Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
File: 5e_Rhp7q_m-fA8s0GGibywxpE3A.mft (raw, json)
Hash identifier: kLlwAZDGNoPClBJ3GVl9VAjKuDEJIBI84oscVd6impo=
Subject key identifier: E3:F3:2B:41:51:63:D1:4A:A3:1C:3D:1B:56:55:47:8B:66:C1:BB:DF
Authority key identifier: E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70
Certificate issuer: /CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
Certificate serial: 0197B6A1D1E462303701B4B53D593E50CC6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
Manifest number: 0FD0
Signing time: Sat 28 Jun 2025 13:02:27 +0000
Manifest this update: Sat 28 Jun 2025 13:02:27 +0000
Manifest next update: Sun 29 Jun 2025 13:02:27 +0000
Files and hashes: 1: 5e_Rhp7q_m-fA8s0GGibywxpE3A.crl (hash: KOcI+dYQHrjPVqgvgbnTeT1MfB4BBXB+T4/LCd1oq24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:d1:e4:62:30:37:01:b4:b5:3d:59:3e:50:cc:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
Validity
Not Before: Jun 28 13:02:27 2025 GMT
Not After : Jun 29 13:02:27 2025 GMT
Subject: CN=e3f32b415163d14aa31c3d1b5655478b66c1bbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:58:28:8e:28:c0:0e:7c:34:1a:a8:d9:07:91:
a1:4e:03:5c:df:ce:99:31:2c:44:6a:bb:92:fb:d0:
e5:a0:70:06:27:d9:66:0f:39:15:77:b1:93:6e:39:
70:d0:dc:be:7f:b4:f4:6b:87:76:6d:70:23:2f:e7:
eb:d8:3b:3a:45:95:49:de:f2:49:34:45:5e:c2:e7:
65:7c:cd:31:30:b7:6b:88:30:32:f6:d3:b4:e6:f0:
b4:77:02:2a:75:5b:65:52:9d:af:51:f7:00:86:85:
75:80:3f:82:31:79:ca:45:c2:52:fe:ce:a0:54:aa:
1b:0b:35:bd:f6:69:03:9a:63:2e:53:76:ab:ab:1e:
f1:0a:6a:4a:84:46:dd:cb:17:9f:41:0e:1b:49:5d:
1b:63:08:fa:b4:5e:34:b6:95:40:4f:a3:85:fb:4d:
47:75:06:18:1f:7a:61:ec:b7:60:cf:be:5e:78:08:
84:88:36:d7:22:97:13:b5:2d:60:b2:ab:1c:f0:ba:
13:00:16:39:db:be:b0:4c:f2:45:41:84:01:27:36:
52:28:5a:74:98:f3:2f:14:ce:26:36:4f:df:ad:af:
ea:c0:e2:2c:95:26:94:55:9a:34:ea:a7:46:ef:64:
c2:6a:6d:5d:28:f3:d7:57:46:b8:5c:ea:a8:a9:a6:
0f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F3:2B:41:51:63:D1:4A:A3:1C:3D:1B:56:55:47:8B:66:C1:BB:DF
X509v3 Authority Key Identifier:
keyid:E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:4d:66:f6:0a:ef:57:ee:43:ed:65:66:c9:ca:c6:bc:43:84:
93:64:56:1b:13:cb:ce:d2:23:90:2e:09:6c:fe:cf:42:05:59:
1c:96:9f:40:ae:02:81:97:7c:42:76:c7:7f:c3:17:74:e7:cc:
8c:37:78:32:71:dd:fb:ec:62:f7:19:1a:e8:63:a5:b1:7f:79:
7f:a0:40:1c:c7:17:35:88:90:68:6d:ea:ff:32:30:ca:94:c6:
c8:56:e1:78:4a:c2:ff:5d:08:52:52:a7:93:68:f1:64:0c:00:
4e:ea:8a:5e:65:cc:27:83:1d:5d:99:76:c2:52:11:6f:0d:31:
45:2d:83:5d:df:60:e3:93:01:24:0b:a1:cd:d0:27:0d:6d:01:
16:de:c1:54:ad:e8:65:46:76:a2:80:44:e3:90:0d:96:aa:1e:
28:04:cb:18:72:ee:cb:e1:7a:eb:a8:82:e3:ca:4c:52:e6:43:
b9:df:51:cb:fb:23:f5:fa:f5:c7:6c:d1:3b:90:48:f0:6e:f6:
09:68:fa:ce:ab:04:10:8d:a4:02:24:84:d2:61:66:59:8b:87:
9c:22:98:d4:64:fa:57:e5:68:2c:11:8b:b5:df:2f:46:21:b6:
92:e8:0b:9a:c7:f9:2d:6e:ae:25:78:22:9d:f3:5c:b9:ea:46:
2e:22:63:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2odHkYjA3AbS1PVk+UMxrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1ZWZkMTg2OWVlYWZlNmY5ZjAzY2IzNDE4Njg5YmNiMGM2
OTEzNzAwHhcNMjUwNjI4MTMwMjI3WhcNMjUwNjI5MTMwMjI3WjAzMTEwLwYDVQQD
EyhlM2YzMmI0MTUxNjNkMTRhYTMxYzNkMWI1NjU1NDc4YjY2YzFiYmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1gojijADnw0GqjZB5GhTgNc386Z
MSxEaruS+9DloHAGJ9lmDzkVd7GTbjlw0Ny+f7T0a4d2bXAjL+fr2Ds6RZVJ3vJJ
NEVewudlfM0xMLdriDAy9tO05vC0dwIqdVtlUp2vUfcAhoV1gD+CMXnKRcJS/s6g
VKobCzW99mkDmmMuU3arqx7xCmpKhEbdyxefQQ4bSV0bYwj6tF40tpVAT6OF+01H
dQYYH3ph7Ldgz75eeAiEiDbXIpcTtS1gsqsc8LoTABY5276wTPJFQYQBJzZSKFp0
mPMvFM4mNk/fra/qwOIslSaUVZo06qdG72TCam1dKPPXV0a4XOqoqaYP8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOPzK0FRY9FKoxw9G1ZVR4tmwbvfMB8GA1UdIwQY
MBaAFOXv0Yae6v5vnwPLNBhom8sMaRNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWVfUmhwN3FfbS1mQThzMEdHaWJ5d3hwRTNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9iNDdiZGEtNjViNi00YTQyLTk5MGYt
MDI0OTM1ZGRiOGM2LzEvNWVfUmhwN3FfbS1mQThzMEdHaWJ5d3hwRTNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9iNDdiZGEtNjViNi00YTQyLTk5MGYtMDI0OTM1ZGRiOGM2
LzEvNWVfUmhwN3FfbS1mQThzMEdHaWJ5d3hwRTNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbU1m9grv
V+5D7WVmycrGvEOEk2RWGxPLztIjkC4JbP7PQgVZHJafQK4CgZd8QnbHf8MXdOfM
jDd4MnHd++xi9xka6GOlsX95f6BAHMcXNYiQaG3q/zIwypTGyFbheErC/10IUlKn
k2jxZAwATuqKXmXMJ4MdXZl2wlIRbw0xRS2DXd9g45MBJAuhzdAnDW0BFt7BVK3o
ZUZ2ooBE45ANlqoeKATLGHLuy+F666iC48pMUuZDud9Ry/sj9fr1x2zRO5BI8G72
CWj6zqsEEI2kAiSE0mFmWYuHnCKY1GT6V+VoLBGLtd8vRiG2kugLmsf5LW6uJXgi
nfNcuepGLiJjVg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 18:58:26 2025 by rpki-client