Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
File: r5aNFt0rQdNStf0zxJs-xP2tQlg.mft (raw, json)
Hash identifier: /jQbR8nLn3rUbYM3lzZSMRqpUf/cgi9qDGPcG9yLkqw=
Subject key identifier: B9:00:5D:92:82:D2:94:B0:62:1A:B9:F0:08:4B:C6:7F:5E:FA:BD:C6
Authority key identifier: AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
Certificate issuer: /CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Certificate serial: 0198D7A8E4FC9AED74C061C84112E9FDDFCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
Manifest number: 0F5B
Signing time: Sat 23 Aug 2025 16:00:26 +0000
Manifest this update: Sat 23 Aug 2025 16:00:26 +0000
Manifest next update: Sun 24 Aug 2025 16:00:26 +0000
Files and hashes: 1: r5aNFt0rQdNStf0zxJs-xP2tQlg.crl (hash: Dz+r2DIUvTR1yxfMVOD2dnVUhUee2U91uHPPBsBfoi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:e4:fc:9a:ed:74:c0:61:c8:41:12:e9:fd:df:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Validity
Not Before: Aug 23 16:00:26 2025 GMT
Not After : Aug 24 16:00:26 2025 GMT
Subject: CN=b9005d9282d294b0621ab9f0084bc67f5efabdc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:4c:99:0b:76:03:52:a8:d7:33:e4:02:30:af:
b9:57:d0:79:11:89:60:62:ad:0f:21:4f:e1:77:aa:
49:2f:70:fe:bb:b5:32:ba:cd:13:a7:15:7a:c4:44:
17:0c:ab:27:f6:28:ca:c4:f7:1b:4d:1a:92:67:b5:
4b:92:f1:66:00:e6:0b:cf:32:29:f4:f4:dc:b8:35:
0e:84:12:33:5f:d9:59:d9:f3:b7:d8:5f:e7:ba:35:
7a:54:d9:96:45:fc:7e:da:da:b2:30:59:7b:21:b8:
2f:62:e0:cd:bc:04:11:22:72:ea:c6:8e:09:42:9a:
c3:6e:62:3a:00:81:22:91:81:10:ee:c5:ee:d2:1e:
34:10:fd:b3:2d:54:d4:62:db:67:13:c9:75:d8:dc:
08:2c:9f:35:8b:13:06:8e:ab:44:7f:61:c2:df:52:
d6:a8:1e:5a:21:5c:fd:d7:62:69:97:45:42:f5:5e:
5d:26:87:df:1c:43:34:6d:ed:bc:f8:47:af:ff:ce:
1c:5d:2d:a7:95:f9:c0:4e:43:b7:02:19:f6:7a:ad:
36:69:aa:fb:f9:e7:0b:4c:ba:82:e8:2e:fa:a0:b8:
d9:56:54:72:b7:d1:50:1d:28:b1:68:74:9c:05:23:
b7:5f:5b:8a:0c:4e:64:fc:e6:ed:a4:f5:33:ef:f9:
5e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:00:5D:92:82:D2:94:B0:62:1A:B9:F0:08:4B:C6:7F:5E:FA:BD:C6
X509v3 Authority Key Identifier:
keyid:AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ee:5f:09:1d:a5:44:35:e7:6d:7e:e4:9f:c0:43:92:c5:30:
1d:46:57:eb:1a:27:3b:49:84:d9:e1:99:8c:9b:64:b4:31:2f:
11:c1:2f:a7:17:69:9f:20:70:c7:87:7f:a5:2c:42:32:34:93:
37:e2:7e:f4:6a:41:42:62:68:38:b3:89:34:58:e9:01:0d:75:
ff:75:5c:21:9a:ca:ef:37:b9:a5:93:6c:9d:9f:be:7a:32:b0:
29:6d:74:96:57:e5:a4:d6:f8:79:8d:b2:f3:0c:dd:12:f2:55:
0f:3a:3a:1a:7b:0c:04:c3:40:52:29:23:df:e5:36:a3:d2:33:
43:2b:fb:38:04:e2:08:d3:25:99:1d:88:d6:af:31:42:21:f6:
cb:4f:39:31:44:55:69:25:ee:12:b4:e5:f9:e1:95:a8:c8:cc:
0c:c7:c5:1b:07:a1:05:7f:cf:75:d3:0f:14:0f:13:0f:14:3c:
8c:e6:86:c7:60:0f:79:d4:be:d6:56:7d:48:06:3f:d0:db:08:
ff:3e:49:8c:c9:6c:fd:14:8d:bf:48:8c:42:76:eb:b2:af:4c:
20:42:00:13:25:9c:52:9c:c5:32:f9:ec:bb:8c:26:d9:e2:be:
f5:26:a9:e2:31:b7:9a:58:58:11:3d:31:ee:5d:e5:b8:6a:7c:
a9:80:fe:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXqOT8mu10wGHIQRLp/d/NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmOTY4ZDE2ZGQyYjQxZDM1MmI1ZmQzM2M0OWIzZWM0ZmRh
ZDQyNTgwHhcNMjUwODIzMTYwMDI2WhcNMjUwODI0MTYwMDI2WjAzMTEwLwYDVQQD
EyhiOTAwNWQ5MjgyZDI5NGIwNjIxYWI5ZjAwODRiYzY3ZjVlZmFiZGM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1kyZC3YDUqjXM+QCMK+5V9B5EYlg
Yq0PIU/hd6pJL3D+u7Uyus0TpxV6xEQXDKsn9ijKxPcbTRqSZ7VLkvFmAOYLzzIp
9PTcuDUOhBIzX9lZ2fO32F/nujV6VNmWRfx+2tqyMFl7IbgvYuDNvAQRInLqxo4J
QprDbmI6AIEikYEQ7sXu0h40EP2zLVTUYttnE8l12NwILJ81ixMGjqtEf2HC31LW
qB5aIVz912Jpl0VC9V5dJoffHEM0be28+Eev/84cXS2nlfnATkO3Ahn2eq02aar7
+ecLTLqC6C76oLjZVlRyt9FQHSixaHScBSO3X1uKDE5k/ObtpPUz7/leyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLkAXZKC0pSwYhq58AhLxn9e+r3GMB8GA1UdIwQY
MBaAFK+WjRbdK0HTUrX9M8SbPsT9rUJYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjVhTkZ0MHJRZE5TdGYwenhKcy14UDJ0UWxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9iZTQzOWUtZDNjOC00OGExLWE3Yjct
YzI5NmVjNGIyMTcwLzEvcjVhTkZ0MHJRZE5TdGYwenhKcy14UDJ0UWxnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi9iZTQzOWUtZDNjOC00OGExLWE3YjctYzI5NmVjNGIyMTcw
LzEvcjVhTkZ0MHJRZE5TdGYwenhKcy14UDJ0UWxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT+5fCR2l
RDXnbX7kn8BDksUwHUZX6xonO0mE2eGZjJtktDEvEcEvpxdpnyBwx4d/pSxCMjST
N+J+9GpBQmJoOLOJNFjpAQ11/3VcIZrK7ze5pZNsnZ++ejKwKW10llflpNb4eY2y
8wzdEvJVDzo6GnsMBMNAUikj3+U2o9IzQyv7OATiCNMlmR2I1q8xQiH2y085MURV
aSXuErTl+eGVqMjMDMfFGwehBX/PddMPFA8TDxQ8jOaGx2APedS+1lZ9SAY/0NsI
/z5JjMls/RSNv0iMQnbrsq9MIEIAEyWcUpzFMvnsu4wm2eK+9Sap4jG3mlhYET0x
7l3luGp8qYD+dg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 20:05:55 2025 by rpki-client