Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
File: f5kYyrbx817xteWDyyg56bdIsVg.mft (raw, json)
Hash identifier: HIGJr8QrjC+qaxPpRjrcEBjxgPQnrRxmMWyHExyREfw=
Subject key identifier: B5:52:31:96:AF:56:C2:EC:D9:38:5B:90:B2:E7:5D:9D:94:31:71:B2
Authority key identifier: 7F:99:18:CA:B6:F1:F3:5E:F1:B5:E5:83:CB:28:39:E9:B7:48:B1:58
Certificate issuer: /CN=7f9918cab6f1f35ef1b5e583cb2839e9b748b158
Certificate serial: 0196C34BC6663FD83E5A33B7B9F9AE619EEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
Manifest number: 120B
Signing time: Mon 12 May 2025 07:00:45 +0000
Manifest this update: Mon 12 May 2025 07:00:45 +0000
Manifest next update: Tue 13 May 2025 07:00:45 +0000
Files and hashes: 1: f5kYyrbx817xteWDyyg56bdIsVg.crl (hash: Hn5VylFKmOYq+3L9lCzqP2vg1Q7eneoEdz1eo+C3k+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:c6:66:3f:d8:3e:5a:33:b7:b9:f9:ae:61:9e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f9918cab6f1f35ef1b5e583cb2839e9b748b158
Validity
Not Before: May 12 07:00:45 2025 GMT
Not After : May 13 07:00:45 2025 GMT
Subject: CN=b5523196af56c2ecd9385b90b2e75d9d943171b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:01:ea:e4:54:f3:e3:0e:ee:45:cf:1e:86:a5:
d0:65:c3:41:6c:8a:ef:9f:23:40:07:10:eb:11:54:
32:82:b9:9c:f8:ff:68:38:71:a9:d3:57:7d:87:d3:
e2:44:c5:4a:7f:d3:3a:7a:55:5e:92:98:7f:a9:84:
2a:f8:43:8a:9c:33:ea:cb:67:5d:d1:de:3a:b2:61:
84:1c:34:b5:12:48:bd:fb:53:7b:c1:c1:cd:37:ed:
b6:44:b0:dc:a4:51:ab:ec:22:43:76:4a:81:55:b9:
06:dc:52:96:ae:7c:f2:79:4d:10:62:3c:3c:fa:97:
df:2f:08:da:38:10:37:9b:18:58:ba:b6:16:81:1d:
55:4a:da:e0:ad:ff:fe:58:56:90:06:d9:a9:a4:87:
3d:ee:65:eb:39:14:e0:4d:68:e3:56:90:1b:ee:64:
eb:50:7e:cb:29:00:8f:03:d3:17:b0:ae:28:24:c2:
98:bd:a3:94:63:d7:ed:0b:c3:73:73:b6:65:ff:c1:
f0:71:c7:07:0d:53:c9:0f:89:f7:ec:19:2a:b9:21:
0b:f0:7b:3d:26:65:35:b4:08:4b:e5:34:35:f9:df:
e0:d8:45:d3:4f:3e:69:fc:d0:52:56:69:ec:da:e8:
38:bd:29:47:9f:97:93:60:79:db:2e:3f:45:6a:b4:
2a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:52:31:96:AF:56:C2:EC:D9:38:5B:90:B2:E7:5D:9D:94:31:71:B2
X509v3 Authority Key Identifier:
keyid:7F:99:18:CA:B6:F1:F3:5E:F1:B5:E5:83:CB:28:39:E9:B7:48:B1:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:87:7c:52:fd:1d:b8:4c:a4:b0:fd:3c:b9:04:6f:2c:59:80:
cb:af:58:ba:58:66:21:e8:96:6b:7d:ba:f1:82:2d:de:12:13:
83:2f:44:1f:66:0f:9c:0d:dd:f3:c0:aa:4c:bf:cb:5f:e5:09:
56:c7:20:81:4c:1c:fb:f4:46:d3:ec:a5:69:b2:49:3a:33:a2:
25:ce:08:3a:8a:95:e6:01:02:0f:1b:2e:4b:c4:f7:6b:f4:8b:
db:8b:c8:82:ba:3d:d3:ef:1b:90:a0:6a:0f:44:80:51:88:b8:
fc:9d:90:c5:d0:bd:19:3e:64:b5:42:51:3f:31:9f:73:37:f9:
66:f3:dc:01:21:97:9d:1e:58:7f:1a:ca:bb:65:64:fa:59:03:
6b:cf:13:5e:02:76:db:61:6a:1b:9d:45:ae:1e:8f:5c:04:0e:
84:e6:6f:b2:4d:5d:d3:e4:cd:7b:a3:a6:0e:62:e9:c3:d0:87:
df:12:2f:3a:59:cd:74:e4:65:f4:81:16:82:42:66:10:27:c7:
db:e9:d5:41:0a:7c:24:7a:0b:20:c9:65:33:a6:87:e1:57:0e:
41:54:5d:e5:27:76:99:38:f8:dc:7a:9b:88:b3:71:2f:e8:7c:
bb:51:4d:af:c4:ea:53:78:0c:31:61:a6:65:f5:00:e8:0e:0d:
00:2f:f3:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbDS8ZmP9g+WjO3ufmuYZ7sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmOTkxOGNhYjZmMWYzNWVmMWI1ZTU4M2NiMjgzOWU5Yjc0
OGIxNTgwHhcNMjUwNTEyMDcwMDQ1WhcNMjUwNTEzMDcwMDQ1WjAzMTEwLwYDVQQD
EyhiNTUyMzE5NmFmNTZjMmVjZDkzODViOTBiMmU3NWQ5ZDk0MzE3MWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswHq5FTz4w7uRc8ehqXQZcNBbIrv
nyNABxDrEVQygrmc+P9oOHGp01d9h9PiRMVKf9M6elVekph/qYQq+EOKnDPqy2dd
0d46smGEHDS1Eki9+1N7wcHNN+22RLDcpFGr7CJDdkqBVbkG3FKWrnzyeU0QYjw8
+pffLwjaOBA3mxhYurYWgR1VStrgrf/+WFaQBtmppIc97mXrORTgTWjjVpAb7mTr
UH7LKQCPA9MXsK4oJMKYvaOUY9ftC8Nzc7Zl/8HwcccHDVPJD4n37BkquSEL8Hs9
JmU1tAhL5TQ1+d/g2EXTTz5p/NBSVmns2ug4vSlHn5eTYHnbLj9FarQqjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLVSMZavVsLs2ThbkLLnXZ2UMXGyMB8GA1UdIwQY
MBaAFH+ZGMq28fNe8bXlg8soOem3SLFYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjVrWXlyYng4MTd4dGVXRHl5ZzU2YmRJc1ZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9kZjgyZmEtMTE4ZC00MjE5LWJhMTYt
MWE5NjgzYzlkNmNiLzEvZjVrWXlyYng4MTd4dGVXRHl5ZzU2YmRJc1ZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi9kZjgyZmEtMTE4ZC00MjE5LWJhMTYtMWE5NjgzYzlkNmNi
LzEvZjVrWXlyYng4MTd4dGVXRHl5ZzU2YmRJc1ZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYYd8Uv0d
uEyksP08uQRvLFmAy69YulhmIeiWa3268YIt3hITgy9EH2YPnA3d88CqTL/LX+UJ
VscggUwc+/RG0+ylabJJOjOiJc4IOoqV5gECDxsuS8T3a/SL24vIgro90+8bkKBq
D0SAUYi4/J2QxdC9GT5ktUJRPzGfczf5ZvPcASGXnR5YfxrKu2Vk+lkDa88TXgJ2
22FqG51Frh6PXAQOhOZvsk1d0+TNe6OmDmLpw9CH3xIvOlnNdORl9IEWgkJmECfH
2+nVQQp8JHoLIMllM6aH4VcOQVRd5Sd2mTj43HqbiLNxL+h8u1FNr8TqU3gMMWGm
ZfUA6A4NAC/zpA==
-----END CERTIFICATE-----
Generated at Mon May 12 11:07:48 2025 by rpki-client