Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/5cfb0f-ec8d-4146-991e-76093750eec1/1/5cBMAZvGk2UEKFWFUfrNIiCAEm0.mft
File: 5cBMAZvGk2UEKFWFUfrNIiCAEm0.mft (raw, json)
Hash identifier: leD+3IW79sLBd7kE0hCsSZXRX4ENUwgZqp3g7BLFbz8=
Subject key identifier: B1:49:9C:19:02:22:85:B3:A6:0B:81:48:22:5D:49:6B:CF:A5:62:1E
Authority key identifier: E5:C0:4C:01:9B:C6:93:65:04:28:55:85:51:FA:CD:22:20:80:12:6D
Certificate issuer: /CN=e5c04c019bc693650428558551facd222080126d
Certificate serial: 0198481BF242AFE54B10DF6E76044CF7E7A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5cBMAZvGk2UEKFWFUfrNIiCAEm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/5cfb0f-ec8d-4146-991e-76093750eec1/1/5cBMAZvGk2UEKFWFUfrNIiCAEm0.mft
Manifest number: 02AA
Signing time: Sat 26 Jul 2025 19:00:47 +0000
Manifest this update: Sat 26 Jul 2025 19:00:47 +0000
Manifest next update: Sun 27 Jul 2025 19:00:47 +0000
Files and hashes: 1: 5cBMAZvGk2UEKFWFUfrNIiCAEm0.crl (hash: x7eVzl24SumvInGl6ad0XjRgNwFJhUJdTJepZW1kX8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/5cfb0f-ec8d-4146-991e-76093750eec1/1/5cBMAZvGk2UEKFWFUfrNIiCAEm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/5cfb0f-ec8d-4146-991e-76093750eec1/1/5cBMAZvGk2UEKFWFUfrNIiCAEm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5cBMAZvGk2UEKFWFUfrNIiCAEm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:1b:f2:42:af:e5:4b:10:df:6e:76:04:4c:f7:e7:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5c04c019bc693650428558551facd222080126d
Validity
Not Before: Jul 26 19:00:47 2025 GMT
Not After : Jul 27 19:00:47 2025 GMT
Subject: CN=b1499c19022285b3a60b8148225d496bcfa5621e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:62:1b:e6:c1:06:cf:3d:f4:c1:fc:f1:dc:58:
1b:68:f7:d7:b2:b7:09:e5:69:8a:cd:c8:28:1d:7e:
40:0b:32:e2:8c:5b:0c:59:7c:b0:e3:01:70:6c:af:
d4:10:56:d8:0b:d3:85:27:27:71:29:86:c8:a3:2f:
0c:1d:5e:55:5d:6a:d9:01:75:49:b1:7b:94:01:2b:
37:1a:41:76:f6:6f:d9:cf:17:3c:0c:c4:6f:ca:ed:
ab:48:78:9a:51:f0:d7:a0:4b:23:7c:1b:e5:97:ae:
a9:39:62:0c:c7:09:a9:32:83:d0:e5:87:50:a7:4e:
8b:7a:98:8e:72:92:a9:72:47:8b:54:80:c1:ca:25:
e8:b8:56:0e:52:9e:51:89:ec:97:c3:37:a9:c8:a4:
16:9e:4c:18:40:7b:22:a2:31:aa:bf:0c:2b:28:c6:
36:90:a1:eb:a9:f7:25:fe:be:4d:a7:11:45:2b:70:
c7:a4:bb:e1:16:74:df:cc:7c:a8:eb:ae:6b:a2:01:
38:22:1d:4c:c5:15:a4:11:01:d1:fb:7e:af:19:dc:
56:db:31:07:e4:ba:51:4f:f8:a7:a1:d5:0d:da:8c:
6b:0f:f0:17:50:61:38:5d:2d:18:fd:57:e2:c5:82:
11:11:b1:18:c2:51:85:fd:81:9d:62:69:1d:ce:7b:
6a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:49:9C:19:02:22:85:B3:A6:0B:81:48:22:5D:49:6B:CF:A5:62:1E
X509v3 Authority Key Identifier:
