Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
File: 5pgECu2WLzBoge6mVTBA-5ptNMk.mft (raw, json)
Hash identifier: pWHLEFBjcg65mB0FC76WLJPA4LiS2HfwXiUJfPa6hxM=
Subject key identifier: 29:61:2E:03:23:A8:67:45:AF:FA:68:33:A2:00:04:84:07:92:C4:51
Authority key identifier: E6:98:04:0A:ED:96:2F:30:68:81:EE:A6:55:30:40:FB:9A:6D:34:C9
Certificate issuer: /CN=e698040aed962f306881eea6553040fb9a6d34c9
Certificate serial: 019769CEA42E6638412FD6595D78CA0F4573
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5pgECu2WLzBoge6mVTBA-5ptNMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
Manifest number: 0431
Signing time: Fri 13 Jun 2025 15:00:39 +0000
Manifest this update: Fri 13 Jun 2025 15:00:39 +0000
Manifest next update: Sat 14 Jun 2025 15:00:39 +0000
Files and hashes: 1: 5pgECu2WLzBoge6mVTBA-5ptNMk.crl (hash: gfUHIoqLyXKyUsLpO3j6pM0rcdhPtfd3KOsHNXZ8mrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/5pgECu2WLzBoge6mVTBA-5ptNMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:a4:2e:66:38:41:2f:d6:59:5d:78:ca:0f:45:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e698040aed962f306881eea6553040fb9a6d34c9
Validity
Not Before: Jun 13 15:00:39 2025 GMT
Not After : Jun 14 15:00:39 2025 GMT
Subject: CN=29612e0323a86745affa6833a20004840792c451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:90:f2:c6:22:4f:f8:c0:e5:31:bd:4b:e8:30:
e6:79:48:81:ec:5a:8f:9d:cb:1c:16:93:b7:40:50:
d5:99:12:e8:a5:90:80:3d:43:d9:6e:fb:9f:c5:5f:
45:f9:c7:98:6e:4f:00:86:1a:68:a4:61:f6:02:5b:
3b:71:1c:52:57:76:a0:b8:b5:58:9b:28:1f:cd:66:
16:06:0f:da:58:23:79:8c:d6:91:80:9c:8b:04:90:
75:a1:6b:5b:5b:0a:f4:af:df:4b:27:03:c9:77:60:
32:d4:86:1d:ce:2a:0b:86:d2:46:5e:86:36:ba:4d:
71:36:52:37:8c:fa:c9:71:0d:93:47:d1:5a:07:98:
8f:5a:31:62:4e:a1:e2:9c:f9:e8:72:4c:1d:e6:80:
00:52:70:6f:55:3e:aa:93:be:6d:99:c1:34:b2:db:
47:27:04:51:b5:ab:f0:ee:70:61:e7:a0:75:21:0c:
d2:60:6d:b9:73:d5:b3:ae:ab:1f:12:23:20:7d:46:
e4:b7:92:44:68:4b:f2:c8:5a:41:94:0a:9e:4b:c3:
f1:b4:10:7d:c2:be:ed:20:6c:b7:c4:99:d2:15:75:
76:7f:06:ea:52:24:ea:e8:77:df:de:24:99:7c:2e:
ec:05:ee:55:e8:e6:f3:b9:89:f6:0d:65:48:50:d4:
47:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:61:2E:03:23:A8:67:45:AF:FA:68:33:A2:00:04:84:07:92:C4:51
X509v3 Authority Key Identifier:
keyid:E6:98:04:0A:ED:96:2F:30:68:81:EE:A6:55:30:40:FB:9A:6D:34:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5pgECu2WLzBoge6mVTBA-5ptNMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:77:19:35:2d:da:48:8f:95:f0:68:12:de:39:21:4a:97:b7:
87:ed:3e:d6:ed:fc:dc:b2:c2:e5:69:61:e4:b6:91:b9:1f:87:
6e:c7:df:78:c8:f6:d6:a3:69:1e:47:7b:0a:72:59:e8:ad:ed:
c7:68:fe:f4:07:6a:46:83:e9:c5:c9:b6:2f:f0:0d:ae:4b:c3:
ac:96:66:6d:21:10:9c:08:4d:cb:ee:33:ce:e4:2f:67:fa:6e:
77:80:56:0f:f9:b2:b0:67:3e:1f:36:0f:df:44:60:b6:58:77:
91:a0:ea:c5:f5:3e:a6:b7:78:f3:25:13:8e:77:09:e0:32:ec:
3b:c3:4d:aa:3a:ce:93:d2:98:1d:da:65:d5:75:d4:cc:2d:45:
a4:45:25:36:ab:fb:5e:b4:60:8b:ac:10:bc:53:47:05:80:e7:
d8:4e:04:e7:1f:01:88:62:fa:76:4b:e3:ab:2b:8a:ed:5e:ea:
1f:16:7c:28:f4:2a:d2:0b:9f:06:17:af:98:a4:60:82:11:e6:
61:2d:be:25:46:da:bf:13:f3:10:9b:f0:2e:80:76:ab:8d:50:
ed:25:17:f3:9f:f1:77:f9:c6:e5:b6:fb:e3:6c:16:97:d6:cd:
07:9d:d2:1c:5a:cc:80:f2:e0:95:79:1f:5f:ec:8c:bb:40:7e:
7d:c7:8e:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpzqQuZjhBL9ZZXXjKD0VzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2OTgwNDBhZWQ5NjJmMzA2ODgxZWVhNjU1MzA0MGZiOWE2
ZDM0YzkwHhcNMjUwNjEzMTUwMDM5WhcNMjUwNjE0MTUwMDM5WjAzMTEwLwYDVQQD
EygyOTYxMmUwMzIzYTg2NzQ1YWZmYTY4MzNhMjAwMDQ4NDA3OTJjNDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5DyxiJP+MDlMb1L6DDmeUiB7FqP
ncscFpO3QFDVmRLopZCAPUPZbvufxV9F+ceYbk8AhhpopGH2Als7cRxSV3aguLVY
mygfzWYWBg/aWCN5jNaRgJyLBJB1oWtbWwr0r99LJwPJd2Ay1IYdzioLhtJGXoY2
uk1xNlI3jPrJcQ2TR9FaB5iPWjFiTqHinPnockwd5oAAUnBvVT6qk75tmcE0sttH
JwRRtavw7nBh56B1IQzSYG25c9WzrqsfEiMgfUbkt5JEaEvyyFpBlAqeS8PxtBB9
wr7tIGy3xJnSFXV2fwbqUiTq6Hff3iSZfC7sBe5V6ObzuYn2DWVIUNRH4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFClhLgMjqGdFr/poM6IABIQHksRRMB8GA1UdIwQY
MBaAFOaYBArtli8waIHuplUwQPuabTTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXBnRUN1MldMekJvZ2U2bVZUQkEtNXB0Tk1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81MmViZDktN2Q1Yi00NTJhLThmNGYt
ZTIzNDk3MzkzYjhmLzEvNXBnRUN1MldMekJvZ2U2bVZUQkEtNXB0Tk1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81MmViZDktN2Q1Yi00NTJhLThmNGYtZTIzNDk3MzkzYjhm
LzEvNXBnRUN1MldMekJvZ2U2bVZUQkEtNXB0Tk1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoXcZNS3a
SI+V8GgS3jkhSpe3h+0+1u383LLC5Wlh5LaRuR+HbsffeMj21qNpHkd7CnJZ6K3t
x2j+9AdqRoPpxcm2L/ANrkvDrJZmbSEQnAhNy+4zzuQvZ/pud4BWD/mysGc+HzYP
30Rgtlh3kaDqxfU+prd48yUTjncJ4DLsO8NNqjrOk9KYHdpl1XXUzC1FpEUlNqv7
XrRgi6wQvFNHBYDn2E4E5x8BiGL6dkvjqyuK7V7qHxZ8KPQq0gufBhevmKRgghHm
YS2+JUbavxPzEJvwLoB2q41Q7SUX85/xd/nG5bb742wWl9bNB53SHFrMgPLglXkf
X+yMu0B+fceOsQ==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:07:08 2025 by rpki-client