Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
File: 5xHIkR7brjbfGoC76BSyWg-UOfo.mft (raw, json)
Hash identifier: O3oZGVCcSfDbFl2kakVYcEqYz8zkS8DkluOe5v68XRg=
Subject key identifier: 51:63:E5:42:95:DA:EE:D9:37:AF:C6:7C:6A:33:36:DD:6A:C2:66:14
Authority key identifier: E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA
Certificate issuer: /CN=e711c8911edbae36df1a80bbe814b25a0f9439fa
Certificate serial: 0198D6614B6AD4ADEB2A14E8ADBD3052299C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
Manifest number: 0967
Signing time: Sat 23 Aug 2025 10:02:37 +0000
Manifest this update: Sat 23 Aug 2025 10:02:37 +0000
Manifest next update: Sun 24 Aug 2025 10:02:37 +0000
Files and hashes: 1: 5xHIkR7brjbfGoC76BSyWg-UOfo.crl (hash: 5iNeNPycxgtlt7YqwLiK7ABwg+8Kv6VxKM5EHjX9L9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:4b:6a:d4:ad:eb:2a:14:e8:ad:bd:30:52:29:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e711c8911edbae36df1a80bbe814b25a0f9439fa
Validity
Not Before: Aug 23 10:02:37 2025 GMT
Not After : Aug 24 10:02:37 2025 GMT
Subject: CN=5163e54295daeed937afc67c6a3336dd6ac26614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:81:92:af:0d:3d:f4:b8:76:19:5a:bd:b3:39:
c4:10:cc:ed:88:7c:9f:65:bc:b8:00:ec:b9:a8:91:
45:af:d5:46:62:d7:12:af:8f:3d:28:ef:6c:1b:99:
b9:56:fb:2a:bf:b7:fd:a2:b7:ee:0a:10:5c:ef:db:
ec:99:af:13:b9:7e:1e:ee:f2:73:09:74:1b:8b:ea:
ae:8c:ab:c0:55:58:9d:e6:63:94:0b:ed:74:b2:71:
e5:b6:f1:32:68:8a:4b:7c:44:56:2b:bf:4e:f6:ce:
65:7e:86:56:d7:1e:6c:6e:58:01:a4:30:7b:8d:e8:
6b:02:e5:4f:0c:07:f0:c8:52:10:95:55:8e:d6:f2:
73:1d:33:70:8e:6b:7b:76:1c:c2:0b:22:bb:70:71:
82:3d:13:3a:5c:1c:04:ec:9d:8b:1f:cc:de:08:c1:
e9:91:6e:9b:82:8f:3f:ef:bd:cb:b8:ad:ff:f6:b7:
a9:37:72:14:d3:3a:59:4f:9d:6e:9a:6a:f2:8f:10:
f7:3e:48:a6:f4:e0:a7:11:45:71:e6:85:37:95:8f:
41:05:eb:36:4d:c5:73:9c:55:1a:e8:b4:e2:bc:a1:
36:6e:b1:93:ac:0b:88:95:01:30:04:77:67:b7:fd:
79:59:6e:78:11:ed:cc:be:ab:fc:b2:a7:5e:83:6a:
f1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:63:E5:42:95:DA:EE:D9:37:AF:C6:7C:6A:33:36:DD:6A:C2:66:14
X509v3 Authority Key Identifier:
keyid:E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:a6:f2:92:c5:62:17:9e:e0:94:93:1f:a3:fc:77:87:24:df:
4a:63:d0:14:c1:5e:83:e1:b7:77:a8:e6:60:64:48:15:d5:26:
a3:7b:f2:99:26:b9:da:62:71:ac:ba:46:c9:7c:8d:04:94:bd:
1e:9e:0e:0b:b4:5f:e0:7f:09:95:d8:56:01:60:ba:42:41:0d:
cd:d6:c0:60:98:13:4d:6f:ce:2e:66:34:0f:92:01:a6:a1:b3:
4e:cb:99:87:3d:4a:73:74:94:24:26:b4:0a:88:c3:ee:82:4c:
b2:1d:a8:32:89:15:f8:9a:1e:19:a6:e6:6e:87:31:68:60:64:
bc:d0:06:aa:8f:1a:f2:4e:45:97:53:15:11:31:d5:19:03:a7:
1e:de:ae:e7:ce:72:4b:d9:0f:4f:da:0e:98:e5:93:41:d5:f7:
6a:c4:76:db:5a:1f:ad:e9:e4:f2:f5:4e:a4:e0:d7:37:f5:97:
b4:56:e1:fa:9c:5c:f2:8a:5f:1e:a1:db:f6:b9:82:c3:97:8b:
d1:f6:4b:78:2d:ee:2b:77:e0:18:2e:0d:86:8f:2e:d5:6d:84:
6b:d3:a9:3d:96:49:ac:e5:f8:1f:4c:11:2b:a4:b3:45:3e:d0:
a6:84:15:f0:c3:aa:34:f1:89:5e:d4:81:f9:b7:b2:80:d0:43:
26:f7:6b:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYUtq1K3rKhTorb0wUimcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3MTFjODkxMWVkYmFlMzZkZjFhODBiYmU4MTRiMjVhMGY5
NDM5ZmEwHhcNMjUwODIzMTAwMjM3WhcNMjUwODI0MTAwMjM3WjAzMTEwLwYDVQQD
Eyg1MTYzZTU0Mjk1ZGFlZWQ5MzdhZmM2N2M2YTMzMzZkZDZhYzI2NjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA24GSrw099Lh2GVq9sznEEMztiHyf
Zby4AOy5qJFFr9VGYtcSr489KO9sG5m5Vvsqv7f9orfuChBc79vsma8TuX4e7vJz
CXQbi+qujKvAVVid5mOUC+10snHltvEyaIpLfERWK79O9s5lfoZW1x5sblgBpDB7
jehrAuVPDAfwyFIQlVWO1vJzHTNwjmt7dhzCCyK7cHGCPRM6XBwE7J2LH8zeCMHp
kW6bgo8/773LuK3/9repN3IU0zpZT51ummryjxD3Pkim9OCnEUVx5oU3lY9BBes2
TcVznFUa6LTivKE2brGTrAuIlQEwBHdnt/15WW54Ee3Mvqv8sqdeg2rxuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFFj5UKV2u7ZN6/GfGozNt1qwmYUMB8GA1UdIwQY
MBaAFOcRyJEe26423xqAu+gUsloPlDn6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXhISWtSN2JyamJmR29DNzZCU3lXZy1VT2ZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9hYWZjMTUtMWU3OS00ZmU5LTlmYWQt
MDNhNGRkNGE5MTU2LzEvNXhISWtSN2JyamJmR29DNzZCU3lXZy1VT2ZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9hYWZjMTUtMWU3OS00ZmU5LTlmYWQtMDNhNGRkNGE5MTU2
LzEvNXhISWtSN2JyamJmR29DNzZCU3lXZy1VT2ZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABabyksVi
F57glJMfo/x3hyTfSmPQFMFeg+G3d6jmYGRIFdUmo3vymSa52mJxrLpGyXyNBJS9
Hp4OC7Rf4H8JldhWAWC6QkENzdbAYJgTTW/OLmY0D5IBpqGzTsuZhz1Kc3SUJCa0
CojD7oJMsh2oMokV+JoeGabmbocxaGBkvNAGqo8a8k5Fl1MVETHVGQOnHt6u585y
S9kPT9oOmOWTQdX3asR221ofrenk8vVOpODXN/WXtFbh+pxc8opfHqHb9rmCw5eL
0fZLeC3uK3fgGC4Nho8u1W2Ea9OpPZZJrOX4H0wRK6SzRT7QpoQV8MOqNPGJXtSB
+beygNBDJvdrKw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:24:09 2025 by rpki-client