Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.mft
File: ehKIruzRFJyedF-YZT5okK-iU6s.mft (raw, json)
Hash identifier: wb0kxoDs3VG/B76tfPD7INgK7zt8QXsWok5A13d5qp8=
Subject key identifier: 4C:FC:F1:F5:6B:A3:8E:81:EA:9A:85:F8:EB:71:88:15:50:33:AC:86
Authority key identifier: 7A:12:88:AE:EC:D1:14:9C:9E:74:5F:98:65:3E:68:90:AF:A2:53:AB
Certificate issuer: /CN=7a1288aeecd1149c9e745f98653e6890afa253ab
Certificate serial: 0198D51622ABDB06A4FA0194CE76F4DA5BCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehKIruzRFJyedF-YZT5okK-iU6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.mft
Manifest number: 0137
Signing time: Sat 23 Aug 2025 04:00:54 +0000
Manifest this update: Sat 23 Aug 2025 04:00:54 +0000
Manifest next update: Sun 24 Aug 2025 04:00:54 +0000
Files and hashes: 1: ehKIruzRFJyedF-YZT5okK-iU6s.crl (hash: Q4IgWdzorO23uuuL9CplY4mL0J5hv4zCpJofNb34zyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/ehKIruzRFJyedF-YZT5okK-iU6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:22:ab:db:06:a4:fa:01:94:ce:76:f4:da:5b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a1288aeecd1149c9e745f98653e6890afa253ab
Validity
Not Before: Aug 23 04:00:54 2025 GMT
Not After : Aug 24 04:00:54 2025 GMT
Subject: CN=4cfcf1f56ba38e81ea9a85f8eb7188155033ac86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:26:e7:9e:ae:0d:3c:94:5d:79:ef:4a:5b:50:
e9:39:62:b1:40:39:89:e1:ff:a8:0e:b9:74:83:03:
c8:cb:63:9b:d0:aa:b1:9c:45:83:8c:16:46:2f:b8:
3c:e5:47:55:7b:49:ce:7c:51:4f:4b:15:3a:ad:b5:
c4:6b:07:9c:55:e1:68:90:48:36:f2:dc:ba:fd:05:
d7:59:59:4e:8b:7d:2b:6f:2e:84:0b:e0:42:b8:25:
a1:d1:53:66:e6:04:e4:65:5a:e3:7e:96:0f:18:8b:
44:6a:d7:ea:43:00:9d:d1:b1:65:f4:a5:c3:55:cb:
2b:b3:5d:97:2b:7f:ee:05:4d:91:d7:fa:c2:6a:cf:
17:a7:e3:a1:85:5d:be:d7:0c:cf:72:2b:64:a7:16:
b7:dd:b2:7a:94:f7:f4:fd:1f:66:e0:2c:16:91:95:
4f:e9:bd:8e:bc:9d:66:30:30:17:c7:72:9f:23:00:
89:ef:97:8c:bd:c4:68:77:13:15:f8:a9:b9:e8:db:
61:dd:fa:c7:1c:e3:ee:4b:38:b1:6b:ef:02:3e:3e:
cb:86:3d:f7:bb:29:ae:02:eb:ef:ab:b7:d2:30:1a:
f3:54:bf:49:ff:c3:8d:d7:66:4f:2f:4c:ab:2f:2f:
a3:9c:6f:92:41:9c:5b:cd:09:55:5d:6e:f4:dc:28:
f3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:FC:F1:F5:6B:A3:8E:81:EA:9A:85:F8:EB:71:88:15:50:33:AC:86
X509v3 Authority Key Identifier:
keyid:7A:12:88:AE:EC:D1:14:9C:9E:74:5F:98:65:3E:68:90:AF:A2:53:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehKIruzRFJyedF-YZT5okK-iU6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b4f3d0-b1d1-46be-a190-8e2027695d07/1/ehKIruzRFJyedF-YZT5okK-iU6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:5d:1e:ad:1f:ac:75:cd:bf:60:07:59:f5:41:3e:64:ab:d1:
