Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/5b2960-d3c4-426d-bab0-5ae35c030686/1/idLNXdjVE9Suh-z9xVfr9fYj7DQ.mft
File: idLNXdjVE9Suh-z9xVfr9fYj7DQ.mft (raw, json)
Hash identifier: tG8Wg8FiccRP7oLWHV4lo4ow/tQ1MHAL+HieYvjgnNA=
Subject key identifier: FB:1A:5C:20:F9:7A:73:3A:EA:18:51:89:60:7F:C1:92:F3:9D:CA:BC
Authority key identifier: 89:D2:CD:5D:D8:D5:13:D4:AE:87:EC:FD:C5:57:EB:F5:F6:23:EC:34
Certificate issuer: /CN=89d2cd5dd8d513d4ae87ecfdc557ebf5f623ec34
Certificate serial: 01984965943ED6DC4E9C13703D05F91D7FFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idLNXdjVE9Suh-z9xVfr9fYj7DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/5b2960-d3c4-426d-bab0-5ae35c030686/1/idLNXdjVE9Suh-z9xVfr9fYj7DQ.mft
Manifest number: 0F20
Signing time: Sun 27 Jul 2025 01:00:50 +0000
Manifest this update: Sun 27 Jul 2025 01:00:50 +0000
Manifest next update: Mon 28 Jul 2025 01:00:50 +0000
Files and hashes: 1: idLNXdjVE9Suh-z9xVfr9fYj7DQ.crl (hash: OqCesEPcE+tEbINLoneSZm/GPjD+2lD91GnfjmVMObw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/5b2960-d3c4-426d-bab0-5ae35c030686/1/idLNXdjVE9Suh-z9xVfr9fYj7DQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/5b2960-d3c4-426d-bab0-5ae35c030686/1/idLNXdjVE9Suh-z9xVfr9fYj7DQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/idLNXdjVE9Suh-z9xVfr9fYj7DQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:65:94:3e:d6:dc:4e:9c:13:70:3d:05:f9:1d:7f:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d2cd5dd8d513d4ae87ecfdc557ebf5f623ec34
Validity
Not Before: Jul 27 01:00:50 2025 GMT
Not After : Jul 28 01:00:50 2025 GMT
Subject: CN=fb1a5c20f97a733aea185189607fc192f39dcabc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:41:3a:b2:78:f5:d0:bc:12:dc:9a:dc:af:21:
20:51:d5:02:76:d1:02:2b:de:b5:92:63:8b:53:b3:
c2:bf:41:c5:19:58:5d:92:20:86:6d:34:6f:fc:07:
ff:48:39:ca:0b:a0:8d:bd:bf:10:c6:5c:8b:14:86:
8a:14:ac:52:7b:aa:3a:f6:ac:4c:6a:0f:18:7a:85:
2e:ed:2e:fa:ba:e4:1c:55:e9:d0:b1:f1:31:be:f0:
d6:67:b0:83:0f:30:be:c6:9d:07:5f:08:da:d6:8c:
bc:49:22:46:6d:3b:b5:d5:2b:f4:cb:f7:94:b6:7e:
b4:c4:13:12:9c:91:13:77:b1:ae:1d:d2:e5:7a:cf:
d2:d8:f9:cf:1a:18:a5:21:28:d7:a4:95:04:de:d5:
d0:35:8d:9b:6b:7d:87:e3:6f:71:f6:90:27:ed:7c:
ff:f0:2b:fd:5a:dc:1a:98:6a:3c:7a:04:02:39:fa:
98:64:4b:39:0e:16:23:28:62:bd:cf:b5:39:66:ec:
6d:71:60:1c:b5:89:59:95:4d:0f:37:3e:3f:45:47:
3e:7c:7c:b7:c7:04:eb:75:ec:bb:20:1e:42:2c:cf:
6e:16:7c:0a:43:07:de:d6:1a:ac:ad:0e:79:4b:39:
24:b7:e9:3f:79:17:4b:4e:54:20:01:2e:fb:41:35:
32:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:1A:5C:20:F9:7A:73:3A:EA:18:51:89:60:7F:C1:92:F3:9D:CA:BC
X509v3 Authority Key Identifier:
keyid:89:D2:CD:5D:D8:D5:13:D4:AE:87:EC:FD:C5:57:EB:F5:F6:23:EC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idLNXdjVE9Suh-z9xVfr9fYj7DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/5b2960-d3c4-426d-bab0-5ae35c030686/1/idLNXdjVE9Suh-z9xVfr9fYj7DQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/5b2960-d3c4-426d-bab0-5ae35c030686/1/idLNXdjVE9Suh-z9xVfr9fYj7DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:bb:24:8b:7f:8a:eb:5d:c5:c7:63:8e:ee:bd:98:4e:0d:d9:
3b:59:26:13:93:81:5a:f0:09:b6:8f:2c:04:4c:cd:01:ff:77:
f0:33:27:63:92:a5:e8:56:73:99:4f:de:c0:b3:54:cd:e5:0d:
79:a4:fb:12:35:41:96:42:ee:7b:5f:b6:ed:12:81:36:88:00:
b6:d9:af:54:2f:a9:d5:24:59:19:45:c1:24:6a:e0:81:d7:be:
d6:13:34:6c:26:14:64:9f:ce:9b:6e:42:95:92:cb:f1:53:82:
da:dc:76:6c:0c:42:34:40:e6:f6:65:04:f2:8e:e9:29:29:4a:
51:b0:42:4f:bf:7d:72:80:27:7e:60:3d:66:fd:79:68:fc:08:
3e:8d:52:5d:65:8b:23:7f:8a:7d:e9:32:7c:75:ff:8d:26:ee:
ab:16:15:b5:eb:2f:e4:2a:61:9d:fd:38:77:48:a9:c4:68:cc:
68:d8:02:41:15:01:bb:18:8c:60:55:54:ad:e4:86:81:89:a0:
2f:2f:f3:c4:b3:cf:1d:70:23:38:22:be:1d:2c:31:72:f5:53:
1f:a1:5a:fb:b2:bd:b7:3c:e5:d9:84:33:73:e0:8c:4b:68:b9:
42:90:f6:75:1f:cc:18:99:2d:d4:d9:eb:c1:fc:ad:96:39:9f:
f3:a3:e1:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJZZQ+1txOnBNwPQX5HX/+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5ZDJjZDVkZDhkNTEzZDRhZTg3ZWNmZGM1NTdlYmY1ZjYy
M2VjMzQwHhcNMjUwNzI3MDEwMDUwWhcNMjUwNzI4MDEwMDUwWjAzMTEwLwYDVQQD
EyhmYjFhNWMyMGY5N2E3MzNhZWExODUxODk2MDdmYzE5MmYzOWRjYWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0E6snj10LwS3JrcryEgUdUCdtEC
K961kmOLU7PCv0HFGVhdkiCGbTRv/Af/SDnKC6CNvb8QxlyLFIaKFKxSe6o69qxM
ag8YeoUu7S76uuQcVenQsfExvvDWZ7CDDzC+xp0HXwja1oy8SSJGbTu11Sv0y/eU
tn60xBMSnJETd7GuHdLles/S2PnPGhilISjXpJUE3tXQNY2ba32H429x9pAn7Xz/
8Cv9WtwamGo8egQCOfqYZEs5DhYjKGK9z7U5ZuxtcWActYlZlU0PNz4/RUc+fHy3
xwTrdey7IB5CLM9uFnwKQwfe1hqsrQ55Szkkt+k/eRdLTlQgAS77QTUy2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPsaXCD5enM66hhRiWB/wZLzncq8MB8GA1UdIwQY
MBaAFInSzV3Y1RPUrofs/cVX6/X2I+w0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWRMTlhkalZFOVN1aC16OXhWZnI5ZllqN0RRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS81YjI5NjAtZDNjNC00MjZkLWJhYjAt
NWFlMzVjMDMwNjg2LzEvaWRMTlhkalZFOVN1aC16OXhWZnI5ZllqN0RRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS81YjI5NjAtZDNjNC00MjZkLWJhYjAtNWFlMzVjMDMwNjg2
LzEvaWRMTlhkalZFOVN1aC16OXhWZnI5ZllqN0RRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARLski3+K
613Fx2OO7r2YTg3ZO1kmE5OBWvAJto8sBEzNAf938DMnY5Kl6FZzmU/ewLNUzeUN
eaT7EjVBlkLue1+27RKBNogAttmvVC+p1SRZGUXBJGrggde+1hM0bCYUZJ/Om25C
lZLL8VOC2tx2bAxCNEDm9mUE8o7pKSlKUbBCT799coAnfmA9Zv15aPwIPo1SXWWL
I3+KfekyfHX/jSbuqxYVtesv5Cphnf04d0ipxGjMaNgCQRUBuxiMYFVUreSGgYmg
Ly/zxLPPHXAjOCK+HSwxcvVTH6Fa+7K9tzzl2YQzc+CMS2i5QpD2dR/MGJkt1Nnr
wfytljmf86PhwA==
-----END CERTIFICATE-----
Generated at Sun Jul 27 04:05:52 2025 by rpki-client