Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
File: 5DWo9PNqSBGpLRlhc-HEmarMd9U.mft (raw, json)
Hash identifier: MlcLZQX/A2ItjzcvFfhBgL9E0G9iVet29IJTfBMUn1U=
Subject key identifier: 3A:D0:AD:CC:9D:3D:09:09:4B:93:35:0A:B2:F1:E7:28:79:C8:5D:72
Authority key identifier: E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
Certificate issuer: /CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Certificate serial: 0198D9990C68BB0D2E38EF9281940628EC80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
Manifest number: 0D29
Signing time: Sun 24 Aug 2025 01:02:22 +0000
Manifest this update: Sun 24 Aug 2025 01:02:22 +0000
Manifest next update: Mon 25 Aug 2025 01:02:22 +0000
Files and hashes: 1: 5DWo9PNqSBGpLRlhc-HEmarMd9U.crl (hash: zllcOndXnA+x8gErdDjQ1DQfyVLOiwlq5FKi6TAQYto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:99:0c:68:bb:0d:2e:38:ef:92:81:94:06:28:ec:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Validity
Not Before: Aug 24 01:02:22 2025 GMT
Not After : Aug 25 01:02:22 2025 GMT
Subject: CN=3ad0adcc9d3d09094b93350ab2f1e72879c85d72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:67:f8:af:66:bc:3e:cb:9a:cb:eb:96:3f:c6:
20:c0:69:94:fa:b4:58:e7:74:06:fb:c9:4d:39:26:
30:64:60:6b:20:23:39:37:8f:c6:27:71:27:11:88:
e9:47:02:c6:75:26:a3:e2:9e:4a:b2:d1:e5:ec:fd:
52:20:55:9b:85:d3:da:ef:73:a4:c1:a2:99:3e:de:
24:ce:41:7e:4c:4d:d2:26:7a:2e:9c:f8:bd:20:a5:
62:3a:78:40:99:22:e8:18:94:e2:d2:b6:8f:c1:3d:
e0:a6:9d:d4:92:0b:0a:34:45:51:7a:d8:6c:7d:d1:
db:47:26:d2:97:00:55:4d:4d:7a:0d:9f:ee:cb:cc:
0c:b0:1c:67:ae:ff:0d:16:c4:f6:dd:de:35:eb:c1:
bc:b9:ee:6c:e5:84:81:68:30:99:03:ef:d1:d1:8d:
12:83:9e:d6:0d:51:20:78:f8:6d:4a:36:8f:c4:07:
46:f4:d9:b6:a1:9d:ec:14:72:b7:a5:55:ac:90:f7:
b7:04:7a:1a:1c:f5:f2:42:71:ca:29:7f:78:02:b9:
72:04:e0:04:f8:0e:ce:d0:0d:b6:5c:07:a9:33:ff:
88:b6:40:74:8f:46:a2:17:fd:92:06:01:e7:6a:ca:
2a:bf:e8:6c:c5:53:4f:ed:3c:13:22:df:9e:75:54:
3f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D0:AD:CC:9D:3D:09:09:4B:93:35:0A:B2:F1:E7:28:79:C8:5D:72
X509v3 Authority Key Identifier:
keyid:E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:66:36:52:7a:1e:59:31:bf:d6:2f:15:18:01:16:49:f3:20:
54:80:be:5f:82:27:b8:4f:2d:e1:23:37:7a:81:95:fc:79:1d:
b7:b8:30:41:fa:6f:36:63:05:21:c2:24:6c:52:c2:a5:c4:d2:
76:44:e3:2b:ab:1f:da:e2:43:d8:ee:a6:0d:79:50:37:05:50:
3b:3b:71:36:1e:c6:64:56:79:a7:b1:87:1f:dd:0a:c2:ca:b4:
9e:5f:7c:4b:98:cc:55:88:1c:cb:f8:a7:9d:b8:20:5f:8c:9b:
3b:83:89:62:86:b6:61:e5:fa:a8:bf:1b:6e:8e:08:62:8f:db:
4e:23:10:01:74:1b:0a:5d:65:ab:32:10:51:3c:15:cc:41:79:
12:54:5a:1d:48:95:36:a2:df:d2:ee:67:31:cf:88:5d:17:6a:
12:42:cb:da:17:af:f5:5b:b7:c3:b6:0b:88:75:5f:12:36:1c:
e8:5e:17:8d:e8:4f:f4:f9:2a:91:51:b2:41:59:a2:11:20:4e:
b0:cc:a5:9f:83:7d:95:cf:65:35:34:47:ea:bd:61:88:e9:9f:
41:6e:8b:1a:00:14:a0:38:b4:0a:bc:11:6b:89:e3:90:4c:37:
61:cb:78:3a:8d:77:28:eb:6c:9f:c3:74:b5:0c:cc:65:aa:48:
ea:54:78:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjZmQxouw0uOO+SgZQGKOyAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MzVhOGY0ZjM2YTQ4MTFhOTJkMTk2MTczZTFjNDk5YWFj
Yzc3ZDUwHhcNMjUwODI0MDEwMjIyWhcNMjUwODI1MDEwMjIyWjAzMTEwLwYDVQQD
EygzYWQwYWRjYzlkM2QwOTA5NGI5MzM1MGFiMmYxZTcyODc5Yzg1ZDcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmf4r2a8Psuay+uWP8YgwGmU+rRY
53QG+8lNOSYwZGBrICM5N4/GJ3EnEYjpRwLGdSaj4p5KstHl7P1SIFWbhdPa73Ok
waKZPt4kzkF+TE3SJnounPi9IKViOnhAmSLoGJTi0raPwT3gpp3UkgsKNEVReths
fdHbRybSlwBVTU16DZ/uy8wMsBxnrv8NFsT23d4168G8ue5s5YSBaDCZA+/R0Y0S
g57WDVEgePhtSjaPxAdG9Nm2oZ3sFHK3pVWskPe3BHoaHPXyQnHKKX94ArlyBOAE
+A7O0A22XAepM/+ItkB0j0aiF/2SBgHnasoqv+hsxVNP7TwTIt+edVQ/xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDrQrcydPQkJS5M1CrLx5yh5yF1yMB8GA1UdIwQY
MBaAFOQ1qPTzakgRqS0ZYXPhxJmqzHfVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDkt
YjgwZTlmYTQyZGZiLzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDktYjgwZTlmYTQyZGZi
LzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0GY2Unoe
WTG/1i8VGAEWSfMgVIC+X4InuE8t4SM3eoGV/Hkdt7gwQfpvNmMFIcIkbFLCpcTS
dkTjK6sf2uJD2O6mDXlQNwVQOztxNh7GZFZ5p7GHH90Kwsq0nl98S5jMVYgcy/in
nbggX4ybO4OJYoa2YeX6qL8bbo4IYo/bTiMQAXQbCl1lqzIQUTwVzEF5ElRaHUiV
NqLf0u5nMc+IXRdqEkLL2hev9Vu3w7YLiHVfEjYc6F4XjehP9PkqkVGyQVmiESBO
sMyln4N9lc9lNTRH6r1hiOmfQW6LGgAUoDi0CrwRa4njkEw3Yct4Oo13KOtsn8N0
tQzMZapI6lR4oA==
-----END CERTIFICATE-----
Generated at Sun Aug 24 06:23:20 2025 by rpki-client