2c:8e:db:8d:4b:ae:0b:80:cc:50:de:06:4d:64:7a:78:53:c0:
8d:0c:d1:f0:fb:0a:a1:56:0c:87:2d:dd:1c:c6:8c:1f:c2:dd:
ce:c5:ed:39:b4:91:f2:ff:ca:c7:9d:a5:d1:d6:3c:61:bd:fb:
75:f7:ad:cb:95:7b:30:8d:f7:1c:17:d8:e5:b8:c0:cd:6a:59:
bc:78:77:2f:ab:f0:ea:1f:8f:97:86:de:d5:f0:10:5c:33:55:
b5:b9:f8:1b:5a:3b:bb:66:57:b4:7a:0f:0c:10:f3:fd:8b:a4:
f1:5d:0d:2d:26:c6:44:c8:16:39:1b:0a:a9:57:bf:c0:b9:21:
72:b0:0d:0f:4e:72:41:18:ae:70:7d:18:60:8e:c3:ff:c6:ae:
da:74:d9:2c:c1:df:04:18:ff:a9:de:8e:1c:34:c8:f0:0f:b1:
4c:7d:f9:33:14:23:d6:cc:19:cf:8e:bf:f9:1c:2e:e4:83:2a:
8b:e0:7e:1f:f0:e0:a4:1d:5a:79:00:9b:72:c9:d5:66:90:3f:
0f:f0:46:d2:db:f9:36:66:6c:8e:c0:45:c2:2a:df:8a:69:12:
4f:2b:e0:7e:34:52:d2:85:06:12:1a:53:6f:e3:d6:2b:2f:41:
64:f8:ee:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFiKr2wak+gGUznb02lvOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhMTI4OGFlZWNkMTE0OWM5ZTc0NWY5ODY1M2U2ODkwYWZh
MjUzYWIwHhcNMjUwODIzMDQwMDU0WhcNMjUwODI0MDQwMDU0WjAzMTEwLwYDVQQD
Eyg0Y2ZjZjFmNTZiYTM4ZTgxZWE5YTg1ZjhlYjcxODgxNTUwMzNhYzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmibnnq4NPJRdee9KW1DpOWKxQDmJ
4f+oDrl0gwPIy2Ob0KqxnEWDjBZGL7g85UdVe0nOfFFPSxU6rbXEawecVeFokEg2
8ty6/QXXWVlOi30rby6EC+BCuCWh0VNm5gTkZVrjfpYPGItEatfqQwCd0bFl9KXD
Vcsrs12XK3/uBU2R1/rCas8Xp+OhhV2+1wzPcitkpxa33bJ6lPf0/R9m4CwWkZVP
6b2OvJ1mMDAXx3KfIwCJ75eMvcRodxMV+Km56Nth3frHHOPuSzixa+8CPj7Lhj33
uymuAuvvq7fSMBrzVL9J/8ON12ZPL0yrLy+jnG+SQZxbzQlVXW703CjzBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEz88fVro46B6pqF+OtxiBVQM6yGMB8GA1UdIwQY
MBaAFHoSiK7s0RScnnRfmGU+aJCvolOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWhLSXJ1elJGSnllZEYtWVpUNW9rSy1pVTZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9iNGYzZDAtYjFkMS00NmJlLWExOTAt
OGUyMDI3Njk1ZDA3LzEvZWhLSXJ1elJGSnllZEYtWVpUNW9rSy1pVTZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9iNGYzZDAtYjFkMS00NmJlLWExOTAtOGUyMDI3Njk1ZDA3
LzEvZWhLSXJ1elJGSnllZEYtWVpUNW9rSy1pVTZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcl0erR+s
dc2/YAdZ9UE+ZKvRLI7bjUuuC4DMUN4GTWR6eFPAjQzR8PsKoVYMhy3dHMaMH8Ld
zsXtObSR8v/Kx52l0dY8Yb37dfety5V7MI33HBfY5bjAzWpZvHh3L6vw6h+Pl4be
1fAQXDNVtbn4G1o7u2ZXtHoPDBDz/Yuk8V0NLSbGRMgWORsKqVe/wLkhcrAND05y
QRiucH0YYI7D/8au2nTZLMHfBBj/qd6OHDTI8A+xTH35MxQj1swZz46/+Rwu5IMq
i+B+H/DgpB1aeQCbcsnVZpA/D/BG0tv5NmZsjsBFwirfimkSTyvgfjRS0oUGEhpT
b+PWKy9BZPju9A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:24:05 2025 by rpki-client