Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
File: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft (raw, json)
Hash identifier: 29yrT9BAPY7OH9fM93+UOqXWfBSz3w5AMM4ThEhYZ8Y=
Subject key identifier: B4:BB:DB:68:EA:D7:E3:0A:30:6E:AD:97:B1:F2:85:AA:F1:A1:AF:A4
Authority key identifier: 13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF
Certificate issuer: /CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf
Certificate serial: 0198D515B5AA29BA67BD9D43EB76362EBC5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
Manifest number: 1643
Signing time: Sat 23 Aug 2025 04:00:26 +0000
Manifest this update: Sat 23 Aug 2025 04:00:26 +0000
Manifest next update: Sun 24 Aug 2025 04:00:26 +0000
Files and hashes: 1: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl (hash: SlmWTLI+HgqyHL31bgD/hrTYLuEi6s5ld3WRa4d2n8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:b5:aa:29:ba:67:bd:9d:43:eb:76:36:2e:bc:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf
Validity
Not Before: Aug 23 04:00:26 2025 GMT
Not After : Aug 24 04:00:26 2025 GMT
Subject: CN=b4bbdb68ead7e30a306ead97b1f285aaf1a1afa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:05:5d:93:ce:ad:33:97:f8:92:1c:70:1e:9b:
8f:22:da:9c:d6:00:13:56:1f:67:60:bf:6f:f2:79:
3e:2c:48:9b:14:9e:37:02:35:c7:0c:69:81:8e:cd:
56:a8:16:f1:16:9d:89:a3:11:98:e6:a2:01:60:1d:
62:bf:98:13:57:29:05:78:76:85:b9:ce:59:3c:8b:
15:f5:32:95:8f:09:45:c2:8b:92:bb:3b:12:dc:46:
d5:af:28:f0:f4:0b:0e:19:cc:04:70:18:cf:29:92:
2a:9a:f1:68:b3:4e:41:40:f6:34:e5:f2:fa:ca:aa:
cf:0c:49:1c:94:b0:26:8f:e7:a4:ab:89:22:3e:62:
20:ed:70:38:1b:cf:a1:c8:2e:fc:4f:8d:1e:a7:2d:
b7:e5:dd:34:b6:76:76:8c:fc:ef:b3:bc:d3:5e:5a:
8b:de:25:04:2f:f8:84:a0:30:35:18:fe:70:ec:8e:
0d:cd:0d:ab:83:91:bb:91:42:fe:95:2e:13:0f:57:
09:f8:3a:a9:a1:31:42:e0:8b:76:10:df:1d:84:f9:
67:e7:d4:da:f3:ff:32:f2:f7:64:f0:f5:91:8e:0a:
b9:eb:50:12:0a:87:f4:d6:e9:f8:c4:0f:9d:15:34:
1f:0b:e3:0d:6b:2d:1e:f5:95:b4:cf:9f:f4:ca:98:
10:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BB:DB:68:EA:D7:E3:0A:30:6E:AD:97:B1:F2:85:AA:F1:A1:AF:A4
X509v3 Authority Key Identifier:
keyid:13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:e4:3d:cf:1c:bf:02:0e:65:3f:b6:c2:9a:72:03:b5:d1:21:
17:79:c7:6a:f5:75:e4:75:a4:37:74:0f:6d:68:e5:ab:a8:0d:
45:a4:7d:a7:0e:8d:48:72:bc:16:09:35:7a:7c:c5:67:f3:0a:
27:4c:cc:f9:fc:f5:c2:f7:5d:1a:b1:c4:02:e7:16:08:28:9e:
b6:f1:4f:c9:e4:94:56:cc:4e:cb:e6:90:13:8e:01:d2:d1:72:
2f:16:8d:5e:7a:f0:bf:8a:64:4d:fb:89:84:f8:ae:0c:98:e4:
07:d5:0d:17:52:c2:6d:1b:b1:55:51:89:b9:5a:16:b9:74:2c:
d5:76:8a:bc:25:af:bc:1c:9a:c1:7f:ec:52:b5:26:4f:b6:ff:
91:ff:91:f3:a2:61:11:3c:97:69:0e:84:b4:f2:74:2b:14:e6:
14:b4:52:5d:3d:ad:d1:26:10:d8:5c:ed:68:dc:a5:c8:7a:b5:
0c:eb:ad:ef:de:7f:55:65:4e:57:8f:aa:6a:d1:87:e3:ab:e4:
d9:a2:9f:cc:cd:52:87:01:35:8b:15:24:30:92:d8:d6:89:c5:
fa:e8:64:96:a6:35:a9:e0:92:1e:b6:f8:08:07:d1:44:25:e3:
f4:7f:92:6d:2d:57:f3:86:f6:e8:19:09:cf:01:4d:4c:d6:13:
c6:04:9c:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFbWqKbpnvZ1D63Y2LrxbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMzIzZWFjZDc3ZTVjYTU5NTJkZDY3YzI4ZjRmZDkwZDMy
YWZhZGYwHhcNMjUwODIzMDQwMDI2WhcNMjUwODI0MDQwMDI2WjAzMTEwLwYDVQQD
EyhiNGJiZGI2OGVhZDdlMzBhMzA2ZWFkOTdiMWYyODVhYWYxYTFhZmE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngVdk86tM5f4khxwHpuPItqc1gAT
Vh9nYL9v8nk+LEibFJ43AjXHDGmBjs1WqBbxFp2JoxGY5qIBYB1iv5gTVykFeHaF
uc5ZPIsV9TKVjwlFwouSuzsS3EbVryjw9AsOGcwEcBjPKZIqmvFos05BQPY05fL6
yqrPDEkclLAmj+ekq4kiPmIg7XA4G8+hyC78T40epy235d00tnZ2jPzvs7zTXlqL
3iUEL/iEoDA1GP5w7I4NzQ2rg5G7kUL+lS4TD1cJ+DqpoTFC4It2EN8dhPln59Ta
8/8y8vdk8PWRjgq561ASCof01un4xA+dFTQfC+MNay0e9ZW0z5/0ypgQVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLS722jq1+MKMG6tl7Hyharxoa+kMB8GA1UdIwQY
MBaAFBMyPqzXflyllS3WfCj0/ZDTKvrfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXpJLXJOZC1YS1dWTGRaOEtQVDlrTk1xLXQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9jYmVhYzgtZWJlZC00NWZiLWI3MjQt
NzBiMWM2OWI0MjMyLzEvRXpJLXJOZC1YS1dWTGRaOEtQVDlrTk1xLXQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9jYmVhYzgtZWJlZC00NWZiLWI3MjQtNzBiMWM2OWI0MjMy
LzEvRXpJLXJOZC1YS1dWTGRaOEtQVDlrTk1xLXQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKeQ9zxy/
Ag5lP7bCmnIDtdEhF3nHavV15HWkN3QPbWjlq6gNRaR9pw6NSHK8Fgk1enzFZ/MK
J0zM+fz1wvddGrHEAucWCCietvFPyeSUVsxOy+aQE44B0tFyLxaNXnrwv4pkTfuJ
hPiuDJjkB9UNF1LCbRuxVVGJuVoWuXQs1XaKvCWvvByawX/sUrUmT7b/kf+R86Jh
ETyXaQ6EtPJ0KxTmFLRSXT2t0SYQ2FztaNylyHq1DOut795/VWVOV4+qatGH46vk
2aKfzM1ShwE1ixUkMJLY1onF+uhklqY1qeCSHrb4CAfRRCXj9H+SbS1X84b26BkJ
zwFNTNYTxgSc0w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:21:15 2025 by rpki-client