Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: UAWsqTMv52boAiVQkR0NWprxwN04S/IHj3qmESTIaNs=
Subject key identifier: 5A:F1:B8:99:16:BD:BD:7C:2C:ED:79:17:F1:02:51:66:38:18:67:95
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 0197499F210B17645707F7F2B234096001F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0A8C
Signing time: Sat 07 Jun 2025 09:00:54 +0000
Manifest this update: Sat 07 Jun 2025 09:00:54 +0000
Manifest next update: Sun 08 Jun 2025 09:00:54 +0000
Files and hashes: 1: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: 07TrxVgXFupHiajq0Gz3Sw6Gp3EI5sq1lZtZIg3+1C4=)
2: vKqft3GpUgOOXSf2VjTKls-pWMw.roa (hash: 5Tvu15lYIVA9/K7Qk9i7l4tCbiMQ02zrBkIoUMRXadY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:21:0b:17:64:57:07:f7:f2:b2:34:09:60:01:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: Jun 7 09:00:54 2025 GMT
Not After : Jun 8 09:00:54 2025 GMT
Subject: CN=5af1b89916bdbd7c2ced7917f102516638186795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:48:c6:9b:1a:68:1e:20:3b:03:81:65:93:6e:
77:66:b4:27:a9:77:e0:98:a0:47:02:9c:ff:01:10:
8c:b7:d2:23:7d:8c:e8:29:7b:21:7f:9b:6a:8f:7a:
ab:2b:e9:8a:b8:79:3a:f1:95:b8:ee:4c:b4:69:b3:
8b:46:bf:1e:68:07:bc:32:bb:c1:fb:90:d2:71:2c:
cd:d8:2d:ad:da:89:4b:89:d6:60:d0:b4:91:ed:88:
4d:d2:9c:0c:56:94:49:07:1d:96:49:f0:1b:c7:86:
5e:11:f7:9e:53:e8:40:de:28:72:28:e6:e5:d8:12:
1c:63:63:c2:af:f2:c8:ff:a6:b8:c7:fc:86:b9:6d:
eb:da:9c:fa:be:2c:5d:16:d8:dc:56:41:d7:b8:d9:
22:72:48:7e:16:50:26:36:93:fc:2b:63:74:b0:8d:
a9:fb:27:72:0f:09:90:a7:9d:e1:10:64:9f:7b:e7:
8d:d2:cf:4a:64:00:68:26:32:0a:c7:98:8a:62:1c:
bb:19:92:f2:ec:48:50:af:52:08:3d:4d:f9:8e:03:
54:14:e2:a1:0e:49:72:a7:5a:96:64:81:97:2b:ae:
f8:15:73:00:77:a5:03:46:e5:aa:8c:dd:da:b6:25:
88:75:b6:35:d3:6e:82:5a:6e:d4:34:cb:78:ee:cd:
40:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F1:B8:99:16:BD:BD:7C:2C:ED:79:17:F1:02:51:66:38:18:67:95
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:2b:8d:78:45:00:61:bf:7a:10:0f:9e:a8:63:3b:2a:47:61:
44:5f:be:4d:48:fd:e2:3a:11:cf:66:86:63:1c:60:8c:22:52:
36:ad:f0:9d:65:63:4d:fa:12:30:ce:b8:b3:1a:30:7a:08:b1:
c5:fe:29:b1:ed:5d:7a:9e:97:5d:e9:8a:b9:13:85:03:90:8a:
b8:a4:52:9f:16:39:cc:55:97:93:34:7f:ea:b5:76:82:95:97:
73:28:3f:df:6a:aa:f1:ef:4e:dd:47:17:8d:a9:87:92:6c:dd:
d4:9e:fa:db:40:5a:ee:23:37:d2:5f:60:5d:67:3d:b6:a9:3c:
1f:20:54:77:85:49:3d:7a:62:25:36:f6:d2:92:b7:42:45:52:
ca:c3:ea:a3:bc:6f:2b:e7:91:1d:66:52:a7:c8:63:b8:52:d1:
72:b5:b7:96:a8:c7:6d:1a:ce:56:31:a7:ae:88:a5:46:1c:96:
08:56:de:e2:b6:d8:13:ee:4b:5e:57:03:78:1d:65:6f:a8:c3:
95:f2:a8:d4:76:e0:a1:60:e9:8e:d0:a8:67:3f:20:e0:77:85:
bc:ed:bc:bd:f3:24:7a:5c:46:6f:8e:aa:82:2c:4f:41:db:5d:
2f:42:2f:27:31:ed:91:61:3f:07:40:6b:1d:75:fa:ed:46:a2:
c2:66:20:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJnyELF2RXB/fysjQJYAH2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmYmFiMGQzOWZiNjk3OWZlNGQzZDI0ODNhMDFiZGQzYzkz
YmVjZWYwHhcNMjUwNjA3MDkwMDU0WhcNMjUwNjA4MDkwMDU0WjAzMTEwLwYDVQQD
Eyg1YWYxYjg5OTE2YmRiZDdjMmNlZDc5MTdmMTAyNTE2NjM4MTg2Nzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0jGmxpoHiA7A4Flk253ZrQnqXfg
mKBHApz/ARCMt9IjfYzoKXshf5tqj3qrK+mKuHk68ZW47ky0abOLRr8eaAe8MrvB
+5DScSzN2C2t2olLidZg0LSR7YhN0pwMVpRJBx2WSfAbx4ZeEfeeU+hA3ihyKObl
2BIcY2PCr/LI/6a4x/yGuW3r2pz6vixdFtjcVkHXuNkickh+FlAmNpP8K2N0sI2p
+ydyDwmQp53hEGSfe+eN0s9KZABoJjIKx5iKYhy7GZLy7EhQr1IIPU35jgNUFOKh
Dklyp1qWZIGXK674FXMAd6UDRuWqjN3atiWIdbY1026CWm7UNMt47s1AgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFrxuJkWvb18LO15F/ECUWY4GGeVMB8GA1UdIwQY
MBaAFF+6sNOftpef5NPSSDoBvdPJO+zvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDdxdzA1LTJsNV9rMDlKSU9nRzkwOGs3N084LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zYzUyNGUtMTJiOC00ZGNjLThmMTAt
MzBkZjYyNDI5ZGYwLzEvWDdxdzA1LTJsNV9rMDlKSU9nRzkwOGs3N084Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zYzUyNGUtMTJiOC00ZGNjLThmMTAtMzBkZjYyNDI5ZGYw
LzEvWDdxdzA1LTJsNV9rMDlKSU9nRzkwOGs3N084LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYiuNeEUA
Yb96EA+eqGM7KkdhRF++TUj94joRz2aGYxxgjCJSNq3wnWVjTfoSMM64sxowegix
xf4pse1dep6XXemKuROFA5CKuKRSnxY5zFWXkzR/6rV2gpWXcyg/32qq8e9O3UcX
jamHkmzd1J7620Ba7iM30l9gXWc9tqk8HyBUd4VJPXpiJTb20pK3QkVSysPqo7xv
K+eRHWZSp8hjuFLRcrW3lqjHbRrOVjGnroilRhyWCFbe4rbYE+5LXlcDeB1lb6jD
lfKo1HbgoWDpjtCoZz8g4HeFvO28vfMkelxGb46qgixPQdtdL0IvJzHtkWE/B0Br
HXX67UaiwmYg9w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:49:27 2025 by rpki-client