Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
File: 5KnudPLZhMiKs7ma5x0LfHuvgVA.mft (raw, json)
Hash identifier: 6147AmuA+SMSeyONuG3VB6w71HZrKeHMcpos0eKZEBg=
Subject key identifier: 8F:15:28:4F:F8:19:88:88:FE:9D:78:BD:6C:AD:F0:FF:D3:C0:E3:9B
Authority key identifier: E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
Certificate issuer: /CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Certificate serial: 0197B890130ACB9ED541ACF20E54175D2CBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 22:02:19 +0000
Manifest this update: Sat 28 Jun 2025 22:02:19 +0000
Manifest next update: Sun 29 Jun 2025 22:02:19 +0000
Files and hashes: 1: 1kmQygnKJuFomMWscO7_tmV5MPY.roa (hash: 1R7F/hqJ/U8XRXU5qTBNp/iBMwQ2HNOAJ68qC4TlDwI=)
2: 5KnudPLZhMiKs7ma5x0LfHuvgVA.crl (hash: 3tS8GYH2LLsAkvhxWVLtt3PWy8CUizG9xqZal+ey8fQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:13:0a:cb:9e:d5:41:ac:f2:0e:54:17:5d:2c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Validity
Not Before: Jun 28 22:02:19 2025 GMT
Not After : Jun 29 22:02:19 2025 GMT
Subject: CN=8f15284ff8198888fe9d78bd6cadf0ffd3c0e39b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8d:33:ea:d5:85:47:54:d0:1b:32:b2:2b:28:
bb:f4:a7:12:de:f4:97:12:e2:08:67:fa:3d:cb:2d:
fd:13:88:68:81:56:50:49:98:b1:9d:56:cd:ba:c7:
d5:49:43:be:b6:8a:e2:a8:6e:76:ec:fc:be:f5:d9:
72:a1:1f:1e:63:89:dc:f3:f4:d3:79:3a:7c:56:e3:
8e:fd:18:cc:99:30:55:4d:38:66:3a:cb:cc:f5:bc:
e3:6a:0d:d7:51:8c:72:d6:d0:dc:ce:45:e4:46:ad:
95:d8:6b:6d:47:98:9b:c8:66:c2:11:b7:98:62:40:
d6:e3:62:5a:5d:e0:16:a5:e1:0f:18:2c:46:62:7c:
75:6c:91:03:09:b2:48:bf:f5:c9:f7:83:9e:14:16:
3f:a2:83:74:6b:5b:a7:a7:a6:68:26:75:96:01:10:
82:d7:60:54:3e:5f:03:8e:9d:af:e2:d2:6c:c9:68:
28:20:96:a7:ea:f9:40:7c:35:da:5e:9b:60:b4:51:
30:3a:0c:b2:dd:4a:2a:3f:7a:da:46:06:a2:d3:a0:
ce:ac:ae:3b:bd:2b:1c:fa:70:eb:bb:75:b5:db:18:
0d:32:0f:97:40:43:46:04:c7:37:03:92:f3:10:90:
71:a2:30:21:48:48:79:eb:67:e0:a2:71:d9:01:01:
ba:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:15:28:4F:F8:19:88:88:FE:9D:78:BD:6C:AD:F0:FF:D3:C0:E3:9B
X509v3 Authority Key Identifier:
keyid:E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:b4:0d:5c:b6:c9:3c:21:28:e6:0c:1f:ab:bb:6a:46:cc:eb:
31:71:da:10:6f:dc:83:7a:2b:3b:3a:6e:68:fd:04:3c:27:d0:
02:ae:e1:9d:f8:7c:80:2a:04:d5:71:aa:96:e1:1d:2a:90:92:
10:de:0a:fb:36:04:79:15:0b:9c:0e:f4:15:3b:df:c7:c8:02:
2a:83:b1:f0:b6:62:c6:a2:6f:e4:27:19:97:fb:d7:bb:b0:10:
2a:71:6b:2b:6b:a6:13:38:af:b1:3f:ab:cc:74:a7:75:4d:0f:
86:35:12:00:9b:5e:3c:3f:2a:f9:31:67:0c:76:9b:a0:39:3d:
d3:9a:2c:e8:1e:23:e2:e5:43:d7:c5:10:64:1a:60:82:de:81:
49:c8:fc:ec:24:9b:ff:96:b7:ab:46:e0:f4:47:4d:a9:4f:3e:
96:7a:27:a5:27:b6:c2:49:0e:f0:5a:b0:39:95:cf:70:bf:d1:
4d:5d:fd:85:08:e8:96:72:b3:95:2a:81:9f:6a:f5:ae:fe:ec:
ff:d6:e9:2b:15:78:1e:88:a6:80:4c:e2:a3:79:75:b2:e1:29:
95:fb:3d:0e:92:28:00:28:2f:08:40:42:36:a6:78:1a:1a:28:
c1:98:62:d2:67:81:30:a2:42:11:6c:7c:71:4d:05:1e:79:bc:
3f:f7:c2:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4kBMKy57VQazyDlQXXSy8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YTllZTc0ZjJkOTg0Yzg4YWIzYjk5YWU3MWQwYjdjN2Jh
ZjgxNTAwHhcNMjUwNjI4MjIwMjE5WhcNMjUwNjI5MjIwMjE5WjAzMTEwLwYDVQQD
Eyg4ZjE1Mjg0ZmY4MTk4ODg4ZmU5ZDc4YmQ2Y2FkZjBmZmQzYzBlMzliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi40z6tWFR1TQGzKyKyi79KcS3vSX
EuIIZ/o9yy39E4hogVZQSZixnVbNusfVSUO+toriqG527Py+9dlyoR8eY4nc8/TT
eTp8VuOO/RjMmTBVTThmOsvM9bzjag3XUYxy1tDczkXkRq2V2GttR5ibyGbCEbeY
YkDW42JaXeAWpeEPGCxGYnx1bJEDCbJIv/XJ94OeFBY/ooN0a1unp6ZoJnWWARCC
12BUPl8Djp2v4tJsyWgoIJan6vlAfDXaXptgtFEwOgyy3UoqP3raRgai06DOrK47
vSsc+nDru3W12xgNMg+XQENGBMc3A5LzEJBxojAhSEh562fgonHZAQG6kQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI8VKE/4GYiI/p14vWyt8P/TwOObMB8GA1UdIwQY
MBaAFOSp7nTy2YTIirO5mucdC3x7r4FQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUtudWRQTFpoTWlLczdtYTV4MExmSHV2Z1ZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lYWRjOTUtZGFhZi00Nzc2LTliZTgt
ZDJjMGJlNDQ4NTYxLzEvNUtudWRQTFpoTWlLczdtYTV4MExmSHV2Z1ZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lYWRjOTUtZGFhZi00Nzc2LTliZTgtZDJjMGJlNDQ4NTYx
LzEvNUtudWRQTFpoTWlLczdtYTV4MExmSHV2Z1ZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiLQNXLbJ
PCEo5gwfq7tqRszrMXHaEG/cg3orOzpuaP0EPCfQAq7hnfh8gCoE1XGqluEdKpCS
EN4K+zYEeRULnA70FTvfx8gCKoOx8LZixqJv5CcZl/vXu7AQKnFrK2umEzivsT+r
zHSndU0PhjUSAJtePD8q+TFnDHaboDk905os6B4j4uVD18UQZBpggt6BScj87CSb
/5a3q0bg9EdNqU8+lnonpSe2wkkO8FqwOZXPcL/RTV39hQjolnKzlSqBn2r1rv7s
/9bpKxV4HoimgEzio3l1suEplfs9DpIoACgvCEBCNqZ4GhoowZhi0meBMKJCEWx8
cU0FHnm8P/fCDg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:26:52 2025 by rpki-client