keyid:E5:C0:4C:01:9B:C6:93:65:04:28:55:85:51:FA:CD:22:20:80:12:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cBMAZvGk2UEKFWFUfrNIiCAEm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/5cfb0f-ec8d-4146-991e-76093750eec1/1/5cBMAZvGk2UEKFWFUfrNIiCAEm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/5cfb0f-ec8d-4146-991e-76093750eec1/1/5cBMAZvGk2UEKFWFUfrNIiCAEm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:6e:ac:e7:bc:d7:ad:56:c7:36:e8:14:7e:8d:84:97:e1:38:
b6:cb:de:b4:c9:cb:ea:e1:1d:27:23:d4:95:5a:e9:8b:3e:3e:
9a:b0:14:92:9d:33:0a:14:c6:04:72:df:45:c8:44:f1:00:0d:
3c:13:e2:7b:22:b8:b2:0d:b7:5e:55:33:8f:c5:36:86:26:9d:
99:93:9b:2b:fc:47:3c:e7:44:c6:9c:fc:29:fd:b1:5a:db:76:
f2:73:97:f8:e9:d1:7f:45:c8:16:92:84:e4:1f:77:b2:85:2f:
f7:e3:b6:b6:dd:ab:4b:99:49:21:01:e6:38:e9:22:8a:30:b0:
8c:e9:fd:bc:65:4d:28:30:44:ef:01:85:7b:9e:33:81:40:ab:
92:e6:08:9b:5a:89:5c:44:27:ff:1b:76:16:21:95:25:8f:91:
6f:28:46:5e:a7:82:2c:07:3a:d5:a6:57:f7:64:ec:e6:42:06:
e8:a0:56:fb:dc:40:9f:76:33:5e:9d:38:af:42:86:bc:80:6b:
e7:6e:1b:55:53:e9:32:23:39:e3:c3:93:4b:c0:bf:c4:db:dd:
0b:91:91:f8:4e:32:74:9e:10:cf:3a:07:51:b2:a3:bc:6f:d3:
16:62:a7:36:5b:e2:00:7d:c7:d3:57:5c:cb:96:78:a5:e6:31:
92:95:b7:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhIG/JCr+VLEN9udgRM9+elMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YzA0YzAxOWJjNjkzNjUwNDI4NTU4NTUxZmFjZDIyMjA4
MDEyNmQwHhcNMjUwNzI2MTkwMDQ3WhcNMjUwNzI3MTkwMDQ3WjAzMTEwLwYDVQQD
EyhiMTQ5OWMxOTAyMjI4NWIzYTYwYjgxNDgyMjVkNDk2YmNmYTU2MjFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmIb5sEGzz30wfzx3FgbaPfXsrcJ
5WmKzcgoHX5ACzLijFsMWXyw4wFwbK/UEFbYC9OFJydxKYbIoy8MHV5VXWrZAXVJ
sXuUASs3GkF29m/Zzxc8DMRvyu2rSHiaUfDXoEsjfBvll66pOWIMxwmpMoPQ5YdQ
p06LepiOcpKpckeLVIDByiXouFYOUp5RieyXwzepyKQWnkwYQHsiojGqvwwrKMY2
kKHrqfcl/r5NpxFFK3DHpLvhFnTfzHyo665rogE4Ih1MxRWkEQHR+36vGdxW2zEH
5LpRT/inodUN2oxrD/AXUGE4XS0Y/VfixYIREbEYwlGF/YGdYmkdzntqIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLFJnBkCIoWzpguBSCJdSWvPpWIeMB8GA1UdIwQY
MBaAFOXATAGbxpNlBChVhVH6zSIggBJtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWNCTUFadkdrMlVFS0ZXRlVmck5JaUNBRW0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS81Y2ZiMGYtZWM4ZC00MTQ2LTk5MWUt
NzYwOTM3NTBlZWMxLzEvNWNCTUFadkdrMlVFS0ZXRlVmck5JaUNBRW0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS81Y2ZiMGYtZWM4ZC00MTQ2LTk5MWUtNzYwOTM3NTBlZWMx
LzEvNWNCTUFadkdrMlVFS0ZXRlVmck5JaUNBRW0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhm6s57zX
rVbHNugUfo2El+E4tsvetMnL6uEdJyPUlVrpiz4+mrAUkp0zChTGBHLfRchE8QAN
PBPieyK4sg23XlUzj8U2hiadmZObK/xHPOdExpz8Kf2xWtt28nOX+OnRf0XIFpKE
5B93soUv9+O2tt2rS5lJIQHmOOkiijCwjOn9vGVNKDBE7wGFe54zgUCrkuYIm1qJ
XEQn/xt2FiGVJY+RbyhGXqeCLAc61aZX92Ts5kIG6KBW+9xAn3YzXp04r0KGvIBr
524bVVPpMiM548OTS8C/xNvdC5GR+E4ydJ4QzzoHUbKjvG/TFmKnNlviAH3H01dc
y5Z4peYxkpW3Og==
-----END CERTIFICATE-----
Generated at Sun Jul 27 01:27:46 2025 by rpki-client