Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
File: xfFStqDQBGJ9KF2Hmqg-WEYast8.mft (raw, json)
Hash identifier: TM2742YSyNUVC9zuMVG2dPuiERM8v2pN2NVnXaPcG0Y=
Subject key identifier: 48:43:B6:A3:CC:11:EE:2D:69:E2:C5:63:5B:82:9C:66:63:C5:61:83
Authority key identifier: C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
Certificate issuer: /CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Certificate serial: 019921B1E4AC01D5EE7A44A23EF3BA45C368
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
Manifest number: 1291
Signing time: Sun 07 Sep 2025 01:02:10 +0000
Manifest this update: Sun 07 Sep 2025 01:02:10 +0000
Manifest next update: Mon 08 Sep 2025 01:02:10 +0000
Files and hashes: 1: xfFStqDQBGJ9KF2Hmqg-WEYast8.crl (hash: 0RWT/Ifskclo92HMAEBBWW7ymkH4DJI4INHDyOA2yUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:e4:ac:01:d5:ee:7a:44:a2:3e:f3:ba:45:c3:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Validity
Not Before: Sep 7 01:02:10 2025 GMT
Not After : Sep 8 01:02:10 2025 GMT
Subject: CN=4843b6a3cc11ee2d69e2c5635b829c6663c56183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:02:d5:e1:82:fa:29:e1:e7:93:b7:64:8b:1e:
39:d8:bf:6a:0f:85:0d:76:42:27:da:0a:0b:c4:8f:
f3:0b:29:33:b7:26:cd:99:ad:0b:07:4e:86:c7:64:
12:ef:2c:fc:87:87:07:52:aa:3b:53:8f:09:17:33:
9a:12:ee:93:52:61:37:33:0a:0c:02:28:36:bf:80:
a5:99:12:d0:25:d4:80:fd:fe:5b:aa:a3:3f:de:82:
67:47:bf:24:c5:e3:d7:db:dc:05:c5:41:33:dc:a9:
fd:b3:a4:7a:65:91:1e:bd:c0:8b:92:5d:9d:8a:71:
09:57:91:1b:44:4a:74:f7:2c:8a:f9:8a:3c:5e:b8:
ce:f2:70:16:83:c6:83:e1:44:27:2f:60:51:84:f6:
80:5f:8a:9d:fa:ed:a2:a8:53:2c:e1:88:19:43:35:
a2:95:0d:4c:16:1f:77:e9:d6:74:71:94:3e:7b:cc:
ab:26:69:e8:17:a5:20:94:91:72:7e:fc:e7:4b:5f:
cc:34:28:9d:6a:6a:ea:2d:92:59:89:28:ca:be:3c:
9c:74:68:0f:b2:8b:78:5d:c1:95:9c:1b:dd:74:8f:
69:f9:4e:46:b8:25:9e:14:14:b0:a8:29:f2:d2:57:
ca:6f:b1:a4:f5:ca:65:27:36:f3:2b:0a:17:4c:78:
1b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:43:B6:A3:CC:11:EE:2D:69:E2:C5:63:5B:82:9C:66:63:C5:61:83
X509v3 Authority Key Identifier:
keyid:C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:4b:f7:65:b9:9c:c8:8a:3b:73:f2:ce:a6:dd:5d:c1:ee:69:
76:c2:a8:28:fd:4e:90:41:2c:09:ba:d6:09:62:3c:4f:94:83:
80:e8:fb:a8:11:25:f6:55:65:59:ac:e6:06:72:b1:98:ec:06:
8c:19:e3:4b:3a:67:b3:0c:b4:3e:e8:25:a4:5d:38:3f:aa:40:
99:76:d6:e0:48:34:2f:40:e6:82:4c:bd:a3:1c:11:e6:50:b7:
96:07:32:32:b9:6b:1e:45:41:b1:3a:96:ae:46:2d:27:b8:82:
55:bb:fa:e0:fc:1b:a5:7c:fb:b5:78:ee:9b:d9:b0:47:35:42:
7a:75:5d:c3:41:b6:4e:99:48:49:73:3e:2e:e6:f6:5f:1a:c1:
a9:1a:10:61:8c:c6:49:b4:00:a0:32:1e:d2:bc:d4:b6:08:bf:
e0:37:1d:f4:4d:ba:25:60:9e:bf:af:02:19:82:6f:5b:86:2e:
0b:03:78:62:94:4c:15:76:5f:5d:10:0c:6e:36:09:c5:b8:0a:
8d:fd:8f:df:84:f0:30:77:22:9d:44:af:e5:53:f5:6f:00:e4:
35:59:9b:01:5d:70:d9:90:59:6e:cb:99:5c:91:6b:9d:2b:c7:
ed:d2:4b:fc:49:de:02:50:6e:1f:71:d8:7b:c8:f7:07:46:1a:
2a:a3:b0:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhseSsAdXuekSiPvO6RcNoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1ZjE1MmI2YTBkMDA0NjI3ZDI4NWQ4NzlhYTgzZTU4NDYx
YWIyZGYwHhcNMjUwOTA3MDEwMjEwWhcNMjUwOTA4MDEwMjEwWjAzMTEwLwYDVQQD
Eyg0ODQzYjZhM2NjMTFlZTJkNjllMmM1NjM1YjgyOWM2NjYzYzU2MTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQLV4YL6KeHnk7dkix452L9qD4UN
dkIn2goLxI/zCykztybNma0LB06Gx2QS7yz8h4cHUqo7U48JFzOaEu6TUmE3MwoM
Aig2v4ClmRLQJdSA/f5bqqM/3oJnR78kxePX29wFxUEz3Kn9s6R6ZZEevcCLkl2d
inEJV5EbREp09yyK+Yo8XrjO8nAWg8aD4UQnL2BRhPaAX4qd+u2iqFMs4YgZQzWi
lQ1MFh936dZ0cZQ+e8yrJmnoF6UglJFyfvznS1/MNCidamrqLZJZiSjKvjycdGgP
sot4XcGVnBvddI9p+U5GuCWeFBSwqCny0lfKb7Gk9cplJzbzKwoXTHgbEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEhDtqPMEe4taeLFY1uCnGZjxWGDMB8GA1UdIwQY
MBaAFMXxUrag0ARifShdh5qoPlhGGrLfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGZGU3RxRFFCR0o5S0YySG1xZy1XRVlhc3Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81M2FkNWEtMGEzNy00ZjY1LWE2YzYt
NzM3ZTc4Yzg3MDEyLzEveGZGU3RxRFFCR0o5S0YySG1xZy1XRVlhc3Q4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi81M2FkNWEtMGEzNy00ZjY1LWE2YzYtNzM3ZTc4Yzg3MDEy
LzEveGZGU3RxRFFCR0o5S0YySG1xZy1XRVlhc3Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJkv3Zbmc
yIo7c/LOpt1dwe5pdsKoKP1OkEEsCbrWCWI8T5SDgOj7qBEl9lVlWazmBnKxmOwG
jBnjSzpnswy0PuglpF04P6pAmXbW4Eg0L0Dmgky9oxwR5lC3lgcyMrlrHkVBsTqW
rkYtJ7iCVbv64PwbpXz7tXjum9mwRzVCenVdw0G2TplISXM+Lub2XxrBqRoQYYzG
SbQAoDIe0rzUtgi/4Dcd9E26JWCev68CGYJvW4YuCwN4YpRMFXZfXRAMbjYJxbgK
jf2P34TwMHcinUSv5VP1bwDkNVmbAV1w2ZBZbsuZXJFrnSvH7dJL/EneAlBuH3HY
e8j3B0YaKqOwug==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:04 2025 by rpki-client