Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
File: 5XFody33TCeZnVM4leGr7c6XJjw.mft (raw, json)
Hash identifier: YQyLedztwFHti1f+j01tBfHhAezJJ5uZ8jixulxec7c=
Subject key identifier: 70:8D:8B:30:DC:76:32:D5:8E:2A:06:59:C2:DB:44:35:19:04:D6:58
Authority key identifier: E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C
Certificate issuer: /CN=e57168772df74c27999d533895e1abedce97263c
Certificate serial: 019849D30AEE2E323DE2FC9EEFF43FC4C517
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
Manifest number: 0159
Signing time: Sun 27 Jul 2025 03:00:24 +0000
Manifest this update: Sun 27 Jul 2025 03:00:24 +0000
Manifest next update: Mon 28 Jul 2025 03:00:24 +0000
Files and hashes: 1: 5XFody33TCeZnVM4leGr7c6XJjw.crl (hash: likuN2jC1n3gqOSy8EOPTAB+7+74lBCQ+RUNsko3atA=)
2: O3bnjDPRR3LrGEnM4sKqgBKSZIg.roa (hash: rlXDUrdTVRzlXfFa/VppQ/JwyMwu/FNANchTVmv+fxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:d3:0a:ee:2e:32:3d:e2:fc:9e:ef:f4:3f:c4:c5:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e57168772df74c27999d533895e1abedce97263c
Validity
Not Before: Jul 27 03:00:24 2025 GMT
Not After : Jul 28 03:00:24 2025 GMT
Subject: CN=708d8b30dc7632d58e2a0659c2db44351904d658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:da:c7:bf:5b:72:39:e8:87:42:ba:20:40:05:
09:35:49:17:59:9c:ee:b0:3c:7e:d1:0f:34:3a:e2:
b4:1b:83:2e:3c:2a:43:67:1f:82:00:e3:7a:79:48:
86:0d:62:c9:cb:4b:e6:5c:70:97:cb:50:f8:5a:f1:
2f:79:3d:f6:91:94:a0:31:28:89:bc:ef:86:24:cf:
a9:08:a6:2b:e7:77:ba:91:ed:c8:05:8f:66:35:eb:
96:16:33:f1:29:26:f2:24:a8:60:6c:14:5a:fd:0f:
a8:de:a2:a3:7a:31:a7:2c:da:39:6a:c5:fa:44:49:
d5:bc:9c:3f:5f:b0:34:83:55:71:ce:11:4d:d8:c3:
ca:39:46:bd:93:ea:cc:47:10:98:4e:9d:c4:e8:c9:
a8:68:22:b3:11:24:54:57:5f:40:fd:5d:99:42:0e:
66:a5:3c:31:ce:26:dc:cd:d8:a6:dd:ed:28:05:65:
48:12:c6:23:bf:b2:2a:f1:5c:f1:eb:61:82:db:7e:
d9:7e:6d:48:7d:7b:fe:73:37:4c:77:28:71:bc:f3:
90:82:b2:dc:09:ae:4c:c9:f1:05:61:e6:c0:df:83:
46:33:3a:5a:65:ff:dd:09:3a:56:0b:2f:18:1c:e2:
bd:47:7d:81:32:05:71:bd:f4:fd:c6:6f:ae:10:c8:
02:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:8D:8B:30:DC:76:32:D5:8E:2A:06:59:C2:DB:44:35:19:04:D6:58
X509v3 Authority Key Identifier:
keyid:E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:0a:3e:be:6f:e6:01:9a:f1:77:e1:77:c8:31:21:e7:07:ad:
fc:d4:91:a1:8a:d2:fc:38:1c:03:10:1a:b9:d0:07:1e:25:00:
c7:94:c5:7b:94:3e:96:88:f3:23:ff:a8:1d:50:83:fd:64:3a:
d9:47:95:69:ef:5c:9d:c5:cf:26:c7:6d:6a:7a:07:aa:13:41:
0f:38:2b:f2:34:48:72:ce:4d:cf:f1:e4:45:98:bd:a9:3e:fd:
9c:b6:7d:c4:c7:c0:d4:6e:73:9d:02:2d:b1:1a:91:ea:c5:73:
6f:4d:ea:f4:62:b5:f7:ab:3a:bf:01:52:84:38:f6:0d:08:9a:
71:17:b7:a7:f9:17:cc:f8:c7:c8:ee:b4:48:9a:62:fe:8d:d4:
dd:a1:94:46:0c:1d:a4:0f:6f:d7:89:7d:c6:95:5a:1b:6d:9d:
35:c4:74:f0:e1:6b:b3:9b:1d:4b:62:f1:8f:41:c6:57:b7:56:
b6:37:0c:08:5e:99:8e:2b:46:ff:24:a8:8a:57:e9:7c:01:fb:
ae:6b:a9:11:1d:23:11:94:46:2c:c2:e5:1b:01:f6:6d:ea:97:
34:82:8f:19:79:f2:29:12:1e:c1:db:23:19:8f:6e:40:7b:6a:
3f:92:d7:73:a6:12:a2:0a:b3:e9:59:8c:10:f6:f3:99:99:5e:
22:30:87:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJ0wruLjI94vye7/Q/xMUXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1NzE2ODc3MmRmNzRjMjc5OTlkNTMzODk1ZTFhYmVkY2U5
NzI2M2MwHhcNMjUwNzI3MDMwMDI0WhcNMjUwNzI4MDMwMDI0WjAzMTEwLwYDVQQD
Eyg3MDhkOGIzMGRjNzYzMmQ1OGUyYTA2NTljMmRiNDQzNTE5MDRkNjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4NrHv1tyOeiHQrogQAUJNUkXWZzu
sDx+0Q80OuK0G4MuPCpDZx+CAON6eUiGDWLJy0vmXHCXy1D4WvEveT32kZSgMSiJ
vO+GJM+pCKYr53e6ke3IBY9mNeuWFjPxKSbyJKhgbBRa/Q+o3qKjejGnLNo5asX6
REnVvJw/X7A0g1VxzhFN2MPKOUa9k+rMRxCYTp3E6MmoaCKzESRUV19A/V2ZQg5m
pTwxzibczdim3e0oBWVIEsYjv7Iq8Vzx62GC237Zfm1IfXv+czdMdyhxvPOQgrLc
Ca5MyfEFYebA34NGMzpaZf/dCTpWCy8YHOK9R32BMgVxvfT9xm+uEMgCKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHCNizDcdjLVjioGWcLbRDUZBNZYMB8GA1UdIwQY
MBaAFOVxaHct90wnmZ1TOJXhq+3OlyY8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVhGb2R5MzNUQ2VablZNNGxlR3I3YzZYSmp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi82N2MwODctOGI3My00YmM4LWJmZWIt
YjNkZmYzYTkxMTAyLzEvNVhGb2R5MzNUQ2VablZNNGxlR3I3YzZYSmp3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi82N2MwODctOGI3My00YmM4LWJmZWItYjNkZmYzYTkxMTAy
LzEvNVhGb2R5MzNUQ2VablZNNGxlR3I3YzZYSmp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATgo+vm/m
AZrxd+F3yDEh5wet/NSRoYrS/DgcAxAaudAHHiUAx5TFe5Q+lojzI/+oHVCD/WQ6
2UeVae9cncXPJsdtanoHqhNBDzgr8jRIcs5Nz/HkRZi9qT79nLZ9xMfA1G5znQIt
sRqR6sVzb03q9GK196s6vwFShDj2DQiacRe3p/kXzPjHyO60SJpi/o3U3aGURgwd
pA9v14l9xpVaG22dNcR08OFrs5sdS2Lxj0HGV7dWtjcMCF6ZjitG/ySoilfpfAH7
rmupER0jEZRGLMLlGwH2beqXNIKPGXnyKRIewdsjGY9uQHtqP5LXc6YSogqz6VmM
EPbzmZleIjCHfg==
-----END CERTIFICATE-----
Generated at Sun Jul 27 09:58:37 2025 by rpki-client