
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json)
Hash identifier: vRxD1H6xCpioGyULSknlFodhG9fGcp/2/ERWum0I8RE=
Subject key identifier: 2C:2E:12:B8:9E:40:18:16:E3:80:59:30:98:27:23:91:91:E6:A8:7C
Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Certificate serial: 01988BEA5AFEBAA6C7889E9D8CC52B747E5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
Manifest number: 02EC
Signing time: Fri 08 Aug 2025 23:00:48 +0000
Manifest this update: Fri 08 Aug 2025 23:00:48 +0000
Manifest next update: Sat 09 Aug 2025 23:00:48 +0000
Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: QdFJUK0cq6MzCMxAAT20Gx4KhEK0AflcrCOmN6JDj88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:5a:fe:ba:a6:c7:88:9e:9d:8c:c5:2b:74:7e:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Validity
Not Before: Aug 8 23:00:48 2025 GMT
Not After : Aug 9 23:00:48 2025 GMT
Subject: CN=2c2e12b89e401816e38059309827239191e6a87c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3d:83:12:cf:97:54:38:ad:b2:0a:37:e8:79:
c8:93:78:93:e4:3f:82:95:f7:f5:35:2e:51:b4:37:
08:56:3e:16:8e:32:93:52:36:be:34:dc:fb:2f:b3:
bd:fd:f9:fd:a9:8a:c9:7c:cb:eb:0f:c1:8b:6b:c1:
a7:4b:bc:69:8d:8c:8a:66:6d:6d:2c:3c:0e:12:70:
15:ae:0e:a5:e9:49:8d:31:01:c5:2e:16:71:0f:91:
21:31:d3:e6:45:71:53:42:92:b3:ad:b7:99:3a:b2:
68:d4:17:e1:0f:dd:48:e5:cf:10:36:dc:2b:24:5b:
28:82:24:a0:6f:f3:42:c1:6f:c4:0b:a0:95:10:04:
d1:56:62:27:d9:16:4b:f7:4f:bf:aa:b7:43:6b:a9:
e8:4a:77:bb:48:94:99:52:04:94:3b:89:69:c2:b5:
4b:64:7a:b5:85:a1:98:05:35:00:d4:9b:67:88:08:
17:d1:07:9a:8c:15:4f:b7:40:87:0e:df:85:47:40:
36:ef:f9:60:26:5c:8d:ef:86:44:80:f2:c8:84:d5:
46:ac:ef:0f:bc:2a:bd:ef:39:ea:be:18:4c:e1:5f:
30:6c:04:77:d8:4f:ed:1a:54:fa:a7:1d:53:4a:51:
a6:04:0b:db:b9:b5:8f:00:74:5c:45:b1:c8:a5:49:
49:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:2E:12:B8:9E:40:18:16:E3:80:59:30:98:27:23:91:91:E6:A8:7C
X509v3 Authority Key Identifier:
keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:3b:8c:bd:49:50:33:af:58:16:2d:07:90:d4:f9:da:b4:4a:
bf:41:f7:00:6a:da:00:22:4e:9a:3d:1a:7e:63:9f:71:9d:65:
c8:7b:ef:85:1e:67:07:3f:7a:83:87:8d:b4:3b:03:bc:c3:2d:
5a:38:75:4d:d1:78:96:dc:1a:65:43:cd:af:d0:94:40:57:7e:
c5:97:c8:bb:bd:ba:ee:25:86:47:c3:16:bc:22:0f:26:ab:bb:
3c:3f:68:18:69:fa:89:a9:22:89:8c:dd:ec:12:62:a7:7f:2a:
6e:69:7b:f7:91:a9:ca:64:15:39:f6:37:a8:0a:35:7b:35:6a:
3f:4a:26:f8:66:10:01:53:37:56:6d:a9:0a:1f:e6:0e:bf:e2:
42:b4:f3:38:35:31:8a:24:84:05:48:8e:87:84:ee:52:a7:c9:
70:d0:d5:2e:bb:d9:00:09:41:a8:de:4d:9c:f1:d5:ff:6f:1f:
0b:91:cb:7b:d0:68:bc:ab:66:e6:7f:c3:17:3d:17:ab:b4:68:
a2:2e:a5:e5:ac:84:23:c1:86:83:d2:d5:98:1a:65:ef:89:34:
52:10:c7:79:76:09:d6:99:1c:bd:d0:3b:aa:56:73:40:ab:1e:
2d:0d:ea:cb:25:12:cf:dd:a1:e0:0a:36:07:d6:f9:00:74:d6:
4a:91:7d:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiL6lr+uqbHiJ6djMUrdH5dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYmM4YTg2NjhmNTBmZGFmNDk0ZjUyOGEyY2FhZmQwMmI3
YzMxYWQwHhcNMjUwODA4MjMwMDQ4WhcNMjUwODA5MjMwMDQ4WjAzMTEwLwYDVQQD
EygyYzJlMTJiODllNDAxODE2ZTM4MDU5MzA5ODI3MjM5MTkxZTZhODdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArj2DEs+XVDitsgo36HnIk3iT5D+C
lff1NS5RtDcIVj4WjjKTUja+NNz7L7O9/fn9qYrJfMvrD8GLa8GnS7xpjYyKZm1t
LDwOEnAVrg6l6UmNMQHFLhZxD5EhMdPmRXFTQpKzrbeZOrJo1BfhD91I5c8QNtwr
JFsogiSgb/NCwW/EC6CVEATRVmIn2RZL90+/qrdDa6noSne7SJSZUgSUO4lpwrVL
ZHq1haGYBTUA1JtniAgX0QeajBVPt0CHDt+FR0A27/lgJlyN74ZEgPLIhNVGrO8P
vCq97znqvhhM4V8wbAR32E/tGlT6px1TSlGmBAvbubWPAHRcRbHIpUlJRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCwuErieQBgW44BZMJgnI5GR5qh8MB8GA1UdIwQY
MBaAFL+8ioZo9Q/a9JT1KKLKr9ArfDGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjIt
ZGE2MTk5YjgyZjExLzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjItZGE2MTk5YjgyZjEx
LzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqzuMvUlQ
M69YFi0HkNT52rRKv0H3AGraACJOmj0afmOfcZ1lyHvvhR5nBz96g4eNtDsDvMMt
Wjh1TdF4ltwaZUPNr9CUQFd+xZfIu7267iWGR8MWvCIPJqu7PD9oGGn6iakiiYzd
7BJip38qbml795GpymQVOfY3qAo1ezVqP0om+GYQAVM3Vm2pCh/mDr/iQrTzODUx
iiSEBUiOh4TuUqfJcNDVLrvZAAlBqN5NnPHV/28fC5HLe9BovKtm5n/DFz0Xq7Ro
oi6l5ayEI8GGg9LVmBpl74k0UhDHeXYJ1pkcvdA7qlZzQKseLQ3qyyUSz92h4Ao2
B9b5AHTWSpF9ww==
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:53 2025 by rpki-client