Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
File: 6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json)
Hash identifier: mBg4XU2G6Vh474zUkaTw52lbxh0MLRUs6c8Z7wv0Xyg=
Subject key identifier: 53:72:05:25:08:87:10:63:4B:0B:19:E0:D3:04:8A:52:6F:A9:A5:11
Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
Certificate issuer: /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Certificate serial: 019896A5EB5C19FD01FCA6634ECE8A0909F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
Manifest number: 0278
Signing time: Mon 11 Aug 2025 01:01:52 +0000
Manifest this update: Mon 11 Aug 2025 01:01:52 +0000
Manifest next update: Tue 12 Aug 2025 01:01:52 +0000
Files and hashes: 1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: Q+VDWye58NzTyEF7W6tLxd7/tdMK2n0qerW5/Fwz/kE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:eb:5c:19:fd:01:fc:a6:63:4e:ce:8a:09:09:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Validity
Not Before: Aug 11 01:01:52 2025 GMT
Not After : Aug 12 01:01:52 2025 GMT
Subject: CN=53720525088710634b0b19e0d3048a526fa9a511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d3:58:27:22:76:a8:86:b9:b4:fa:ab:1f:74:
7d:6e:d6:a9:51:15:01:6e:6e:df:34:62:91:57:b9:
f9:ac:5c:45:83:12:1d:77:07:ed:98:57:f5:53:6c:
43:c4:b6:96:a5:a5:5e:92:87:15:e2:52:04:d8:26:
8c:05:41:db:d4:b2:be:48:bd:84:8e:6b:fc:4d:5c:
4c:f1:53:db:e0:84:9c:c3:78:06:13:cb:d3:74:af:
9a:85:0d:ef:32:a6:e1:cd:db:e9:ec:d1:3b:1e:a4:
1e:fe:08:ab:c2:c4:c7:f2:df:f6:e0:4f:df:b9:e1:
c0:27:8e:c9:27:85:70:98:36:0e:26:19:61:79:2b:
7e:d0:23:83:f0:96:d2:ac:34:e0:29:e8:08:6c:a9:
6f:e2:61:e9:69:2c:21:e5:5b:29:88:37:99:97:a2:
9a:60:a2:98:38:f2:f3:ec:d5:08:f6:6e:e5:b8:37:
58:72:f1:f9:5c:4e:93:b9:b5:82:23:0e:8c:e4:00:
d6:9c:07:f1:1f:0e:37:4a:49:69:c2:e8:c8:d4:e3:
4f:35:bf:99:c1:c9:56:d6:05:40:31:d9:1d:4a:16:
c4:f7:21:02:63:c6:10:41:b1:2f:e1:b1:7a:53:7e:
fd:35:98:d1:5a:a5:c3:f2:2f:d2:76:3c:1e:e4:83:
f8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:72:05:25:08:87:10:63:4B:0B:19:E0:D3:04:8A:52:6F:A9:A5:11
X509v3 Authority Key Identifier:
keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:ed:04:e8:2b:2f:85:11:90:41:7c:91:40:6a:55:76:11:a8:
b0:c2:2e:00:28:dd:c7:f7:4c:c1:6c:8f:62:f8:ad:b7:28:17:
51:b7:d3:18:9b:c4:a2:af:fa:b9:08:c9:35:60:53:85:28:d9:
10:f8:68:fa:f7:c5:2c:f7:cd:6b:c1:db:48:49:fd:05:44:e0:
82:dc:35:bc:a3:72:99:66:97:62:58:8d:6b:5c:35:57:95:b9:
2b:6a:aa:9d:c5:e9:33:64:70:83:98:5b:d1:27:5b:f5:aa:5f:
1d:00:03:cd:d9:30:57:5a:fe:bd:2d:f9:3f:ae:a4:7f:f2:b6:
eb:a3:44:1e:fc:bb:e4:4d:13:03:35:b0:50:5e:14:e0:5b:65:
8f:14:60:c3:bc:e1:32:3e:1f:2b:bf:da:04:58:09:47:4e:9e:
06:16:02:f3:7a:83:25:64:a9:74:d6:82:e3:30:0f:46:20:56:
15:a9:b3:59:ba:78:60:2d:46:25:fb:49:d7:58:64:ec:1a:6f:
a9:d2:a7:6f:7e:ac:36:18:08:fe:8a:3b:5e:e5:6c:f3:e9:c9:
84:96:8e:7b:da:c8:78:28:c0:a4:0b:1d:9d:ec:bf:c5:e1:02:
55:f0:5d:6b:f4:fe:bd:37:e5:70:ca:eb:d4:9d:04:25:45:7f:
64:ca:62:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiWpetcGf0B/KZjTs6KCQn5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhNDFlODM5OGZmN2NlZmI1MjIxNjM2ZWIyMjgyMTI2ZWJm
ZTNiNzgwHhcNMjUwODExMDEwMTUyWhcNMjUwODEyMDEwMTUyWjAzMTEwLwYDVQQD
Eyg1MzcyMDUyNTA4ODcxMDYzNGIwYjE5ZTBkMzA0OGE1MjZmYTlhNTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tNYJyJ2qIa5tPqrH3R9btapURUB
bm7fNGKRV7n5rFxFgxIddwftmFf1U2xDxLaWpaVekocV4lIE2CaMBUHb1LK+SL2E
jmv8TVxM8VPb4IScw3gGE8vTdK+ahQ3vMqbhzdvp7NE7HqQe/girwsTH8t/24E/f
ueHAJ47JJ4VwmDYOJhlheSt+0COD8JbSrDTgKegIbKlv4mHpaSwh5VspiDeZl6Ka
YKKYOPLz7NUI9m7luDdYcvH5XE6TubWCIw6M5ADWnAfxHw43SklpwujI1ONPNb+Z
wclW1gVAMdkdShbE9yECY8YQQbEv4bF6U379NZjRWqXD8i/Sdjwe5IP4QQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFNyBSUIhxBjSwsZ4NMEilJvqaURMB8GA1UdIwQY
MBaAFOpB6DmP9877UiFjbrIoISbr/jt4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2Ut
NjI4YjQzOTRiODIyLzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2UtNjI4YjQzOTRiODIy
LzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdu0E6Csv
hRGQQXyRQGpVdhGosMIuACjdx/dMwWyPYvittygXUbfTGJvEoq/6uQjJNWBThSjZ
EPho+vfFLPfNa8HbSEn9BUTggtw1vKNymWaXYliNa1w1V5W5K2qqncXpM2Rwg5hb
0Sdb9apfHQADzdkwV1r+vS35P66kf/K266NEHvy75E0TAzWwUF4U4FtljxRgw7zh
Mj4fK7/aBFgJR06eBhYC83qDJWSpdNaC4zAPRiBWFamzWbp4YC1GJftJ11hk7Bpv
qdKnb36sNhgI/oo7XuVs8+nJhJaOe9rIeCjApAsdney/xeECVfBda/T+vTflcMrr
1J0EJUV/ZMpinw==
-----END CERTIFICATE-----
Generated at Mon Aug 11 04:10:59 2025 by rpki-client