:0e:36:1f:3a:ed:cf:ec:c4:86:c1:04:
6b:e7:7b:f1:9e:00:1f:20:4f:b2:ac:12:d5:a9:f4:
e3:bc:71:3f:7f:78:65:e3:37:ce:56:31:23:af:d8:
17:a0:94:33:8b:5c:0e:53:e9:31:ec:bd:9a:1d:f5:
7c:30:d8:c6:bb:15:e0:35:6e:c1:1f:da:f2:54:8b:
03:12:28:90:94:e8:16:1e:dd:43:bd:b6:ad:07:76:
22:9b:22:57:98:ca:78:e3:0b:4c:6f:4f:36:5f:54:
18:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B8:10:5A:97:57:F6:23:00:9F:C2:FA:D0:DE:36:95:28:78:17:1D
X509v3 Authority Key Identifier:
keyid:E5:F9:85:A9:40:25:44:89:14:DE:AA:17:42:20:73:04:39:25:13:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5fmFqUAlRIkU3qoXQiBzBDklE90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ef:77:a9:d7:3c:fc:59:5c:8b:06:0a:cd:93:94:35:ba:00:
e0:39:d8:cf:a1:39:31:49:f8:54:e5:58:2c:f6:bf:79:85:b6:
09:65:89:04:f0:3e:e0:f3:4d:30:0e:cf:8a:a8:c8:ba:c3:fe:
47:93:51:47:64:08:4c:3d:c5:6f:69:13:fe:6b:bd:c0:bc:af:
34:94:20:85:6b:a1:ac:01:93:65:70:f3:f2:1a:ca:cd:41:92:
34:4f:22:30:32:ee:0d:48:84:b5:9f:33:9c:d1:33:8a:70:cf:
10:19:25:30:ec:6a:fb:e7:ff:ff:e0:89:45:94:fc:94:dc:0a:
74:c3:0f:45:8b:77:65:c9:26:60:10:d8:72:ba:0c:4d:0c:3e:
26:15:c4:2a:cb:38:60:a5:38:37:d3:6c:f7:92:55:e7:05:61:
db:b8:32:9b:01:6e:9a:5c:76:89:4c:aa:fd:87:47:a7:7d:88:
a5:66:21:10:37:c3:d5:3d:95:80:0f:b7:bc:a9:17:2b:ae:85:
bf:5a:d4:39:e7:88:0c:5e:48:ed:bc:2c:95:40:d2:b0:5c:56:
17:c1:8a:ce:ae:f7:21:91:d3:f5:21:68:d5:e8:fc:d8:9a:58:
b7:30:a9:98:ac:78:9f:f9:48:74:86:da:65:45:eb:ff:c6:4f:
e7:c5:99:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9iyG24QQyaZbhXPKcIlPCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1Zjk4NWE5NDAyNTQ0ODkxNGRlYWExNzQyMjA3MzA0Mzky
NTEzZGQwHhcNMjUwODA2MDQwMjA2WhcNMjUwODA3MDQwMjA2WjAzMTEwLwYDVQQD
EyhjZmI4MTA1YTk3NTdmNjIzMDA5ZmMyZmFkMGRlMzY5NTI4NzgxNzFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiG1dZ3jWqmB7gJTnl5qccsLdVL/
6gY0ZOvlugs1LLYxNl1uK/x0DpoudzuhOgbF2IVzzVl7FVXu1zkJaz5KKQkj4l7N
JYeI4RvcgPiSuwtyQI5ds/9YcMv52LWwF+EuWQKZN8EiuGGeE25wnRW4Xi7UT9Bj
rGwG2tec7NJBb389AJ1HU9m+IG89w8eaPakFQUjYNi10SIDLDjYfOu3P7MSGwQRr
53vxngAfIE+yrBLVqfTjvHE/f3hl4zfOVjEjr9gXoJQzi1wOU+kx7L2aHfV8MNjG
uxXgNW7BH9ryVIsDEiiQlOgWHt1DvbatB3YimyJXmMp44wtMb082X1QYwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM+4EFqXV/YjAJ/C+tDeNpUoeBcdMB8GA1UdIwQY
MBaAFOX5halAJUSJFN6qF0IgcwQ5JRPdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWZtRnFVQWxSSWtVM3FvWFFpQnpCRGtsRTkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9iYTFjOTctMGU1Ni00ODQwLWI2MTMt
YjM2MWEyYzQ1N2M0LzEvNWZtRnFVQWxSSWtVM3FvWFFpQnpCRGtsRTkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS9iYTFjOTctMGU1Ni00ODQwLWI2MTMtYjM2MWEyYzQ1N2M0
LzEvNWZtRnFVQWxSSWtVM3FvWFFpQnpCRGtsRTkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUO93qdc8
/FlciwYKzZOUNboA4DnYz6E5MUn4VOVYLPa/eYW2CWWJBPA+4PNNMA7PiqjIusP+
R5NRR2QITD3Fb2kT/mu9wLyvNJQghWuhrAGTZXDz8hrKzUGSNE8iMDLuDUiEtZ8z
nNEzinDPEBklMOxq++f//+CJRZT8lNwKdMMPRYt3ZckmYBDYcroMTQw+JhXEKss4
YKU4N9Ns95JV5wVh27gymwFumlx2iUyq/YdHp32IpWYhEDfD1T2VgA+3vKkXK66F
v1rUOeeIDF5I7bwslUDSsFxWF8GKzq73IZHT9SFo1ej82JpYtzCpmKx4n/lIdIba
ZUXr/8ZP58WZ6Q==
-----END CERTIFICATE-----
Generated at Wed Aug 6 11:14:08 2025 by rpki-client