Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/590b7f-bbd2-4666-b8fc-a80224604f25/1/9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.mft
File: 9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.mft (raw, json)
Hash identifier: NV1LjiSO1jQbUupBAUSanUoO0CsxtzhuA/F/tA+kxcQ=
Subject key identifier: 53:19:71:8D:ED:D6:0B:0D:C7:84:06:60:DA:A1:33:64:45:AC:DD:5B
Authority key identifier: F5:77:66:F0:72:6C:FF:86:18:AF:96:82:58:F5:BB:22:9E:93:7C:6E
Certificate issuer: /CN=f57766f0726cff8618af968258f5bb229e937c6e
Certificate serial: 019846D1EDDA666A636A07AEA0EC5A57ED1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/590b7f-bbd2-4666-b8fc-a80224604f25/1/9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.mft
Manifest number: 0D2C
Signing time: Sat 26 Jul 2025 13:00:19 +0000
Manifest this update: Sat 26 Jul 2025 13:00:19 +0000
Manifest next update: Sun 27 Jul 2025 13:00:19 +0000
Files and hashes: 1: 9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.crl (hash: wGPx0A1aoQbuQoLk5YLKSOeayIhIkktN0m6d9RnABnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/590b7f-bbd2-4666-b8fc-a80224604f25/1/9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/590b7f-bbd2-4666-b8fc-a80224604f25/1/9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 06:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:46:d1:ed:da:66:6a:63:6a:07:ae:a0:ec:5a:57:ed:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f57766f0726cff8618af968258f5bb229e937c6e
Validity
Not Before: Jul 26 13:00:19 2025 GMT
Not After : Jul 27 13:00:19 2025 GMT
Subject: CN=5319718dedd60b0dc7840660daa1336445acdd5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:7f:0b:a3:7b:cf:ee:97:ec:be:3f:7d:a9:14:
ca:09:e2:23:2b:f4:f2:af:cf:1a:02:e9:da:64:aa:
da:91:53:8a:a2:2a:5b:43:af:e3:20:5e:7d:6d:33:
43:ee:c1:1c:38:91:b6:0c:2d:6c:9f:dc:f7:ee:ae:
35:b1:86:5e:c8:62:6d:88:ec:57:e7:62:46:a1:9c:
39:65:77:d6:1d:dc:4f:4d:aa:01:ea:59:00:a4:de:
fa:e0:1e:4a:ba:99:9b:90:59:d7:98:36:c7:da:30:
78:65:a7:b7:06:c7:57:ba:e5:b1:b5:ee:f7:45:7a:
17:ae:ce:ba:bc:0f:a0:ae:32:89:c9:9b:22:2e:11:
10:24:5c:d7:58:8f:04:3e:ca:a5:5d:01:d7:19:06:
23:75:c2:42:33:fc:b6:01:92:2d:fb:28:f1:2d:fe:
46:31:28:ba:f6:c5:c3:63:08:24:64:c0:67:a6:98:
8d:19:b6:8a:19:5a:63:56:8b:77:1e:94:ca:2d:56:
0e:7c:65:42:f9:e3:c6:e4:a4:49:a0:50:86:b4:6d:
2c:52:3a:c9:50:46:d9:f1:21:64:25:4c:f7:6a:f1:
33:e6:bd:dc:f4:2b:56:12:d9:de:72:5c:54:a8:af:
2a:45:65:bb:9b:c7:dd:2d:9d:31:40:9c:a7:ee:f4:
e1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:19:71:8D:ED:D6:0B:0D:C7:84:06:60:DA:A1:33:64:45:AC:DD:5B
X509v3 Authority Key Identifier:
keyid:F5:77:66:F0:72:6C:FF:86:18:AF:96:82:58:F5:BB:22:9E:93:7C:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/590b7f-bbd2-4666-b8fc-a80224604f25/1/9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/590b7f-bbd2-4666-b8fc-a80224604f25/1/9Xdm8HJs_4YYr5aCWPW7Ip6TfG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:43:5e:13:88:3b:4f:1d:5e:55:c9:34:80:24:b7:2f:57:4e:
c7:bc:73:d9:4a:31:ff:fc:0a:ab:96:10:cd:54:07:1f:e7:b7:
57:42:d9:a7:9c:83:b5:a6:e1:81:61:93:6c:db:56:e5:1d:be:
b5:4d:19:25:5a:80:2b:8f:b2:1e:9c:b6:69:e9:5d:6d:c4:5b:
b9:0e:4d:9c:4a:04:7a:a0:bc:8d:41:20:02:33:90:14:f0:5b:
fb:db:89:4e:5b:eb:56:02:0e:a0:2a:2f:a3:48:e0:52:41:7e:
76:76:fa:4b:30:e9:dc:18:ce:61:a3:2d:51:38:99:c7:4a:d1:
87:53:2d:d8:77:3a:b5:f3:7a:f9:07:29:87:ee:95:cd:c9:e6:
fa:94:77:da:41:e1:b5:d7:8a:2d:65:61:fc:60:58:75:5e:7d:
f0:69:d8:77:95:b8:bc:f2:be:2b:c2:aa:91:bd:3a:0b:7e:5b:
68:a5:92:29:d4:48:24:2e:5c:c8:3a:d6:90:98:e4:9c:63:d3:
a7:6b:9c:9e:b9:c7:eb:62:dc:65:2e:e6:2b:4a:df:79:53:d9:
fe:b2:da:b8:71:fa:ac:07:e6:fd:5b:c1:d8:4f:55:ef:2e:57:
c4:8c:33:ff:81:0c:a2:da:32:58:f2:c1:44:c2:00:d1:93:bb:
3a:f5:96:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhG0e3aZmpjageuoOxaV+0aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1Nzc2NmYwNzI2Y2ZmODYxOGFmOTY4MjU4ZjViYjIyOWU5
MzdjNmUwHhcNMjUwNzI2MTMwMDE5WhcNMjUwNzI3MTMwMDE5WjAzMTEwLwYDVQQD
Eyg1MzE5NzE4ZGVkZDYwYjBkYzc4NDA2NjBkYWExMzM2NDQ1YWNkZDViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6H8Lo3vP7pfsvj99qRTKCeIjK/Ty
r88aAunaZKrakVOKoipbQ6/jIF59bTND7sEcOJG2DC1sn9z37q41sYZeyGJtiOxX
52JGoZw5ZXfWHdxPTaoB6lkApN764B5KupmbkFnXmDbH2jB4Zae3BsdXuuWxte73
RXoXrs66vA+grjKJyZsiLhEQJFzXWI8EPsqlXQHXGQYjdcJCM/y2AZIt+yjxLf5G
MSi69sXDYwgkZMBnppiNGbaKGVpjVot3HpTKLVYOfGVC+ePG5KRJoFCGtG0sUjrJ
UEbZ8SFkJUz3avEz5r3c9CtWEtneclxUqK8qRWW7m8fdLZ0xQJyn7vTh5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFMZcY3t1gsNx4QGYNqhM2RFrN1bMB8GA1UdIwQY
MBaAFPV3ZvBybP+GGK+Wglj1uyKek3xuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOVhkbThISnNfNFlZcjVhQ1dQVzdJcDZUZkc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC81OTBiN2YtYmJkMi00NjY2LWI4ZmMt
YTgwMjI0NjA0ZjI1LzEvOVhkbThISnNfNFlZcjVhQ1dQVzdJcDZUZkc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC81OTBiN2YtYmJkMi00NjY2LWI4ZmMtYTgwMjI0NjA0ZjI1
LzEvOVhkbThISnNfNFlZcjVhQ1dQVzdJcDZUZkc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfkNeE4g7
Tx1eVck0gCS3L1dOx7xz2Uox//wKq5YQzVQHH+e3V0LZp5yDtabhgWGTbNtW5R2+
tU0ZJVqAK4+yHpy2aeldbcRbuQ5NnEoEeqC8jUEgAjOQFPBb+9uJTlvrVgIOoCov
o0jgUkF+dnb6SzDp3BjOYaMtUTiZx0rRh1Mt2Hc6tfN6+Qcph+6Vzcnm+pR32kHh
tdeKLWVh/GBYdV598GnYd5W4vPK+K8Kqkb06C35baKWSKdRIJC5cyDrWkJjknGPT
p2ucnrnH62LcZS7mK0rfeVPZ/rLauHH6rAfm/VvB2E9V7y5XxIwz/4EMotoyWPLB
RMIA0ZO7OvWW6g==
-----END CERTIFICATE-----
Generated at Sat Jul 26 15:05:09 2025 by rpki-client