Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
File: 5pgECu2WLzBoge6mVTBA-5ptNMk.mft (raw, json)
Hash identifier: bdxM456SOXEOzH8A1fyTf3sErbADt9dYZnxhug+5krM=
Subject key identifier: 09:C7:2D:F9:14:23:35:04:8C:84:C3:C8:6C:9D:52:29:FA:55:4F:62
Authority key identifier: E6:98:04:0A:ED:96:2F:30:68:81:EE:A6:55:30:40:FB:9A:6D:34:C9
Certificate issuer: /CN=e698040aed962f306881eea6553040fb9a6d34c9
Certificate serial: 0198D4E09F511738EFDAEBF9902B0F6F9E24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5pgECu2WLzBoge6mVTBA-5ptNMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
Manifest number: 04ED
Signing time: Sat 23 Aug 2025 03:02:27 +0000
Manifest this update: Sat 23 Aug 2025 03:02:27 +0000
Manifest next update: Sun 24 Aug 2025 03:02:27 +0000
Files and hashes: 1: 5pgECu2WLzBoge6mVTBA-5ptNMk.crl (hash: nE3aB5uULTPHb2HrioS+VBiIqgWm8xfkFo2OlDRULRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/5pgECu2WLzBoge6mVTBA-5ptNMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:9f:51:17:38:ef:da:eb:f9:90:2b:0f:6f:9e:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e698040aed962f306881eea6553040fb9a6d34c9
Validity
Not Before: Aug 23 03:02:27 2025 GMT
Not After : Aug 24 03:02:27 2025 GMT
Subject: CN=09c72df9142335048c84c3c86c9d5229fa554f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ef:30:99:ef:5a:de:63:18:49:91:2f:2b:7b:
7e:96:38:c9:3d:be:43:e0:d0:7e:b0:25:94:8f:2c:
18:14:d5:d7:68:2e:80:9c:e6:13:c1:07:bf:fe:8e:
9f:c5:89:a3:17:03:1f:0b:2f:e2:28:da:e1:3f:88:
9e:8e:3e:f4:bd:e0:e0:4e:89:6c:17:a8:d2:02:34:
55:e6:90:93:80:af:a8:7d:3d:6e:b7:81:40:cc:2b:
d7:3a:74:80:7f:c1:09:65:fc:4f:c3:77:6d:c7:22:
71:b4:0a:93:ad:ae:95:2f:30:56:89:1c:72:66:67:
c7:95:7e:ff:b4:fd:a9:11:17:03:c9:bf:bd:2c:53:
2f:b9:ac:6a:60:ed:79:a4:a8:a8:e5:7a:37:4e:88:
3f:f1:bc:bb:2a:4c:14:87:10:6a:c1:0e:4e:26:b8:
9c:c6:da:a9:aa:2f:34:e7:ef:8e:69:55:a4:3f:03:
b4:ac:cd:a0:16:1d:19:93:60:e7:5f:0c:eb:6d:02:
64:75:59:7a:83:a5:0c:1f:2f:ea:2a:a9:23:b4:5b:
a3:5d:a7:8c:33:36:03:ec:a5:40:c4:63:5c:ea:0e:
a0:c5:57:46:cb:00:22:0c:fe:ff:46:35:3f:16:a7:
6c:b4:a9:8a:ab:e5:da:ec:5e:90:cc:6e:04:cb:8a:
9d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C7:2D:F9:14:23:35:04:8C:84:C3:C8:6C:9D:52:29:FA:55:4F:62
X509v3 Authority Key Identifier:
keyid:E6:98:04:0A:ED:96:2F:30:68:81:EE:A6:55:30:40:FB:9A:6D:34:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5pgECu2WLzBoge6mVTBA-5ptNMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/52ebd9-7d5b-452a-8f4f-e23497393b8f/1/5pgECu2WLzBoge6mVTBA-5ptNMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:e9:d1:98:ba:64:c0:14:d0:e0:3c:28:36:18:27:a6:85:8a:
