
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
File: 5IKZWNgAyhrebhPKeygLIpzmYC4.mft (raw, json)
Hash identifier: hZRJWY8LFtk4Jee+4jvUVPFmg+oqPTjvvRFZjbzJuDk=
Subject key identifier: B8:4C:CF:24:D5:58:AC:C3:67:96:70:8B:0E:75:E2:74:4B:1E:E4:60
Authority key identifier: E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
Certificate issuer: /CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Certificate serial: 0199FBEAC769AAE8FCEBB471F4F5FDAA14EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 10:01:31 +0000
Manifest this update: Sun 19 Oct 2025 10:01:31 +0000
Manifest next update: Mon 20 Oct 2025 10:01:31 +0000
Files and hashes: 1: 5IKZWNgAyhrebhPKeygLIpzmYC4.crl (hash: kkZMzDGe0vDGASqF8LT9FeHxkPTxROn8BOmzjiCVC2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:c7:69:aa:e8:fc:eb:b4:71:f4:f5:fd:aa:14:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Validity
Not Before: Oct 19 10:01:31 2025 GMT
Not After : Oct 20 10:01:31 2025 GMT
Subject: CN=b84ccf24d558acc36796708b0e75e2744b1ee460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:91:f3:e5:10:0c:1c:48:94:5e:b5:98:25:cb:
92:6a:57:4b:04:81:bd:2d:59:7f:ab:65:ea:a5:10:
a7:c4:b7:ea:d1:81:6c:87:88:09:8e:0b:c1:f1:b2:
d3:e1:b0:b8:4b:69:eb:6e:dd:b1:0b:49:e5:b3:da:
89:30:b3:ad:48:05:57:8b:f8:bc:45:81:4c:32:3f:
ec:d1:96:74:e7:e2:d0:c2:c6:4c:a5:a0:d2:a1:78:
b5:c0:6d:cd:78:ac:43:e3:8e:9d:75:ea:ba:b1:29:
ff:84:a2:f0:4a:e7:2c:67:62:67:09:77:fe:9c:d0:
cd:e2:33:6d:1b:94:49:96:1d:a6:69:1a:8e:70:cf:
32:c8:7e:aa:d6:64:25:b7:bb:42:cb:ba:3d:95:43:
64:70:3b:f1:3f:e4:bc:f3:94:08:43:1e:c4:b9:2f:
72:9e:4e:5a:86:8e:c2:f5:6b:21:b8:93:51:3c:29:
b7:7e:d7:3f:40:93:d5:7b:94:e1:ab:a1:21:cd:07:
ec:7a:2f:8b:bb:bf:2f:e1:7a:5e:5d:28:ee:68:13:
44:c2:2d:99:e4:5d:dc:1e:dd:9e:69:d8:79:eb:3f:
ac:8b:f7:b7:bd:e5:80:9e:5f:d3:23:cc:4a:ee:20:
49:e3:dd:10:ae:72:ac:41:d8:00:74:da:81:e8:a3:
d2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:4C:CF:24:D5:58:AC:C3:67:96:70:8B:0E:75:E2:74:4B:1E:E4:60
X509v3 Authority Key Identifier:
keyid:E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:38:46:b3:2e:a1:86:14:1d:3c:ed:8e:fd:c1:3e:95:50:d6:
6f:79:24:18:50:bc:9f:b1:7a:a0:9e:1a:c3:27:ac:4f:7c:d9:
32:c5:ab:40:23:6d:ef:0c:60:35:d9:ad:43:a5:5f:2a:0f:0c:
44:cf:a2:04:0c:e1:90:3c:f6:d7:21:6d:6b:45:d5:dc:bc:be:
07:92:24:e6:dc:a3:cf:0d:15:6d:1a:8b:1b:c4:09:ff:02:07:
53:47:92:0b:35:bc:7d:f9:8f:d8:de:c5:45:84:9c:56:ab:5d:
5e:a6:7a:7c:31:5f:20:30:9f:be:07:a8:24:47:5e:ed:81:eb:
70:4e:20:59:fb:8e:d0:0b:30:da:c8:f6:4b:f3:09:2d:f4:b7:
4b:5f:4d:4f:62:02:ef:3b:fb:bf:66:5b:fc:5d:b9:1e:09:7c:
9f:2b:f9:87:b2:ab:7c:db:18:8d:12:aa:45:63:39:de:25:e3:
f1:ac:2e:a9:b8:d7:4b:76:cd:f5:42:8d:50:3f:df:c3:75:b9:
1c:0f:f7:c3:2f:55:37:8d:18:b5:46:81:ee:15:38:e8:14:9d:
8b:23:c2:6f:c0:1f:c9:09:2e:a6:c1:d4:35:00:39:c7:ec:f2:
55:85:00:e4:dc:05:1d:b5:8e:cc:12:68:93:87:76:70:dd:55:
6a:91:16:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76sdpquj867Rx9PX9qhTuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ODI5OTU4ZDgwMGNhMWFkZTZlMTNjYTdiMjgwYjIyOWNl
NjYwMmUwHhcNMjUxMDE5MTAwMTMxWhcNMjUxMDIwMTAwMTMxWjAzMTEwLwYDVQQD
EyhiODRjY2YyNGQ1NThhY2MzNjc5NjcwOGIwZTc1ZTI3NDRiMWVlNDYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5Hz5RAMHEiUXrWYJcuSaldLBIG9
LVl/q2XqpRCnxLfq0YFsh4gJjgvB8bLT4bC4S2nrbt2xC0nls9qJMLOtSAVXi/i8
RYFMMj/s0ZZ05+LQwsZMpaDSoXi1wG3NeKxD446ddeq6sSn/hKLwSucsZ2JnCXf+
nNDN4jNtG5RJlh2maRqOcM8yyH6q1mQlt7tCy7o9lUNkcDvxP+S885QIQx7EuS9y
nk5aho7C9WshuJNRPCm3ftc/QJPVe5Thq6EhzQfsei+Lu78v4XpeXSjuaBNEwi2Z
5F3cHt2eadh56z+si/e3veWAnl/TI8xK7iBJ490QrnKsQdgAdNqB6KPSMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLhMzyTVWKzDZ5Zwiw514nRLHuRgMB8GA1UdIwQY
MBaAFOSCmVjYAMoa3m4TynsoCyKc5mAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQt
MWQ1YmMwMDFhMWRlLzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQtMWQ1YmMwMDFhMWRl
LzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYDhGsy6h
hhQdPO2O/cE+lVDWb3kkGFC8n7F6oJ4awyesT3zZMsWrQCNt7wxgNdmtQ6VfKg8M
RM+iBAzhkDz21yFta0XV3Ly+B5Ik5tyjzw0VbRqLG8QJ/wIHU0eSCzW8ffmP2N7F
RYScVqtdXqZ6fDFfIDCfvgeoJEde7YHrcE4gWfuO0Asw2sj2S/MJLfS3S19NT2IC
7zv7v2Zb/F25Hgl8nyv5h7KrfNsYjRKqRWM53iXj8awuqbjXS3bN9UKNUD/fw3W5
HA/3wy9VN40YtUaB7hU46BSdiyPCb8AfyQkupsHUNQA5x+zyVYUA5NwFHbWOzBJo
k4d2cN1VapEWyg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:57 2025 by rpki-client