Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
File: XbdXv1dG8moHySCHAbDVS2m8M2Q.mft (raw, json)
Hash identifier: u2iEMAgHKaU5LczGz1tGKxUJTt8v1j4t6TO1kmjaHs0=
Subject key identifier: F0:3F:6F:72:A7:87:20:BA:B5:7D:99:A7:81:E9:21:D0:59:73:3C:84
Authority key identifier: 5D:B7:57:BF:57:46:F2:6A:07:C9:20:87:01:B0:D5:4B:69:BC:33:64
Certificate issuer: /CN=5db757bf5746f26a07c9208701b0d54b69bc3364
Certificate serial: 0198D6CCE30FF70D2C98FCB7D3C58E64D9EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
Manifest number: 0516
Signing time: Sat 23 Aug 2025 12:00:08 +0000
Manifest this update: Sat 23 Aug 2025 12:00:08 +0000
Manifest next update: Sun 24 Aug 2025 12:00:08 +0000
Files and hashes: 1: XbdXv1dG8moHySCHAbDVS2m8M2Q.crl (hash: GoAcx3H0iAnIMC0p+CjRis8xvEfsQ8HqQDSAlQmVTk4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cc:e3:0f:f7:0d:2c:98:fc:b7:d3:c5:8e:64:d9:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5db757bf5746f26a07c9208701b0d54b69bc3364
Validity
Not Before: Aug 23 12:00:08 2025 GMT
Not After : Aug 24 12:00:08 2025 GMT
Subject: CN=f03f6f72a78720bab57d99a781e921d059733c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:15:ff:a0:5f:d7:f6:fb:dd:ff:1b:49:d7:42:
9e:18:f6:c2:21:48:be:5e:3b:e6:54:a5:24:c1:72:
0c:65:b1:b8:99:35:3a:62:2c:67:f4:d8:0f:e9:dd:
99:35:59:f4:91:5c:33:bd:9d:d6:77:e1:2f:ad:e7:
e3:26:d8:6d:ee:32:d5:84:84:bc:6d:26:81:ed:f3:
54:70:a0:99:ce:56:df:60:cb:b5:0f:a7:cc:81:88:
eb:9e:1a:ec:69:51:fc:5b:57:92:68:b4:36:4f:fd:
4a:da:c9:71:24:93:1f:fa:9c:cc:63:83:88:3e:9c:
6b:4b:98:26:ae:e5:8a:7d:37:3f:2d:65:be:4c:e0:
69:23:d6:14:e3:f5:8f:2d:96:c7:d8:b9:ec:52:f0:
56:8b:e0:37:81:47:dc:17:c8:87:44:d5:39:e2:a5:
69:28:11:97:e6:2e:57:85:83:23:c8:90:40:f3:52:
cf:eb:fd:bf:01:05:6d:b6:4a:cf:a0:96:8b:bf:f6:
b6:5e:3b:c3:9a:b0:74:1c:23:a8:e1:4a:99:a4:a6:
14:45:be:2e:b5:bd:7a:a0:68:17:04:f6:16:03:0c:
64:40:b5:60:8a:72:bd:c9:e6:ee:e0:47:4e:30:fa:
e2:73:62:dc:9d:ae:24:05:70:f0:62:3d:a6:69:6b:
da:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:3F:6F:72:A7:87:20:BA:B5:7D:99:A7:81:E9:21:D0:59:73:3C:84
X509v3 Authority Key Identifier:
keyid:5D:B7:57:BF:57:46:F2:6A:07:C9:20:87:01:B0:D5:4B:69:BC:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:82:47:df:71:c6:28:4e:14:98:59:b9:46:10:a4:e5:e8:3c:
06:00:ab:90:6d:af:84:74:92:ca:9e:23:7d:26:34:96:a0:86:
7c:8d:83:4c:16:b0:af:96:5a:1f:86:8d:26:8b:d0:0a:c1:af:
dd:e8:45:7e:11:57:77:6b:4d:6f:6b:88:08:f5:81:2e:b3:20:
05:02:6c:65:e7:3a:30:41:72:8a:1a:16:ad:72:64:ad:2c:06:
bb:51:fa:da:62:99:6a:ea:63:e7:e0:70:fc:3a:fb:2d:ee:b1:
8c:b3:bc:5f:1a:22:ae:1d:78:e7:d6:31:49:77:07:75:cf:c6:
21:e9:ac:4a:2e:3d:a0:74:d3:10:b0:61:36:0f:d1:49:3e:c5:
c3:9f:c1:36:5a:cd:b2:03:eb:29:b2:4e:96:a3:8c:41:2b:3d:
36:de:9f:1f:62:bb:aa:d7:09:ce:1e:9e:16:e4:e3:bf:e5:61:
f7:38:95:6d:28:9f:d1:61:bc:0e:17:37:14:d7:04:02:6e:ab:
88:9b:c3:ec:c1:64:44:fe:de:e2:59:cc:2a:1b:5c:68:16:d8:
a0:57:44:dc:00:cb:b3:19:cf:2e:58:9b:db:51:bb:72:71:5d:
66:8f:89:b7:37:07:f3:3a:0e:fc:39:41:ec:93:7f:8b:30:09:
6e:c3:c5:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzOMP9w0smPy308WOZNnsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYjc1N2JmNTc0NmYyNmEwN2M5MjA4NzAxYjBkNTRiNjli
YzMzNjQwHhcNMjUwODIzMTIwMDA4WhcNMjUwODI0MTIwMDA4WjAzMTEwLwYDVQQD
EyhmMDNmNmY3MmE3ODcyMGJhYjU3ZDk5YTc4MWU5MjFkMDU5NzMzYzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xX/oF/X9vvd/xtJ10KeGPbCIUi+
XjvmVKUkwXIMZbG4mTU6Yixn9NgP6d2ZNVn0kVwzvZ3Wd+EvrefjJtht7jLVhIS8
bSaB7fNUcKCZzlbfYMu1D6fMgYjrnhrsaVH8W1eSaLQ2T/1K2slxJJMf+pzMY4OI
PpxrS5gmruWKfTc/LWW+TOBpI9YU4/WPLZbH2LnsUvBWi+A3gUfcF8iHRNU54qVp
KBGX5i5XhYMjyJBA81LP6/2/AQVttkrPoJaLv/a2XjvDmrB0HCOo4UqZpKYURb4u
tb16oGgXBPYWAwxkQLVginK9yebu4EdOMPric2Lcna4kBXDwYj2maWva4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPA/b3KnhyC6tX2Zp4HpIdBZczyEMB8GA1UdIwQY
MBaAFF23V79XRvJqB8kghwGw1UtpvDNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGJkWHYxZEc4bW9IeVNDSEFiRFZTMm04TTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yYjMzODctM2IzNC00NTdlLWFiMWMt
M2FiNTJiM2JjYzNiLzEvWGJkWHYxZEc4bW9IeVNDSEFiRFZTMm04TTJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS8yYjMzODctM2IzNC00NTdlLWFiMWMtM2FiNTJiM2JjYzNi
LzEvWGJkWHYxZEc4bW9IeVNDSEFiRFZTMm04TTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYIJH33HG
KE4UmFm5RhCk5eg8BgCrkG2vhHSSyp4jfSY0lqCGfI2DTBawr5ZaH4aNJovQCsGv
3ehFfhFXd2tNb2uICPWBLrMgBQJsZec6MEFyihoWrXJkrSwGu1H62mKZaupj5+Bw
/Dr7Le6xjLO8Xxoirh1459YxSXcHdc/GIemsSi49oHTTELBhNg/RST7Fw5/BNlrN
sgPrKbJOlqOMQSs9Nt6fH2K7qtcJzh6eFuTjv+Vh9ziVbSif0WG8Dhc3FNcEAm6r
iJvD7MFkRP7e4lnMKhtcaBbYoFdE3ADLsxnPLlib21G7cnFdZo+JtzcH8zoO/DlB
7JN/izAJbsPFjw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 22:45:44 2025 by rpki-client