Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
File: 5pgECu2WLzBoge6mVTBA-5ptNMk.mft (raw, json)
Hash identifier: 2st4qxKng5WH4PkoRpFZP0x5qQL30iyl1Tl4tZtCa9c=
Subject key identifier: 9B:53:73:E3:23:9C:0F:53:8F:40:8E:A5:53:83:04:4D:EE:74:5D:B8
Authority key identifier: E6:98:04:0A:ED:96:2F:30:68:81:EE:A6:55:30:40:FB:9A:6D:34:C9
Certificate issuer: /CN=e698040aed962f306881eea6553040fb9a6d34c9
Certificate serial: 01987450AEA38E097F8BF23D092D5167E263
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5pgECu2WLzBoge6mVTBA-5ptNMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
Manifest number: 04BB
Signing time: Mon 04 Aug 2025 09:01:41 +0000
Manifest this update: Mon 04 Aug 2025 09:01:41 +0000
Manifest next update: Tue 05 Aug 2025 09:01:41 +0000
Files and hashes: 1: 5pgECu2WLzBoge6mVTBA-5ptNMk.crl (hash: 6nGI7247d5YEDqMkTZp5mmtl4mDT1X4Ye455k7Q2b5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/5pgECu2WLzBoge6mVTBA-5ptNMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:ae:a3:8e:09:7f:8b:f2:3d:09:2d:51:67:e2:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e698040aed962f306881eea6553040fb9a6d34c9
Validity
Not Before: Aug 4 09:01:41 2025 GMT
Not After : Aug 5 09:01:41 2025 GMT
Subject: CN=9b5373e3239c0f538f408ea55383044dee745db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f9:4c:b6:a2:f5:33:83:d5:99:65:e4:58:94:
e6:48:89:f0:da:52:86:7b:4d:b8:73:00:52:9e:d3:
00:b9:a6:ee:47:a8:87:8a:76:85:8a:32:67:16:57:
5a:65:74:9e:fa:c6:af:f8:b7:10:b0:ac:c6:ff:f3:
5b:8b:29:b3:31:24:93:6d:4f:56:81:d4:49:2d:9a:
13:ac:1a:5f:a8:4f:98:e4:5f:49:d0:ac:ef:25:84:
19:aa:27:79:78:fb:cd:8c:a0:5d:73:c8:0d:cd:07:
ba:32:fe:41:2f:4a:f6:c2:cd:1f:3e:e2:00:42:7e:
65:2f:69:fb:c2:4e:90:0b:66:5a:37:2b:d8:73:7f:
5d:0f:76:00:4f:27:93:04:02:94:4f:5e:84:8c:49:
a3:d7:59:08:ed:12:8d:4e:7a:0a:df:fa:06:05:d0:
17:88:d9:13:7f:4b:a3:be:ca:e0:d5:1e:36:35:89:
6a:41:e2:51:d8:e3:af:39:7f:1d:b3:ec:d3:ba:a6:
65:8b:77:90:2c:23:22:7c:de:96:50:71:0f:eb:18:
9a:ea:45:6b:4e:f3:da:8d:50:db:45:ef:61:f1:ed:
c5:32:95:10:20:5d:90:23:11:4b:84:c9:3c:51:73:
e7:10:71:5b:f5:f1:2e:1b:81:18:f0:80:0f:bc:e4:
d2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:53:73:E3:23:9C:0F:53:8F:40:8E:A5:53:83:04:4D:EE:74:5D:B8
X509v3 Authority Key Identifier:
keyid:E6:98:04:0A:ED:96:2F:30:68:81:EE:A6:55:30:40:FB:9A:6D:34:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5pgECu2WLzBoge6mVTBA-5ptNMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:f4:95:db:76:3d:d2:d8:56:2f:1a:fe:73:b0:d5:32:e5:84:
