Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
File: 5DWo9PNqSBGpLRlhc-HEmarMd9U.mft (raw, json)
Hash identifier: 1teUHTzbxRY2hcBIF5BSGVztuRaRqCa7sJ1lxd/bg+Q=
Subject key identifier: D6:F5:83:7B:AA:7B:A1:DA:1C:B9:58:B0:77:47:71:6C:2F:17:32:FD
Authority key identifier: E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
Certificate issuer: /CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Certificate serial: 0197B7EA2D381134F3572C513F86687ACBD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
Manifest number: 0C93
Signing time: Sat 28 Jun 2025 19:01:06 +0000
Manifest this update: Sat 28 Jun 2025 19:01:06 +0000
Manifest next update: Sun 29 Jun 2025 19:01:06 +0000
Files and hashes: 1: 5DWo9PNqSBGpLRlhc-HEmarMd9U.crl (hash: 8qQHfFohW9UgCNwxP4O1hEvx2Y14BEaB8ebs+80SHn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:2d:38:11:34:f3:57:2c:51:3f:86:68:7a:cb:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Validity
Not Before: Jun 28 19:01:06 2025 GMT
Not After : Jun 29 19:01:06 2025 GMT
Subject: CN=d6f5837baa7ba1da1cb958b07747716c2f1732fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:08:99:bd:f5:ad:0b:07:41:a5:e0:f3:8d:76:
0b:3a:8e:f7:93:08:86:1c:a9:6b:70:0e:8b:33:e8:
cf:b2:20:a9:ba:e5:9a:03:27:bb:c5:16:60:c2:33:
11:9c:88:b3:31:fa:07:d1:49:32:07:d4:71:a0:07:
9c:b2:00:7b:39:73:87:6e:37:1d:f6:c1:62:2b:9d:
17:0e:55:18:6e:d0:d5:74:29:a3:5a:c0:96:94:2e:
98:3c:c8:55:c1:b1:40:be:02:08:b7:2a:92:fb:f1:
20:9b:09:34:9c:14:2a:60:f8:f8:2d:cb:c2:45:c7:
51:9d:45:ac:a8:2a:b1:d3:67:34:51:df:c3:1d:e8:
4e:1e:84:ea:30:cc:19:f4:cf:de:c9:ae:ea:0a:1c:
4b:47:12:32:57:9e:61:e0:e2:d4:cf:d9:07:75:ec:
a3:d2:6c:58:cd:26:8b:7b:57:d5:d0:d8:52:d9:51:
b5:39:b6:22:2f:35:dc:51:02:e7:79:ff:7f:b1:31:
dc:5b:de:d1:f8:9d:f0:cb:92:aa:73:69:ce:bd:e4:
77:b7:b2:6a:5b:71:e4:f1:6e:3e:33:fb:9e:ab:17:
65:2b:6a:08:82:d5:e7:7c:4f:02:77:09:17:a7:a3:
83:ee:a8:a3:40:19:3c:dd:89:10:21:d0:8f:de:4b:
27:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F5:83:7B:AA:7B:A1:DA:1C:B9:58:B0:77:47:71:6C:2F:17:32:FD
X509v3 Authority Key Identifier:
keyid:E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:e7:90:4d:d0:3c:53:dd:b7:ee:4a:fa:a2:c3:01:e6:70:83:
7a:a3:1d:92:94:90:ea:3d:2e:8f:44:1f:35:2a:60:31:b4:35:
70:a2:c8:28:16:86:61:00:2b:50:6a:8c:06:e1:7d:62:9e:71:
d7:22:4a:8d:5d:7a:52:4b:48:13:3a:bc:8e:cb:62:ca:a3:7c:
3a:f6:ea:39:f4:c2:07:dd:46:46:f2:90:f4:91:d8:b8:f9:14:
21:f0:4d:f2:f1:74:b1:ba:14:a0:e2:bf:90:b7:ea:e7:be:db:
48:5d:10:ca:e9:c3:19:80:c4:eb:e3:e6:52:46:a7:75:28:3d:
70:b4:fe:97:3c:b2:a9:9c:64:ce:8f:65:8a:de:50:f7:e3:de:
36:26:fb:58:13:9a:d7:0f:3d:f6:ed:28:26:26:90:df:40:d9:
3a:d7:ff:46:11:69:9b:15:ce:fe:60:45:4e:48:4b:63:9f:5a:
28:51:be:08:ef:1f:8b:0f:3c:dd:09:e1:ed:96:b7:01:61:a0:
67:76:c2:2b:c4:0a:27:e2:dd:0a:83:36:2b:0b:ab:d0:4b:8b:
49:c7:00:88:a2:e1:af:f6:40:4f:02:09:d4:dc:a6:b2:4d:45:
1d:77:83:22:3d:59:8d:b7:15:46:b5:69:8b:c0:7a:a4:53:fa:
92:6b:78:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36i04ETTzVyxRP4ZoesvTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MzVhOGY0ZjM2YTQ4MTFhOTJkMTk2MTczZTFjNDk5YWFj
Yzc3ZDUwHhcNMjUwNjI4MTkwMTA2WhcNMjUwNjI5MTkwMTA2WjAzMTEwLwYDVQQD
EyhkNmY1ODM3YmFhN2JhMWRhMWNiOTU4YjA3NzQ3NzE2YzJmMTczMmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswiZvfWtCwdBpeDzjXYLOo73kwiG
HKlrcA6LM+jPsiCpuuWaAye7xRZgwjMRnIizMfoH0UkyB9RxoAecsgB7OXOHbjcd
9sFiK50XDlUYbtDVdCmjWsCWlC6YPMhVwbFAvgIItyqS+/Egmwk0nBQqYPj4LcvC
RcdRnUWsqCqx02c0Ud/DHehOHoTqMMwZ9M/eya7qChxLRxIyV55h4OLUz9kHdeyj
0mxYzSaLe1fV0NhS2VG1ObYiLzXcUQLnef9/sTHcW97R+J3wy5Kqc2nOveR3t7Jq
W3Hk8W4+M/ueqxdlK2oIgtXnfE8CdwkXp6OD7qijQBk83YkQIdCP3ksn7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNb1g3uqe6HaHLlYsHdHcWwvFzL9MB8GA1UdIwQY
MBaAFOQ1qPTzakgRqS0ZYXPhxJmqzHfVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDkt
YjgwZTlmYTQyZGZiLzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDktYjgwZTlmYTQyZGZi
LzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEeeQTdA8
U9237kr6osMB5nCDeqMdkpSQ6j0uj0QfNSpgMbQ1cKLIKBaGYQArUGqMBuF9Yp5x
1yJKjV16UktIEzq8jstiyqN8OvbqOfTCB91GRvKQ9JHYuPkUIfBN8vF0sboUoOK/
kLfq577bSF0QyunDGYDE6+PmUkandSg9cLT+lzyyqZxkzo9lit5Q9+PeNib7WBOa
1w899u0oJiaQ30DZOtf/RhFpmxXO/mBFTkhLY59aKFG+CO8fiw883Qnh7Za3AWGg
Z3bCK8QKJ+LdCoM2Kwur0EuLSccAiKLhr/ZATwIJ1Nymsk1FHXeDIj1ZjbcVRrVp
i8B6pFP6kmt4gA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:15:14 2025 by rpki-client