Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
File: 5D7dxEvG9TRFds9ZrwATXGtiwB0.mft (raw, json)
Hash identifier: UAIdMO/pHg5jLrn04b9rIqoUZj8zJ3GRLLGXCG0bKRU=
Subject key identifier: DD:29:D9:89:32:49:E9:AE:8D:49:DE:09:2A:A6:CF:74:E0:A9:64:C9
Authority key identifier: E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D
Certificate issuer: /CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
Certificate serial: 01974AE902B84801691D54848438E0CFCBCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
Manifest number: 0BE4
Signing time: Sat 07 Jun 2025 15:01:13 +0000
Manifest this update: Sat 07 Jun 2025 15:01:13 +0000
Manifest next update: Sun 08 Jun 2025 15:01:13 +0000
Files and hashes: 1: 5D7dxEvG9TRFds9ZrwATXGtiwB0.crl (hash: w4HxHsJnA4ReRkowQnPFseSkIjh0NtMpCLCY97Fd59I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e9:02:b8:48:01:69:1d:54:84:84:38:e0:cf:cb:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
Validity
Not Before: Jun 7 15:01:13 2025 GMT
Not After : Jun 8 15:01:13 2025 GMT
Subject: CN=dd29d9893249e9ae8d49de092aa6cf74e0a964c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7f:85:5a:cc:e8:54:8c:22:60:47:5f:9c:23:
bf:ce:af:03:f9:76:12:06:47:be:f9:57:0d:61:1e:
85:8e:1a:11:52:b9:d3:ee:8a:3c:65:75:e5:52:7b:
65:46:5d:94:94:5a:8e:14:71:f0:bd:12:17:de:11:
ad:59:f6:ee:13:ef:2f:b1:9b:74:28:2d:6a:1f:65:
c8:39:5c:bb:8c:89:a5:4c:b7:6b:4c:fd:7e:16:54:
8c:fc:83:f2:24:e9:7f:e5:32:e5:ca:26:eb:3e:21:
b9:d9:5f:b2:44:03:3c:5c:fe:e1:22:ea:28:fd:9f:
78:ea:7b:d2:92:43:13:62:cd:a1:d9:56:45:4e:09:
09:2b:79:05:47:fe:16:8e:6e:31:b8:ac:63:96:cc:
6f:a3:3b:b3:29:55:ff:2f:2c:36:48:7d:40:e5:58:
d6:e2:ab:79:47:be:19:ab:12:65:9f:1c:42:3e:92:
c8:f2:33:2b:22:45:49:93:7d:49:9a:4b:14:4d:74:
f9:82:b5:ad:0c:1d:5e:70:1b:04:dc:28:03:61:b4:
92:16:ee:44:62:53:91:5c:44:94:5c:f2:f6:a5:13:
b1:1e:2b:dd:74:3a:4c:34:73:30:10:2a:f4:36:6f:
a7:c6:a8:3e:82:59:16:8a:25:25:28:bc:84:bd:7a:
d4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:29:D9:89:32:49:E9:AE:8D:49:DE:09:2A:A6:CF:74:E0:A9:64:C9
X509v3 Authority Key Identifier:
keyid:E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:30:cf:e1:d3:39:22:e4:f6:04:aa:14:e2:74:63:b1:22:4a:
bc:2a:37:7a:ed:21:e0:e5:71:b3:0d:9f:fb:5c:25:87:1a:28:
66:d6:5d:28:52:eb:1c:b0:d7:a1:25:92:19:0d:11:9b:33:c9:
87:54:83:6b:78:8f:ff:e8:50:ac:90:8a:ca:c6:07:37:80:20:
7c:3a:b2:ab:02:19:27:d4:e0:58:41:b6:ec:51:f0:2a:19:a8:
90:f0:c5:73:62:bf:d3:94:af:e0:d7:96:3a:62:09:ea:f3:a6:
7a:57:36:47:c2:1c:1b:3a:73:9a:f0:64:99:56:26:4e:6b:9e:
33:a9:c1:32:42:35:b4:33:99:32:66:e6:d4:a4:20:ca:fd:41:
d9:a0:76:17:ea:f1:ae:54:30:f5:af:a0:21:50:07:ff:fc:ef:
fd:14:de:2b:7e:bb:a7:bf:70:aa:ab:bc:ba:98:4f:3d:06:f8:
92:47:7f:fe:74:25:39:91:1a:78:23:a7:26:53:aa:9c:38:84:
48:2d:5a:e7:0f:1b:8b:e4:87:7a:8a:b2:d1:82:92:a3:64:75:
42:2f:a0:11:26:9f:f9:d6:84:d2:dd:8e:96:d7:d1:78:8c:79:
95:b2:96:d6:b2:ed:c6:a7:51:2d:9a:7a:88:4d:d4:bc:9c:ad:
c7:d8:a6:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6QK4SAFpHVSEhDjgz8vMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0M2VkZGM0NGJjNmY1MzQ0NTc2Y2Y1OWFmMDAxMzVjNmI2
MmMwMWQwHhcNMjUwNjA3MTUwMTEzWhcNMjUwNjA4MTUwMTEzWjAzMTEwLwYDVQQD
EyhkZDI5ZDk4OTMyNDllOWFlOGQ0OWRlMDkyYWE2Y2Y3NGUwYTk2NGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuH+FWszoVIwiYEdfnCO/zq8D+XYS
Bke++VcNYR6FjhoRUrnT7oo8ZXXlUntlRl2UlFqOFHHwvRIX3hGtWfbuE+8vsZt0
KC1qH2XIOVy7jImlTLdrTP1+FlSM/IPyJOl/5TLlyibrPiG52V+yRAM8XP7hIuoo
/Z946nvSkkMTYs2h2VZFTgkJK3kFR/4Wjm4xuKxjlsxvozuzKVX/Lyw2SH1A5VjW
4qt5R74ZqxJlnxxCPpLI8jMrIkVJk31JmksUTXT5grWtDB1ecBsE3CgDYbSSFu5E
YlORXESUXPL2pROxHivddDpMNHMwECr0Nm+nxqg+glkWiiUlKLyEvXrUdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN0p2YkySemujUneCSqmz3TgqWTJMB8GA1UdIwQY
MBaAFOQ+3cRLxvU0RXbPWa8AE1xrYsAdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUQ3ZHhFdkc5VFJGZHM5WnJ3QVRYR3Rpd0IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8yZGFhNzItMDMxNC00NmM1LWJlNWIt
OWE2OTMwNDI1OGEwLzEvNUQ3ZHhFdkc5VFJGZHM5WnJ3QVRYR3Rpd0IwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8yZGFhNzItMDMxNC00NmM1LWJlNWItOWE2OTMwNDI1OGEw
LzEvNUQ3ZHhFdkc5VFJGZHM5WnJ3QVRYR3Rpd0IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEjDP4dM5
IuT2BKoU4nRjsSJKvCo3eu0h4OVxsw2f+1wlhxooZtZdKFLrHLDXoSWSGQ0RmzPJ
h1SDa3iP/+hQrJCKysYHN4AgfDqyqwIZJ9TgWEG27FHwKhmokPDFc2K/05Sv4NeW
OmIJ6vOmelc2R8IcGzpzmvBkmVYmTmueM6nBMkI1tDOZMmbm1KQgyv1B2aB2F+rx
rlQw9a+gIVAH//zv/RTeK367p79wqqu8uphPPQb4kkd//nQlOZEaeCOnJlOqnDiE
SC1a5w8bi+SHeoqy0YKSo2R1Qi+gESaf+daE0t2OltfReIx5lbKW1rLtxqdRLZp6
iE3UvJytx9im0g==
-----END CERTIFICATE-----
Generated at Sun Jun 8 00:16:22 2025 by rpki-client