Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
File: XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft (raw, json)
Hash identifier: 79M2n8BZroG728mil1AG31ePuGm2OltQzd8kNHEanXE=
Subject key identifier: EA:42:5A:B7:61:CB:27:5C:D3:9F:8B:61:09:62:5C:86:65:F1:57:36
Authority key identifier: 5E:BB:65:36:7D:82:42:B0:15:9A:25:39:CB:5A:02:33:54:2E:F9:63
Certificate issuer: /CN=5ebb65367d8242b0159a2539cb5a0233542ef963
Certificate serial: 0198D515904AD2545442023F537544D988A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
Manifest number: 071E
Signing time: Sat 23 Aug 2025 04:00:16 +0000
Manifest this update: Sat 23 Aug 2025 04:00:16 +0000
Manifest next update: Sun 24 Aug 2025 04:00:16 +0000
Files and hashes: 1: XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl (hash: L04+J34uU7WnY36Lc9+rz4mBuzrzYGr8PwJUy0fqxdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:90:4a:d2:54:54:42:02:3f:53:75:44:d9:88:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebb65367d8242b0159a2539cb5a0233542ef963
Validity
Not Before: Aug 23 04:00:16 2025 GMT
Not After : Aug 24 04:00:16 2025 GMT
Subject: CN=ea425ab761cb275cd39f8b6109625c8665f15736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1b:da:b4:7d:af:69:f7:4a:12:43:e8:70:4c:
ec:dc:5b:03:97:f3:45:74:d0:98:83:4f:4f:85:b5:
ea:8b:cc:e6:01:b6:81:b8:7e:16:fe:26:54:82:6c:
d6:66:10:16:b1:2b:3e:30:dc:2d:ef:d4:f7:0d:a9:
97:63:9d:c9:46:8d:8f:9c:82:f7:69:ac:63:95:5a:
70:1e:69:11:a9:82:b5:66:d6:52:2f:06:2c:8b:89:
8f:05:3c:b9:fb:10:10:f3:b2:02:24:eb:4e:45:9d:
4a:ac:59:0f:35:81:f6:56:bd:a4:f3:ff:22:1f:ba:
4a:69:a9:84:04:ef:5a:7d:c1:54:b0:a3:15:d7:ad:
31:64:02:14:a2:f5:a6:60:b2:47:a9:95:17:ec:57:
f7:0d:f0:e3:e6:38:76:8e:2b:08:cf:69:32:9b:e1:
78:6f:7b:27:ee:a9:c1:16:0c:ae:95:9b:ca:f6:5c:
2e:7b:d7:61:e3:86:88:92:62:1f:7f:1c:7e:f3:bb:
1d:44:7e:9d:fa:f7:32:0f:ee:94:8b:d1:96:33:ca:
c4:15:0d:09:fb:ac:0d:7d:74:15:40:65:36:a3:8a:
2d:ec:f6:f8:ca:36:77:b6:1c:b8:14:18:a9:df:94:
62:f9:66:47:af:00:6a:37:6d:15:33:a6:6f:f9:6e:
40:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:42:5A:B7:61:CB:27:5C:D3:9F:8B:61:09:62:5C:86:65:F1:57:36
X509v3 Authority Key Identifier:
keyid:5E:BB:65:36:7D:82:42:B0:15:9A:25:39:CB:5A:02:33:54:2E:F9:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:37:24:9d:56:a5:0c:21:69:5c:a9:89:0a:d5:61:c9:2f:ce:
8c:8a:42:38:78:14:cb:52:78:ba:1a:4c:da:b5:a1:c6:b3:f3:
23:e8:a6:b0:ca:c5:23:dd:f7:9d:1f:00:66:b9:09:ce:b5:00:
fb:79:10:ba:f2:b3:17:13:81:41:fb:27:0e:f2:ba:97:4c:74:
01:d4:89:fb:65:87:32:4c:03:ba:5f:6f:bf:98:fc:c4:d0:00:
35:8a:06:b9:d6:1c:e8:63:85:a2:cb:e4:bc:59:19:dc:44:aa:
ad:16:75:6f:45:0f:ef:51:3e:60:fd:ee:22:2a:ac:2c:ef:f5:
93:41:cc:56:f5:98:c2:6d:9e:e0:23:ce:b6:1f:b4:3c:1c:70:
f8:81:63:04:c0:46:dc:20:10:a4:31:10:8c:54:cb:b2:f8:e6:
29:6e:3c:67:a2:f2:03:61:c1:e4:7b:b6:f3:ac:67:e8:9f:37:
bb:89:89:02:5f:05:1b:fd:d0:ff:9a:a1:3e:3e:90:b6:2b:b9:
25:dc:c3:cc:91:a4:5e:32:17:4e:2a:c9:25:c2:d2:c1:21:a3:
9a:73:7c:93:37:cc:6f:3a:69:d1:b1:a0:d6:28:1c:b4:f6:83:
8b:01:2b:6f:5e:5d:77:25:cd:11:3a:fb:24:1e:60:ff:89:0f:
8c:da:c9:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFZBK0lRUQgI/U3VE2YikMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlYmI2NTM2N2Q4MjQyYjAxNTlhMjUzOWNiNWEwMjMzNTQy
ZWY5NjMwHhcNMjUwODIzMDQwMDE2WhcNMjUwODI0MDQwMDE2WjAzMTEwLwYDVQQD
EyhlYTQyNWFiNzYxY2IyNzVjZDM5ZjhiNjEwOTYyNWM4NjY1ZjE1NzM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRvatH2vafdKEkPocEzs3FsDl/NF
dNCYg09PhbXqi8zmAbaBuH4W/iZUgmzWZhAWsSs+MNwt79T3DamXY53JRo2PnIL3
aaxjlVpwHmkRqYK1ZtZSLwYsi4mPBTy5+xAQ87ICJOtORZ1KrFkPNYH2Vr2k8/8i
H7pKaamEBO9afcFUsKMV160xZAIUovWmYLJHqZUX7Ff3DfDj5jh2jisIz2kym+F4
b3sn7qnBFgyulZvK9lwue9dh44aIkmIffxx+87sdRH6d+vcyD+6Ui9GWM8rEFQ0J
+6wNfXQVQGU2o4ot7Pb4yjZ3thy4FBip35Ri+WZHrwBqN20VM6Zv+W5ASwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOpCWrdhyydc05+LYQliXIZl8Vc2MB8GA1UdIwQY
MBaAFF67ZTZ9gkKwFZolOctaAjNULvljMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHJ0bE5uMkNRckFWbWlVNXkxb0NNMVF1LVdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy81NDMwZDYtZWRjMC00NDI4LWIyNGEt
MzAwZjVjYWJlZTExLzEvWHJ0bE5uMkNRckFWbWlVNXkxb0NNMVF1LVdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy81NDMwZDYtZWRjMC00NDI4LWIyNGEtMzAwZjVjYWJlZTEx
LzEvWHJ0bE5uMkNRckFWbWlVNXkxb0NNMVF1LVdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyDcknVal
DCFpXKmJCtVhyS/OjIpCOHgUy1J4uhpM2rWhxrPzI+imsMrFI933nR8AZrkJzrUA
+3kQuvKzFxOBQfsnDvK6l0x0AdSJ+2WHMkwDul9vv5j8xNAANYoGudYc6GOFosvk
vFkZ3ESqrRZ1b0UP71E+YP3uIiqsLO/1k0HMVvWYwm2e4CPOth+0PBxw+IFjBMBG
3CAQpDEQjFTLsvjmKW48Z6LyA2HB5Hu286xn6J83u4mJAl8FG/3Q/5qhPj6Qtiu5
JdzDzJGkXjIXTirJJcLSwSGjmnN8kzfMbzpp0bGg1igctPaDiwErb15ddyXNETr7
JB5g/4kPjNrJIg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:29 2025 by rpki-client