Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
File: 5IKZWNgAyhrebhPKeygLIpzmYC4.mft (raw, json)
Hash identifier: a67CmpBFB3yaHQbNRPnQMNuVY545BLuKkUQ/+w+zb98=
Subject key identifier: 30:30:83:28:D4:F1:02:20:E6:4B:CE:D4:7B:90:39:05:EE:EF:7A:2B
Authority key identifier: E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
Certificate issuer: /CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Certificate serial: 0198D472A1C942E84F2880F7DBFAAE9DD88D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 01:02:18 +0000
Manifest this update: Sat 23 Aug 2025 01:02:18 +0000
Manifest next update: Sun 24 Aug 2025 01:02:18 +0000
Files and hashes: 1: 5IKZWNgAyhrebhPKeygLIpzmYC4.crl (hash: c8ONav6aADZyiLOwr101pxSYotu476UpoU6j5Iqgy98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:a1:c9:42:e8:4f:28:80:f7:db:fa:ae:9d:d8:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Validity
Not Before: Aug 23 01:02:18 2025 GMT
Not After : Aug 24 01:02:18 2025 GMT
Subject: CN=30308328d4f10220e64bced47b903905eeef7a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:3a:bd:63:07:ed:85:c5:cd:d0:be:85:2f:
0f:89:fc:d8:ea:e5:09:09:fd:cf:33:c5:28:0c:51:
b6:76:30:41:f5:c8:41:3f:2a:0a:cb:96:c5:e3:71:
10:ab:33:45:67:06:21:a9:02:29:93:a9:16:98:3a:
f1:5e:69:78:6b:04:35:f5:36:41:ef:28:bf:0b:be:
2f:06:5f:e8:be:34:10:3d:b2:91:5a:79:8f:f4:5e:
22:ba:c1:6f:0b:cf:d7:6e:80:38:01:04:a7:d6:88:
01:e8:d3:3c:54:fc:ca:dd:8f:c0:89:84:9a:5a:af:
dc:8a:3d:a9:b2:2e:32:6a:98:f6:40:ce:5a:59:4f:
ab:ba:ae:1a:c0:d7:f3:89:a9:59:24:9e:33:28:c0:
bf:50:5c:9e:e6:32:6c:75:de:9a:70:c3:59:cf:1a:
d2:d2:1d:9d:ae:9c:d2:0f:aa:99:51:ce:d2:47:33:
59:f4:da:ab:e5:86:67:48:1d:d2:7f:51:bb:90:3e:
e5:aa:e4:71:e5:b2:55:12:21:bb:47:6f:47:d2:ec:
2a:43:e1:d6:f2:f2:d4:00:60:71:91:b4:8b:f2:dc:
b0:92:cd:52:4c:67:ba:01:02:8f:40:17:d4:ea:0b:
a8:ca:02:7b:5e:b5:0d:a1:1d:94:9d:75:f4:02:9b:
7f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:30:83:28:D4:F1:02:20:E6:4B:CE:D4:7B:90:39:05:EE:EF:7A:2B
X509v3 Authority Key Identifier:
keyid:E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:62:ba:01:c3:39:5a:22:59:0a:86:d5:51:03:7c:54:c8:90:
9f:f6:70:33:55:d0:b1:1b:08:79:20:f9:a2:54:68:e2:6e:7f:
29:78:86:30:70:5f:37:27:41:25:29:f3:f9:90:13:73:59:04:
0e:62:04:83:71:db:81:f2:58:0b:34:74:06:e8:12:83:a1:9e:
4c:41:b1:bd:8e:61:c5:dc:d0:9e:e4:47:91:94:7d:1d:c3:42:
93:7d:30:ce:09:cf:af:dd:8c:25:50:0d:68:26:6b:45:63:30:
ad:94:16:01:63:9c:8e:a3:44:83:a3:8d:e8:48:55:ab:4f:dc:
4e:7f:1d:62:e4:67:fa:ab:fe:c6:fc:bf:4d:de:f4:5f:16:01:
66:75:1b:32:c0:ec:c6:b8:26:44:c5:fb:d0:06:61:f6:55:14:
d0:66:2f:31:39:d5:0d:9b:74:36:8a:74:57:ff:a8:43:31:54:
ee:40:78:52:2a:cb:dd:e4:d0:ca:53:3d:41:13:83:ae:4f:96:
b0:07:21:e4:d9:63:95:85:eb:21:61:c8:e3:60:ec:69:21:da:
92:be:a4:25:4d:8c:04:d3:57:10:87:29:61:1c:3b:ac:4b:0f:
3d:70:5c:a0:b2:03:02:ab:87:81:91:4c:3e:97:94:83:ea:71:
c5:bc:af:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcqHJQuhPKID32/qundiNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ODI5OTU4ZDgwMGNhMWFkZTZlMTNjYTdiMjgwYjIyOWNl
NjYwMmUwHhcNMjUwODIzMDEwMjE4WhcNMjUwODI0MDEwMjE4WjAzMTEwLwYDVQQD
EygzMDMwODMyOGQ0ZjEwMjIwZTY0YmNlZDQ3YjkwMzkwNWVlZWY3YTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqk46vWMH7YXFzdC+hS8PifzY6uUJ
Cf3PM8UoDFG2djBB9chBPyoKy5bF43EQqzNFZwYhqQIpk6kWmDrxXml4awQ19TZB
7yi/C74vBl/ovjQQPbKRWnmP9F4iusFvC8/XboA4AQSn1ogB6NM8VPzK3Y/AiYSa
Wq/cij2psi4yapj2QM5aWU+ruq4awNfzialZJJ4zKMC/UFye5jJsdd6acMNZzxrS
0h2drpzSD6qZUc7SRzNZ9Nqr5YZnSB3Sf1G7kD7lquRx5bJVEiG7R29H0uwqQ+HW
8vLUAGBxkbSL8tywks1STGe6AQKPQBfU6guoygJ7XrUNoR2UnXX0Apt/QwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDAwgyjU8QIg5kvO1HuQOQXu73orMB8GA1UdIwQY
MBaAFOSCmVjYAMoa3m4TynsoCyKc5mAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQt
MWQ1YmMwMDFhMWRlLzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQtMWQ1YmMwMDFhMWRl
LzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJmK6AcM5
WiJZCobVUQN8VMiQn/ZwM1XQsRsIeSD5olRo4m5/KXiGMHBfNydBJSnz+ZATc1kE
DmIEg3HbgfJYCzR0BugSg6GeTEGxvY5hxdzQnuRHkZR9HcNCk30wzgnPr92MJVAN
aCZrRWMwrZQWAWOcjqNEg6ON6EhVq0/cTn8dYuRn+qv+xvy/Td70XxYBZnUbMsDs
xrgmRMX70AZh9lUU0GYvMTnVDZt0Nop0V/+oQzFU7kB4UirL3eTQylM9QRODrk+W
sAch5NljlYXrIWHI42DsaSHakr6kJU2MBNNXEIcpYRw7rEsPPXBcoLIDAquHgZFM
PpeUg+pxxbyvhQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:49:13 2025 by rpki-client