Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
File: 5KnudPLZhMiKs7ma5x0LfHuvgVA.mft (raw, json)
Hash identifier: pzjGIn4ooYZb3f8W9S4f10Pa7tY97j4lJ0jjX85rSXs=
Subject key identifier: 22:1E:EC:33:9A:28:FC:32:D9:42:8C:7A:A6:D4:4F:73:91:DD:B1:29
Authority key identifier: E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
Certificate issuer: /CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Certificate serial: 0198D472E7BDD375BB7474FA678332F8E01D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 01:02:36 +0000
Manifest this update: Sat 23 Aug 2025 01:02:36 +0000
Manifest next update: Sun 24 Aug 2025 01:02:36 +0000
Files and hashes: 1: 1kmQygnKJuFomMWscO7_tmV5MPY.roa (hash: 1R7F/hqJ/U8XRXU5qTBNp/iBMwQ2HNOAJ68qC4TlDwI=)
2: 5KnudPLZhMiKs7ma5x0LfHuvgVA.crl (hash: uoe6Z9vyKyavjnun08fXH1T5o5tmfcOPMjo1vW2AodI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:e7:bd:d3:75:bb:74:74:fa:67:83:32:f8:e0:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Validity
Not Before: Aug 23 01:02:36 2025 GMT
Not After : Aug 24 01:02:36 2025 GMT
Subject: CN=221eec339a28fc32d9428c7aa6d44f7391ddb129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ac:a0:d9:dc:a6:9a:d8:95:86:f4:9d:86:22:
fb:59:01:81:85:1c:46:00:65:6c:fa:df:45:87:c9:
c8:ab:0c:be:a3:c8:ef:ce:15:40:90:e9:57:97:49:
b5:af:8b:5f:17:f8:c4:07:7c:c8:f6:8f:c9:f5:8e:
3e:a6:57:fd:61:ac:2c:1a:10:9e:7b:86:b8:76:45:
f2:58:51:3b:c0:3a:29:f6:22:42:5f:a7:76:8e:51:
16:e9:83:dc:fa:b5:b0:82:d6:4e:90:91:04:90:ee:
3d:8d:8b:1a:ad:c0:71:b4:64:85:ed:bb:2c:d1:9b:
a2:c9:66:05:e3:aa:7e:b9:c7:32:38:6a:ae:cf:5c:
72:fb:63:42:cb:a4:9f:62:a9:17:90:ac:bc:ea:dc:
62:ed:45:46:dc:f3:90:41:e7:15:06:5f:7f:de:a6:
1f:1c:8b:bc:5b:f8:69:9e:af:4f:2f:21:81:fd:29:
4d:bf:c6:73:02:79:dc:78:c8:bf:df:07:37:b0:2d:
4f:5b:bb:f6:7a:2d:7b:7f:31:0a:47:5f:75:22:b6:
29:aa:33:42:20:7f:65:3f:d7:db:58:62:94:e1:6c:
b1:6c:e5:1f:16:4e:93:d2:fc:3e:76:79:9d:9c:1a:
65:d3:72:4a:d7:71:c4:84:7d:c0:6f:1b:cb:6a:9a:
c6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1E:EC:33:9A:28:FC:32:D9:42:8C:7A:A6:D4:4F:73:91:DD:B1:29
X509v3 Authority Key Identifier:
keyid:E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:da:b1:49:76:cb:88:44:9b:bf:dd:f9:56:21:ad:1a:cd:f9:
79:9a:01:59:6d:fc:2c:51:5d:d2:95:84:19:12:91:a3:dc:59:
e1:0e:33:c8:06:09:2d:4b:dc:7c:78:fe:38:91:f6:eb:a0:b7:
