Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: 8+TyROKxSDDMO+MsTVOJaok8EF6GqlXeRR1SWmDvXTI=
Subject key identifier: 2C:C6:E4:B6:5A:AA:BF:BE:43:58:68:51:1F:8D:AE:A2:A3:68:E8:7E
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 0198D5839F95342C837A99FE0C170F03DE84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0B59
Signing time: Sat 23 Aug 2025 06:00:29 +0000
Manifest this update: Sat 23 Aug 2025 06:00:29 +0000
Manifest next update: Sun 24 Aug 2025 06:00:29 +0000
Files and hashes: 1: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: iR3Z9kn7htR/WrylurxECWHDY0ls29/UVGKQvJwHcAI=)
2: vKqft3GpUgOOXSf2VjTKls-pWMw.roa (hash: 5Tvu15lYIVA9/K7Qk9i7l4tCbiMQ02zrBkIoUMRXadY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:9f:95:34:2c:83:7a:99:fe:0c:17:0f:03:de:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: Aug 23 06:00:29 2025 GMT
Not After : Aug 24 06:00:29 2025 GMT
Subject: CN=2cc6e4b65aaabfbe435868511f8daea2a368e87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:68:66:71:b4:6c:ae:e7:a4:c6:84:4a:fa:d2:
17:9c:15:95:ff:6d:9d:ce:1d:58:6a:c4:f6:82:dc:
0e:98:e5:fc:15:24:19:09:7e:1a:e8:71:cb:0d:c4:
77:21:b2:da:43:7b:6d:f1:aa:d5:87:72:44:d0:97:
90:01:b9:17:c1:c2:f2:c2:5b:c1:4c:66:63:b1:ab:
1f:c0:b0:6c:50:d5:5a:7c:cf:0d:92:1e:12:59:31:
6a:fa:46:99:b4:5b:d4:98:15:82:ef:19:9b:77:c4:
c4:9d:0f:9c:ea:71:31:8f:f2:21:7c:5b:01:99:9b:
dd:70:e5:c2:e5:03:19:90:01:62:a1:52:8f:7f:99:
d7:a7:c4:2d:66:28:06:13:88:56:46:7b:f3:3e:ad:
8e:19:ac:d9:03:67:a2:28:cf:a3:5f:0f:fd:13:d4:
d5:9d:29:91:24:a7:d1:74:bb:dc:e2:64:84:56:73:
33:88:0b:bc:72:66:00:ea:56:26:56:7b:00:29:29:
24:13:3b:53:e0:5d:f8:fb:d8:c2:30:4e:23:28:c5:
33:d2:79:6e:ee:c0:d7:13:77:91:3e:cc:d5:c7:dc:
c9:c7:15:bb:09:63:66:cf:9e:24:3c:a8:5d:83:a9:
29:96:4f:41:bc:50:78:3d:cf:08:9f:02:50:2f:e5:
2c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C6:E4:B6:5A:AA:BF:BE:43:58:68:51:1F:8D:AE:A2:A3:68:E8:7E
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:75:c9:81:b5:f5:86:cb:8c:f1:c8:86:04:ab:9e:ec:12:d6:
77:cb:f4:84:e1:d7:85:a1:1f:7e:68:92:c2:ce:51:73:69:2e:
a9:ea:87:2b:bc:76:d0:57:95:31:53:b4:f1:3e:c6:d4:43:e2:
85:83:24:5d:a0:c0:93:56:df:ed:22:67:fa:74:e8:19:fc:be:
0b:49:d6:9a:16:67:7e:c0:d4:58:cd:75:7d:1a:5c:6f:0f:ee:
2f:1f:5a:43:b5:d7:ff:84:3a:b7:d5:8c:6b:e1:9a:12:a8:80:
88:f9:8d:8e:6e:32:29:61:ca:fb:ae:25:85:bd:94:92:2c:f5:
60:c7:3d:c5:7e:56:c3:97:e4:63:33:0d:0c:cc:08:02:31:7c:
9e:ad:c4:ce:f6:6e:dd:f5:2f:5d:ee:13:af:a7:5b:4e:47:4f:
05:bc:00:69:ea:41:5c:0b:a8:31:18:eb:e7:92:91:6a:00:87:
39:e3:49:3f:8d:70:83:e5:ed:15:81:e9:78:de:0e:06:43:e5:
a9:2f:71:3c:0d:2d:4b:a1:47:84:7e:5f:c5:99:8c:7d:d9:82:
58:15:a7:cc:9a:1f:97:39:ad:84:56:94:a6:4c:a5:d3:83:58:
9e:9e:dd:48:b4:96:b8:6a:11:70:cf:0e:f6:36:8a:8c:cd:83:
67:65:a2:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg5+VNCyDepn+DBcPA96EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmYmFiMGQzOWZiNjk3OWZlNGQzZDI0ODNhMDFiZGQzYzkz
YmVjZWYwHhcNMjUwODIzMDYwMDI5WhcNMjUwODI0MDYwMDI5WjAzMTEwLwYDVQQD
EygyY2M2ZTRiNjVhYWFiZmJlNDM1ODY4NTExZjhkYWVhMmEzNjhlODdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WhmcbRsruekxoRK+tIXnBWV/22d
zh1YasT2gtwOmOX8FSQZCX4a6HHLDcR3IbLaQ3tt8arVh3JE0JeQAbkXwcLywlvB
TGZjsasfwLBsUNVafM8Nkh4SWTFq+kaZtFvUmBWC7xmbd8TEnQ+c6nExj/IhfFsB
mZvdcOXC5QMZkAFioVKPf5nXp8QtZigGE4hWRnvzPq2OGazZA2eiKM+jXw/9E9TV
nSmRJKfRdLvc4mSEVnMziAu8cmYA6lYmVnsAKSkkEztT4F34+9jCME4jKMUz0nlu
7sDXE3eRPszVx9zJxxW7CWNmz54kPKhdg6kplk9BvFB4Pc8InwJQL+UseQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCzG5LZaqr++Q1hoUR+NrqKjaOh+MB8GA1UdIwQY
MBaAFF+6sNOftpef5NPSSDoBvdPJO+zvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDdxdzA1LTJsNV9rMDlKSU9nRzkwOGs3N084LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zYzUyNGUtMTJiOC00ZGNjLThmMTAt
MzBkZjYyNDI5ZGYwLzEvWDdxdzA1LTJsNV9rMDlKSU9nRzkwOGs3N084Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zYzUyNGUtMTJiOC00ZGNjLThmMTAtMzBkZjYyNDI5ZGYw
LzEvWDdxdzA1LTJsNV9rMDlKSU9nRzkwOGs3N084LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY3XJgbX1
hsuM8ciGBKue7BLWd8v0hOHXhaEffmiSws5Rc2kuqeqHK7x20FeVMVO08T7G1EPi
hYMkXaDAk1bf7SJn+nToGfy+C0nWmhZnfsDUWM11fRpcbw/uLx9aQ7XX/4Q6t9WM
a+GaEqiAiPmNjm4yKWHK+64lhb2Ukiz1YMc9xX5Ww5fkYzMNDMwIAjF8nq3EzvZu
3fUvXe4Tr6dbTkdPBbwAaepBXAuoMRjr55KRagCHOeNJP41wg+XtFYHpeN4OBkPl
qS9xPA0tS6FHhH5fxZmMfdmCWBWnzJoflzmthFaUpkyl04NYnp7dSLSWuGoRcM8O
9jaKjM2DZ2WiVA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:25 2025 by rpki-client