27:c7:cf:05:29:f1:8d:42:5a:d3:94:f1:60:17:0e:8e:8e:1c:
8a:76:ae:1e:fd:3d:fd:66:f3:d2:ea:c4:33:fa:e3:88:9c:e6:
8d:e3:3e:a6:76:11:29:fd:fd:7b:99:0b:65:2e:6b:88:be:ea:
6c:c8:2d:79:b3:c8:73:3d:f5:21:7f:69:a6:76:68:e6:ae:cf:
5b:a5:0f:e5:58:84:83:f0:0b:ed:88:67:a5:eb:c6:7b:2b:49:
b1:c5:d7:33:fa:00:2c:d6:81:df:05:c4:fe:c8:dc:14:30:3b:
10:7b:2e:bd:75:30:ef:d7:c5:bc:76:a5:d9:0b:2f:01:32:de:
f0:4f:76:43:6d:2f:30:85:bf:7f:53:66:b8:4c:2d:10:d0:38:
f5:4a:d5:43:c5:79:73:0a:cc:11:c9:6f:0f:55:b2:56:a8:31:
61:65:9e:23:6b:9b:f9:2f:06:77:f7:bf:0c:c2:eb:c2:c5:e0:
5a:a2:71:2b:8f:6c:5f:db:ee:f8:45:56:7b:ed:f3:1d:26:f2:
49:4a:a3:13:f7:06:95:f2:cf:30:1f:60:6f:16:01:5e:94:b9:
51:a1:34:70:4d:ed:17:f8:d2:50:e5:d9:2c:fe:a0:c0:de:a9:
a8:ac:f0:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0UK6jjgl/i/I9CS1RZ+JjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2OTgwNDBhZWQ5NjJmMzA2ODgxZWVhNjU1MzA0MGZiOWE2
ZDM0YzkwHhcNMjUwODA0MDkwMTQxWhcNMjUwODA1MDkwMTQxWjAzMTEwLwYDVQQD
Eyg5YjUzNzNlMzIzOWMwZjUzOGY0MDhlYTU1MzgzMDQ0ZGVlNzQ1ZGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/lMtqL1M4PVmWXkWJTmSInw2lKG
e024cwBSntMAuabuR6iHinaFijJnFldaZXSe+sav+LcQsKzG//NbiymzMSSTbU9W
gdRJLZoTrBpfqE+Y5F9J0KzvJYQZqid5ePvNjKBdc8gNzQe6Mv5BL0r2ws0fPuIA
Qn5lL2n7wk6QC2ZaNyvYc39dD3YATyeTBAKUT16EjEmj11kI7RKNTnoK3/oGBdAX
iNkTf0ujvsrg1R42NYlqQeJR2OOvOX8ds+zTuqZli3eQLCMifN6WUHEP6xia6kVr
TvPajVDbRe9h8e3FMpUQIF2QIxFLhMk8UXPnEHFb9fEuG4EY8IAPvOTSUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJtTc+MjnA9Tj0COpVODBE3udF24MB8GA1UdIwQY
MBaAFOaYBArtli8waIHuplUwQPuabTTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXBnRUN1MldMekJvZ2U2bVZUQkEtNXB0Tk1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81MmViZDktN2Q1Yi00NTJhLThmNGYt
ZTIzNDk3MzkzYjhmLzEvNXBnRUN1MldMekJvZ2U2bVZUQkEtNXB0Tk1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81MmViZDktN2Q1Yi00NTJhLThmNGYtZTIzNDk3MzkzYjhm
LzEvNXBnRUN1MldMekJvZ2U2bVZUQkEtNXB0Tk1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZfSV23Y9
0thWLxr+c7DVMuWEJ8fPBSnxjUJa05TxYBcOjo4cinauHv09/Wbz0urEM/rjiJzm
jeM+pnYRKf39e5kLZS5riL7qbMgtebPIcz31IX9ppnZo5q7PW6UP5ViEg/AL7Yhn
pevGeytJscXXM/oALNaB3wXE/sjcFDA7EHsuvXUw79fFvHal2QsvATLe8E92Q20v
MIW/f1NmuEwtENA49UrVQ8V5cwrMEclvD1WyVqgxYWWeI2ub+S8Gd/e/DMLrwsXg
WqJxK49sX9vu+EVWe+3zHSbySUqjE/cGlfLPMB9gbxYBXpS5UaE0cE3tF/jSUOXZ
LP6gwN6pqKzwWg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 14:18:53 2025 by rpki-client