66:31:ef:08:ac:de:8e:30:14:34:86:15:28:af:94:1b:5b:28:
9c:12:bd:b4:25:bd:09:60:15:36:92:a7:ef:9b:14:7f:9f:0b:
05:a1:8c:dc:2c:26:ba:a6:92:0a:35:92:35:71:f5:b3:56:ce:
52:0b:7d:02:34:b3:5c:29:ff:c7:48:87:5a:a9:78:10:89:87:
6b:fc:a2:96:d0:f1:92:54:81:3f:69:0d:d7:4b:bd:5d:71:fd:
9b:fb:2d:f2:22:66:49:be:24:ff:f5:74:7a:da:1d:62:22:b8:
38:d3:e8:2d:e3:ac:af:ef:0d:be:dc:02:9b:dd:1d:4c:42:4f:
1c:e0:f5:f4:e2:fa:8d:07:29:21:d1:f3:b4:cd:64:2e:3f:4a:
c3:ad:3d:d2:ba:c1:6f:a3:57:2b:34:57:f6:b5:b2:2a:2c:ed:
06:3b:79:30:ad:27:e6:29:f5:9f:1e:e9:83:d3:3a:5c:3f:0e:
75:7e:44:da:40:ff:bf:4a:e9:71:3c:7e:77:a4:e0:f0:98:29:
24:56:3d:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcue903W7dHT6Z4My+OAdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YTllZTc0ZjJkOTg0Yzg4YWIzYjk5YWU3MWQwYjdjN2Jh
ZjgxNTAwHhcNMjUwODIzMDEwMjM2WhcNMjUwODI0MDEwMjM2WjAzMTEwLwYDVQQD
EygyMjFlZWMzMzlhMjhmYzMyZDk0MjhjN2FhNmQ0NGY3MzkxZGRiMTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqyg2dymmtiVhvSdhiL7WQGBhRxG
AGVs+t9Fh8nIqwy+o8jvzhVAkOlXl0m1r4tfF/jEB3zI9o/J9Y4+plf9YawsGhCe
e4a4dkXyWFE7wDop9iJCX6d2jlEW6YPc+rWwgtZOkJEEkO49jYsarcBxtGSF7bss
0ZuiyWYF46p+uccyOGquz1xy+2NCy6SfYqkXkKy86txi7UVG3POQQecVBl9/3qYf
HIu8W/hpnq9PLyGB/SlNv8ZzAnnceMi/3wc3sC1PW7v2ei17fzEKR191IrYpqjNC
IH9lP9fbWGKU4WyxbOUfFk6T0vw+dnmdnBpl03JK13HEhH3AbxvLaprGDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCIe7DOaKPwy2UKMeqbUT3OR3bEpMB8GA1UdIwQY
MBaAFOSp7nTy2YTIirO5mucdC3x7r4FQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUtudWRQTFpoTWlLczdtYTV4MExmSHV2Z1ZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lYWRjOTUtZGFhZi00Nzc2LTliZTgt
ZDJjMGJlNDQ4NTYxLzEvNUtudWRQTFpoTWlLczdtYTV4MExmSHV2Z1ZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lYWRjOTUtZGFhZi00Nzc2LTliZTgtZDJjMGJlNDQ4NTYx
LzEvNUtudWRQTFpoTWlLczdtYTV4MExmSHV2Z1ZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjtqxSXbL
iESbv935ViGtGs35eZoBWW38LFFd0pWEGRKRo9xZ4Q4zyAYJLUvcfHj+OJH266C3
ZjHvCKzejjAUNIYVKK+UG1sonBK9tCW9CWAVNpKn75sUf58LBaGM3CwmuqaSCjWS
NXH1s1bOUgt9AjSzXCn/x0iHWql4EImHa/yiltDxklSBP2kN10u9XXH9m/st8iJm
Sb4k//V0etodYiK4ONPoLeOsr+8NvtwCm90dTEJPHOD19OL6jQcpIdHztM1kLj9K
w6090rrBb6NXKzRX9rWyKiztBjt5MK0n5in1nx7pg9M6XD8OdX5E2kD/v0rpcTx+
d6Tg8JgpJFY9Kg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:41 2025 by rpki-client