Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
File: eYCaQAStlYNQpkbViavLPP3z7S4.mft (raw, json)
Hash identifier: VyzZNDKh7q4y+uwej8NFknXyfU8ZH2KjhjXXPCaKQ6w=
Subject key identifier: D1:AC:94:67:27:90:0E:74:2B:84:99:1A:C3:0A:0A:2E:82:6A:E8:3F
Authority key identifier: 79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E
Certificate issuer: /CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
Certificate serial: 0198D54E0841172794EE0DC747C6EB83CC68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
Manifest number: 07CC
Signing time: Sat 23 Aug 2025 05:01:57 +0000
Manifest this update: Sat 23 Aug 2025 05:01:57 +0000
Manifest next update: Sun 24 Aug 2025 05:01:57 +0000
Files and hashes: 1: eYCaQAStlYNQpkbViavLPP3z7S4.crl (hash: OpEeUHJ6FK6s7KWrgxUqJRROaTOR9F0YfDlX2B9IkWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:08:41:17:27:94:ee:0d:c7:47:c6:eb:83:cc:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
Validity
Not Before: Aug 23 05:01:57 2025 GMT
Not After : Aug 24 05:01:57 2025 GMT
Subject: CN=d1ac946727900e742b84991ac30a0a2e826ae83f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f3:75:09:07:37:c7:e5:26:13:6e:66:9c:00:
91:56:28:1d:df:08:fc:f3:70:97:13:1b:bc:90:6d:
c8:2b:22:a5:ff:e1:2d:af:b2:ae:33:54:ee:e7:10:
9e:ed:64:8e:f0:aa:38:cf:c0:cb:34:ac:ba:e5:56:
a3:dc:8f:18:27:4c:6c:f8:96:66:e6:12:f7:1f:67:
90:c7:16:cb:93:03:f9:18:be:4c:c8:9f:e5:8b:ac:
31:c8:aa:cd:12:c3:64:0b:24:84:fd:03:32:6c:db:
81:35:6b:40:38:87:d3:19:c0:6d:67:54:7e:ce:47:
99:06:3d:86:85:a4:ee:f6:5a:8d:02:95:35:4d:dc:
57:b7:dd:c7:4d:8e:55:a2:63:5c:e8:77:80:be:94:
bd:b9:1b:c4:6f:5f:b8:64:9e:b5:08:08:e0:8a:26:
40:c2:00:7b:5e:3b:b9:44:02:00:83:b5:83:27:c0:
ee:23:54:fc:27:88:de:8f:44:e1:16:41:4f:ad:42:
6d:39:38:13:f4:25:c7:5b:cb:3b:d1:8c:42:b7:99:
bc:ce:8c:13:91:f3:66:02:2b:c1:72:1d:80:b6:52:
25:dc:44:51:28:17:f2:ea:42:62:89:ae:28:1f:2e:
ab:0b:22:6c:51:ff:9b:9a:59:13:a0:c2:25:5b:9c:
23:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AC:94:67:27:90:0E:74:2B:84:99:1A:C3:0A:0A:2E:82:6A:E8:3F
X509v3 Authority Key Identifier:
keyid:79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:0d:7e:12:ea:ed:0b:03:49:f5:84:25:9b:3b:59:b3:f3:27:
d1:94:10:2c:2c:89:e5:15:38:f8:18:90:80:37:f9:69:21:5c:
54:27:c8:4f:b2:98:e0:1e:fe:8e:52:04:c1:e8:79:df:67:23:
88:2d:47:c0:c1:b5:8c:6b:3e:8c:c9:f4:dd:99:6e:6e:7d:4a:
d0:c5:ba:fd:87:98:21:d3:ed:c9:d6:d6:c2:f9:d9:f8:1d:8f:
b7:07:22:8b:14:fe:a1:db:5f:9a:2c:36:16:64:30:33:8a:85:
b2:ae:d6:a9:4f:2f:7a:be:0a:c3:51:92:47:0e:c8:23:4b:98:
77:15:1e:70:2d:b2:e9:88:98:c7:75:49:e7:77:23:98:22:3a:
af:3a:f3:22:0e:66:cb:9f:dd:9a:2b:b5:d8:2f:2c:09:94:db:
3e:c9:46:20:9b:b5:34:78:6a:8d:dd:25:a4:2d:7b:70:0b:31:
8b:c7:82:84:c0:d6:9d:98:5d:8e:02:de:e7:96:cc:f3:28:5e:
30:12:91:fd:61:38:e7:f3:34:6c:12:6a:8d:71:4e:44:49:1e:
7e:b3:56:a9:88:bd:e4:4d:1b:86:55:46:4f:84:a0:96:a8:e9:
08:6b:c9:a7:ec:12:da:d2:4c:a9:01:94:2e:ab:b8:6d:5a:10:
23:17:ca:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTghBFyeU7g3HR8brg8xoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5ODA5YTQwMDRhZDk1ODM1MGE2NDZkNTg5YWJjYjNjZmRm
M2VkMmUwHhcNMjUwODIzMDUwMTU3WhcNMjUwODI0MDUwMTU3WjAzMTEwLwYDVQQD
EyhkMWFjOTQ2NzI3OTAwZTc0MmI4NDk5MWFjMzBhMGEyZTgyNmFlODNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfN1CQc3x+UmE25mnACRVigd3wj8
83CXExu8kG3IKyKl/+Etr7KuM1Tu5xCe7WSO8Ko4z8DLNKy65Vaj3I8YJ0xs+JZm
5hL3H2eQxxbLkwP5GL5MyJ/li6wxyKrNEsNkCySE/QMybNuBNWtAOIfTGcBtZ1R+
zkeZBj2GhaTu9lqNApU1TdxXt93HTY5VomNc6HeAvpS9uRvEb1+4ZJ61CAjgiiZA
wgB7Xju5RAIAg7WDJ8DuI1T8J4jej0ThFkFPrUJtOTgT9CXHW8s70YxCt5m8zowT
kfNmAivBch2AtlIl3ERRKBfy6kJiia4oHy6rCyJsUf+bmlkToMIlW5wjCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNGslGcnkA50K4SZGsMKCi6Caug/MB8GA1UdIwQY
MBaAFHmAmkAErZWDUKZG1Ymryzz98+0uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81YjQ1ZjgtOWEzMC00MWQzLWI2MTEt
ZDVhYTY0NzdlZmRlLzEvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81YjQ1ZjgtOWEzMC00MWQzLWI2MTEtZDVhYTY0NzdlZmRl
LzEvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuQ1+Eurt
CwNJ9YQlmztZs/Mn0ZQQLCyJ5RU4+BiQgDf5aSFcVCfIT7KY4B7+jlIEweh532cj
iC1HwMG1jGs+jMn03Zlubn1K0MW6/YeYIdPtydbWwvnZ+B2PtwciixT+odtfmiw2
FmQwM4qFsq7WqU8ver4Kw1GSRw7II0uYdxUecC2y6YiYx3VJ53cjmCI6rzrzIg5m
y5/dmiu12C8sCZTbPslGIJu1NHhqjd0lpC17cAsxi8eChMDWnZhdjgLe55bM8yhe
MBKR/WE45/M0bBJqjXFOREkefrNWqYi95E0bhlVGT4SglqjpCGvJp+wS2tJMqQGU
Lqu4bVoQIxfKug==
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:39:57 2025 by rpki-client