Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft
File: E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft (raw, json)
Hash identifier: HI0QDEceor+DOLY2hopq8UCypL80Bl4IqNbsHWoAMNc=
Subject key identifier: CB:5B:AD:61:96:F3:86:36:88:EA:DA:87:74:7D:0E:86:F4:A9:0B:71
Authority key identifier: 13:B4:21:B8:2A:B7:BB:A6:E2:F5:5E:90:2A:9F:B8:1F:A3:AF:29:8F
Certificate issuer: /CN=13b421b82ab7bba6e2f55e902a9fb81fa3af298f
Certificate serial: 0199FCC68ACBA58A62E8A91F58BEEB8C316C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E7QhuCq3u6bi9V6QKp-4H6OvKY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft
Manifest number: 032E
Signing time: Sun 19 Oct 2025 14:01:34 +0000
Manifest this update: Sun 19 Oct 2025 14:01:34 +0000
Manifest next update: Mon 20 Oct 2025 14:01:34 +0000
Files and hashes: 1: E7QhuCq3u6bi9V6QKp-4H6OvKY8.crl (hash: HGc9v7kGpSoIvYcwyZ8JxQn5IKsWhUKVOwWxAMJx52A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/E7QhuCq3u6bi9V6QKp-4H6OvKY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:8a:cb:a5:8a:62:e8:a9:1f:58:be:eb:8c:31:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13b421b82ab7bba6e2f55e902a9fb81fa3af298f
Validity
Not Before: Oct 19 14:01:34 2025 GMT
Not After : Oct 20 14:01:34 2025 GMT
Subject: CN=cb5bad6196f3863688eada87747d0e86f4a90b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:21:4d:62:d2:22:0d:a6:e8:7a:5b:84:a0:ae:
64:60:ac:0f:21:21:34:ae:5e:76:5a:9c:56:42:9c:
c2:82:01:74:c6:c8:f1:6f:ed:20:7a:f9:29:28:97:
ec:a6:a1:4d:e5:fd:c7:48:8c:3e:cc:63:b5:43:f7:
44:4e:0e:c7:37:dd:60:f8:38:c0:f2:18:95:ca:ce:
10:6e:48:a0:3c:19:73:49:74:eb:b6:20:04:76:c4:
98:6b:fb:d6:a2:cd:50:9e:b1:c0:a7:91:83:6a:76:
10:1b:10:06:92:d5:03:ed:f5:4f:00:27:7d:19:d5:
70:13:78:42:12:26:3e:8a:9c:e7:c9:c6:f4:d2:15:
8e:ff:10:ba:b7:29:bf:80:5a:7a:c6:a7:03:79:41:
97:90:57:84:b2:14:60:5c:9f:91:a3:34:53:e4:78:
ed:ae:1a:a9:5a:84:b8:d4:66:d3:c4:2d:46:4f:90:
33:ed:11:e5:87:d5:bd:b7:ec:ae:ff:b8:39:b1:2e:
c5:e8:45:76:fc:aa:cf:5c:c5:27:a6:8a:74:27:3d:
97:c4:68:2b:3a:1e:66:64:df:d3:43:85:52:65:97:
13:44:ab:62:19:3a:bf:fc:21:1c:18:7b:1d:4a:97:
48:01:fe:2e:cc:29:5d:ce:a6:41:12:ef:da:2a:b9:
ae:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5B:AD:61:96:F3:86:36:88:EA:DA:87:74:7D:0E:86:F4:A9:0B:71
X509v3 Authority Key Identifier:
keyid:13:B4:21:B8:2A:B7:BB:A6:E2:F5:5E:90:2A:9F:B8:1F:A3:AF:29:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E7QhuCq3u6bi9V6QKp-4H6OvKY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/053310-03af-4434-8307-dfa707940537/1/E7QhuCq3u6bi9V6QKp-4H6OvKY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:0f:db:34:c7:f2:64:7b:18:88:c3:3c:08:b6:2c:99:eb:49:
4a:2d:00:11:99:c1:85:e0:1e:72:8f:9a:f2:df:08:52:ed:23:
43:1f:2a:ae:89:4e:c1:9b:af:fb:ca:0c:04:52:dc:da:72:80:
fd:61:13:fc:32:12:bf:d9:d7:b1:6a:9d:94:d1:41:01:dc:76:
1f:04:3d:0f:7f:c1:d6:d8:15:1e:04:2a:d0:fd:dc:ac:c6:3c:
3e:21:a0:ec:ce:06:86:db:7e:b7:2e:94:7c:0b:6b:27:6c:9e:
66:e1:47:93:7f:6e:94:4d:2e:54:9d:f0:e3:94:3f:27:a5:45:
c4:04:b1:ef:f8:6f:68:a0:e8:cb:d5:da:64:7b:5f:88:ae:f9:
46:09:58:91:48:e7:20:54:54:72:b0:f9:3b:6a:1d:b7:2f:20:
6f:28:f7:f5:44:b8:fb:5d:da:7a:f5:62:78:83:6a:3f:49:89:
59:1b:d4:30:ca:1d:d5:e8:8b:6b:ac:4b:92:64:71:a4:14:f7:
68:bf:87:35:09:a6:1d:8f:93:9c:9f:d6:1b:4a:8e:52:98:c2:
50:af:d6:bc:29:3d:79:00:20:7d:e0:a8:78:3b:20:d0:0a:5e:
25:55:02:97:e9:66:76:78:2a:51:e7:59:e0:19:64:22:4f:36:
7b:0a:11:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xorLpYpi6KkfWL7rjDFsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzYjQyMWI4MmFiN2JiYTZlMmY1NWU5MDJhOWZiODFmYTNh
ZjI5OGYwHhcNMjUxMDE5MTQwMTM0WhcNMjUxMDIwMTQwMTM0WjAzMTEwLwYDVQQD
EyhjYjViYWQ2MTk2ZjM4NjM2ODhlYWRhODc3NDdkMGU4NmY0YTkwYjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2iFNYtIiDaboeluEoK5kYKwPISE0
rl52WpxWQpzCggF0xsjxb+0gevkpKJfspqFN5f3HSIw+zGO1Q/dETg7HN91g+DjA
8hiVys4QbkigPBlzSXTrtiAEdsSYa/vWos1QnrHAp5GDanYQGxAGktUD7fVPACd9
GdVwE3hCEiY+ipznycb00hWO/xC6tym/gFp6xqcDeUGXkFeEshRgXJ+RozRT5Hjt
rhqpWoS41GbTxC1GT5Az7RHlh9W9t+yu/7g5sS7F6EV2/KrPXMUnpop0Jz2XxGgr
Oh5mZN/TQ4VSZZcTRKtiGTq//CEcGHsdSpdIAf4uzCldzqZBEu/aKrmufwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMtbrWGW84Y2iOrah3R9Dob0qQtxMB8GA1UdIwQY
MBaAFBO0Ibgqt7um4vVekCqfuB+jrymPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRTdRaHVDcTN1NmJpOVY2UUtwLTRINk92S1k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNTMzMTAtMDNhZi00NDM0LTgzMDct
ZGZhNzA3OTQwNTM3LzEvRTdRaHVDcTN1NmJpOVY2UUtwLTRINk92S1k4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8wNTMzMTAtMDNhZi00NDM0LTgzMDctZGZhNzA3OTQwNTM3
LzEvRTdRaHVDcTN1NmJpOVY2UUtwLTRINk92S1k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGw/bNMfy
ZHsYiMM8CLYsmetJSi0AEZnBheAeco+a8t8IUu0jQx8qrolOwZuv+8oMBFLc2nKA
/WET/DISv9nXsWqdlNFBAdx2HwQ9D3/B1tgVHgQq0P3crMY8PiGg7M4Ghtt+ty6U
fAtrJ2yeZuFHk39ulE0uVJ3w45Q/J6VFxASx7/hvaKDoy9XaZHtfiK75RglYkUjn
IFRUcrD5O2odty8gbyj39US4+13aevVieINqP0mJWRvUMMod1eiLa6xLkmRxpBT3
aL+HNQmmHY+TnJ/WG0qOUpjCUK/WvCk9eQAgfeCoeDsg0ApeJVUCl+lmdngqUedZ
4BlkIk82ewoRHA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:42:00 2025 by rpki-client