b3:d0:81:94:0e:1a:62:e5:02:bf:29:4e:3f:fd:b2:fc:8f:1f:
71:ef:0a:74:57:d8:5d:53:88:16:24:6b:21:99:be:6c:ea:1f:
cd:3d:55:3a:7d:32:34:a4:0c:33:2c:28:5d:55:da:26:1c:bb:
b5:f5:b0:65:eb:30:08:fa:d2:7e:f4:c0:83:7c:72:8c:e2:70:
a8:3a:10:2c:4a:b1:a1:b6:e1:c6:a1:a4:c4:08:5f:c5:f0:55:
71:16:19:d0:ce:7c:64:74:e7:40:4e:4a:34:ed:b8:72:32:b9:
83:ca:d2:14:2f:45:1d:29:9c:41:0f:ea:bf:83:96:10:52:85:
87:4d:b6:60:94:c2:97:d0:4f:44:a9:5e:15:1b:7c:df:04:9d:
1a:56:d7:bd:35:e1:18:04:5f:71:03:9e:4c:90:da:df:37:be:
85:58:c5:a4:82:01:06:3d:74:b1:10:43:8e:de:5f:fd:0b:e2:
41:3a:d2:4b:8d:2b:70:25:75:d6:40:9e:c5:87:c8:d4:b7:3a:
59:8b:a9:90:e1:a3:d1:b3:56:2e:a7:b4:40:2e:b9:06:48:5d:
f0:be:62:34:75:c2:f1:1c:fb:1b:cf:f3:4b:87:7c:64:7a:17:
97:c5:48:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4J9RFzjv2uv5kCsPb54kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2OTgwNDBhZWQ5NjJmMzA2ODgxZWVhNjU1MzA0MGZiOWE2
ZDM0YzkwHhcNMjUwODIzMDMwMjI3WhcNMjUwODI0MDMwMjI3WjAzMTEwLwYDVQQD
EygwOWM3MmRmOTE0MjMzNTA0OGM4NGMzYzg2YzlkNTIyOWZhNTU0ZjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvu8wme9a3mMYSZEvK3t+ljjJPb5D
4NB+sCWUjywYFNXXaC6AnOYTwQe//o6fxYmjFwMfCy/iKNrhP4iejj70veDgTols
F6jSAjRV5pCTgK+ofT1ut4FAzCvXOnSAf8EJZfxPw3dtxyJxtAqTra6VLzBWiRxy
ZmfHlX7/tP2pERcDyb+9LFMvuaxqYO15pKio5Xo3Tog/8by7KkwUhxBqwQ5OJric
xtqpqi805++OaVWkPwO0rM2gFh0Zk2DnXwzrbQJkdVl6g6UMHy/qKqkjtFujXaeM
MzYD7KVAxGNc6g6gxVdGywAiDP7/RjU/FqdstKmKq+Xa7F6QzG4Ey4qdfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAnHLfkUIzUEjITDyGydUin6VU9iMB8GA1UdIwQY
MBaAFOaYBArtli8waIHuplUwQPuabTTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXBnRUN1MldMekJvZ2U2bVZUQkEtNXB0Tk1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81MmViZDktN2Q1Yi00NTJhLThmNGYt
ZTIzNDk3MzkzYjhmLzEvNXBnRUN1MldMekJvZ2U2bVZUQkEtNXB0Tk1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81MmViZDktN2Q1Yi00NTJhLThmNGYtZTIzNDk3MzkzYjhm
LzEvNXBnRUN1MldMekJvZ2U2bVZUQkEtNXB0Tk1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm+nRmLpk
wBTQ4DwoNhgnpoWKs9CBlA4aYuUCvylOP/2y/I8fce8KdFfYXVOIFiRrIZm+bOof
zT1VOn0yNKQMMywoXVXaJhy7tfWwZeswCPrSfvTAg3xyjOJwqDoQLEqxobbhxqGk
xAhfxfBVcRYZ0M58ZHTnQE5KNO24cjK5g8rSFC9FHSmcQQ/qv4OWEFKFh022YJTC
l9BPRKleFRt83wSdGlbXvTXhGARfcQOeTJDa3ze+hVjFpIIBBj10sRBDjt5f/Qvi
QTrSS40rcCV11kCexYfI1Lc6WYupkOGj0bNWLqe0QC65Bkhd8L5iNHXC8Rz7G8/z
S4d8ZHoXl8VI1A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:52 2025 by rpki-client