Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.mft
File: K5X2grxtV338PBDs7icYOB_uOyM.mft (raw, json)
Hash identifier: /c4c40nryChE6zXmJpU1kabvRhOUzd6Ia4QnTF2zjJk=
Subject key identifier: 2E:E7:CC:A8:F1:E0:FB:FC:89:4C:78:EA:DC:15:B0:54:29:D4:49:02
Authority key identifier: 2B:95:F6:82:BC:6D:57:7D:FC:3C:10:EC:EE:27:18:38:1F:EE:3B:23
Certificate issuer: /CN=2b95f682bc6d577dfc3c10ecee2718381fee3b23
Certificate serial: 01984B54094E1F5301C18C2EFE369F40AAA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5X2grxtV338PBDs7icYOB_uOyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.mft
Manifest number: 1601
Signing time: Sun 27 Jul 2025 10:00:55 +0000
Manifest this update: Sun 27 Jul 2025 10:00:55 +0000
Manifest next update: Mon 28 Jul 2025 10:00:55 +0000
Files and hashes: 1: IRjrM71OJM5QObnZgNNrFRUyuDg.roa (hash: KDXjEC5+jgnVgR7YLpm66IF8Y8cfv8DKQxOxQp+OnTk=)
2: K5X2grxtV338PBDs7icYOB_uOyM.crl (hash: e1D/Lb10j2yPiI0JX29Qm3OVJobzh7KIz1aZDy+rJI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K5X2grxtV338PBDs7icYOB_uOyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:54:09:4e:1f:53:01:c1:8c:2e:fe:36:9f:40:aa:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b95f682bc6d577dfc3c10ecee2718381fee3b23
Validity
Not Before: Jul 27 10:00:55 2025 GMT
Not After : Jul 28 10:00:55 2025 GMT
Subject: CN=2ee7cca8f1e0fbfc894c78eadc15b05429d44902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c1:98:99:94:3c:de:97:ba:5c:59:23:eb:7c:
87:78:27:b3:9d:02:fb:74:c0:b4:c4:71:3c:2e:5b:
9e:37:19:c2:b7:ee:68:44:f9:06:5a:08:4c:0d:e1:
a1:d9:f0:02:ba:c4:f9:c0:99:61:84:01:f9:45:13:
17:ff:3e:d2:5c:6d:a1:e5:f9:77:a6:55:05:db:63:
d8:45:de:e6:06:d8:a7:ae:de:c7:3a:15:f5:88:c7:
4c:35:c2:83:91:f5:57:3e:3e:ff:2a:dd:f3:8f:24:
22:9a:39:6d:9a:d6:5f:94:92:a1:29:c9:b0:59:50:
61:db:77:f0:8c:49:9d:3a:bc:6c:e7:d0:36:67:9d:
20:a0:3f:cb:7f:13:6c:be:e2:87:f4:55:bd:55:ba:
9f:45:d1:d2:6b:c9:9d:cc:15:1f:b9:75:be:15:a1:
48:7c:15:51:d7:1c:6e:d3:03:d7:d1:30:3f:b9:be:
60:e2:09:cd:97:3b:7f:2d:48:f8:30:7f:a7:a1:76:
9f:10:15:cb:a7:97:f3:92:d8:77:fd:af:23:8c:ad:
ff:42:96:97:20:cc:07:36:b9:2e:d6:aa:bf:b5:12:
6d:f2:35:c9:9b:0d:8d:76:92:6b:74:00:d5:81:6b:
c7:e3:12:03:c4:66:55:51:de:b9:8b:79:01:6a:57:
56:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E7:CC:A8:F1:E0:FB:FC:89:4C:78:EA:DC:15:B0:54:29:D4:49:02
X509v3 Authority Key Identifier:
keyid:2B:95:F6:82:BC:6D:57:7D:FC:3C:10:EC:EE:27:18:38:1F:EE:3B:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5X2grxtV338PBDs7icYOB_uOyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:b6:b2:b5:1f:60:fa:9d:4e:c8:e4:24:60:9e:44:31:9c:40:
54:f9:c8:3c:0e:a8:bb:42:34:a1:aa:a1:7a:3f:48:45:6d:97:
89:59:2b:80:a8:6c:fe:95:54:29:9a:6e:23:96:2a:66:2d:f7:
6d:69:10:4b:1e:0c:1e:5c:97:94:f4:70:10:4e:bc:4b:d8:33:
28:59:36:a0:80:46:90:b3:0b:57:38:b6:09:9b:e9:a8:a5:d6:
d9:2a:92:bf:fa:c1:26:bc:08:35:fe:6e:08:92:72:f0:7c:e1:
f4:5d:f4:54:1b:db:fa:cd:e5:6c:05:b8:27:f7:ee:c8:93:35:
10:4d:2c:4d:72:ec:65:6e:d8:ea:a5:46:1f:9b:63:c6:18:93:
6a:aa:db:34:70:6f:77:4a:d9:0d:b9:52:65:67:12:5c:94:1f:
74:1d:23:27:04:f4:de:ba:53:fd:a2:e0:28:25:fe:45:33:e1:
a9:5c:d6:ec:75:7d:14:5b:24:13:30:be:8d:a8:29:42:98:73:
c5:92:1d:7c:88:27:93:30:8d:7f:f4:3a:49:72:89:75:16:33:
2a:48:c3:7d:51:bf:6d:9f:95:29:46:1d:03:3a:31:dc:df:00:
eb:cd:14:d2:9f:d5:ab:65:99:0d:3f:f8:7f:62:66:c3:7f:57:
5b:27:17:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhLVAlOH1MBwYwu/jafQKqkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiOTVmNjgyYmM2ZDU3N2RmYzNjMTBlY2VlMjcxODM4MWZl
ZTNiMjMwHhcNMjUwNzI3MTAwMDU1WhcNMjUwNzI4MTAwMDU1WjAzMTEwLwYDVQQD
EygyZWU3Y2NhOGYxZTBmYmZjODk0Yzc4ZWFkYzE1YjA1NDI5ZDQ0OTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMGYmZQ83pe6XFkj63yHeCeznQL7
dMC0xHE8LlueNxnCt+5oRPkGWghMDeGh2fACusT5wJlhhAH5RRMX/z7SXG2h5fl3
plUF22PYRd7mBtinrt7HOhX1iMdMNcKDkfVXPj7/Kt3zjyQimjltmtZflJKhKcmw
WVBh23fwjEmdOrxs59A2Z50goD/LfxNsvuKH9FW9VbqfRdHSa8mdzBUfuXW+FaFI
fBVR1xxu0wPX0TA/ub5g4gnNlzt/LUj4MH+noXafEBXLp5fzkth3/a8jjK3/QpaX
IMwHNrku1qq/tRJt8jXJmw2NdpJrdADVgWvH4xIDxGZVUd65i3kBaldW4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC7nzKjx4Pv8iUx46twVsFQp1EkCMB8GA1UdIwQY
MBaAFCuV9oK8bVd9/DwQ7O4nGDgf7jsjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzVYMmdyeHRWMzM4UEJEczdpY1lPQl91T3lNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS83ODBlMGItNGYwMi00Y2QyLWE0ZTMt
ZTAxYTU2ZjU4ZDM3LzEvSzVYMmdyeHRWMzM4UEJEczdpY1lPQl91T3lNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS83ODBlMGItNGYwMi00Y2QyLWE0ZTMtZTAxYTU2ZjU4ZDM3
LzEvSzVYMmdyeHRWMzM4UEJEczdpY1lPQl91T3lNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhLaytR9g
+p1OyOQkYJ5EMZxAVPnIPA6ou0I0oaqhej9IRW2XiVkrgKhs/pVUKZpuI5YqZi33
bWkQSx4MHlyXlPRwEE68S9gzKFk2oIBGkLMLVzi2CZvpqKXW2SqSv/rBJrwINf5u
CJJy8Hzh9F30VBvb+s3lbAW4J/fuyJM1EE0sTXLsZW7Y6qVGH5tjxhiTaqrbNHBv
d0rZDblSZWcSXJQfdB0jJwT03rpT/aLgKCX+RTPhqVzW7HV9FFskEzC+jagpQphz
xZIdfIgnkzCNf/Q6SXKJdRYzKkjDfVG/bZ+VKUYdAzox3N8A680U0p/Vq2WZDT/4
f2Jmw39XWycXLw==
-----END CERTIFICATE-----
Generated at Sun Jul 27 14:04:59 2025 by rpki-client