Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.mft
File: 5J1E2IEnX8osC2s_fs7i0iIUb9I.mft (raw, json)
Hash identifier: SQkYovYZfkHwwPr+SW7qbQzRMZbAIVmgDQfji18nRMM=
Subject key identifier: 50:33:95:C2:49:42:E8:CB:BA:82:A6:1E:61:38:F0:7C:9A:74:1E:1C
Authority key identifier: E4:9D:44:D8:81:27:5F:CA:2C:0B:6B:3F:7E:CE:E2:D2:22:14:6F:D2
Certificate issuer: /CN=e49d44d881275fca2c0b6b3f7ecee2d222146fd2
Certificate serial: 019A71B84D1BD90B3389B0CEF6BE8FE35180
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5J1E2IEnX8osC2s_fs7i0iIUb9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.mft
Manifest number: 1448
Signing time: Tue 11 Nov 2025 07:01:34 +0000
Manifest this update: Tue 11 Nov 2025 07:01:34 +0000
Manifest next update: Wed 12 Nov 2025 07:01:34 +0000
Files and hashes: 1: 5J1E2IEnX8osC2s_fs7i0iIUb9I.crl (hash: vaGU4D66Ih56gQmqdpcENIiercCN2P+eekebf6r2vFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5J1E2IEnX8osC2s_fs7i0iIUb9I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:4d:1b:d9:0b:33:89:b0:ce:f6:be:8f:e3:51:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e49d44d881275fca2c0b6b3f7ecee2d222146fd2
Validity
Not Before: Nov 11 07:01:34 2025 GMT
Not After : Nov 12 07:01:34 2025 GMT
Subject: CN=503395c24942e8cbba82a61e6138f07c9a741e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:45:5e:b4:9b:15:11:88:51:aa:1f:1b:9c:8e:
5e:8a:f5:bf:cc:73:b5:f8:d1:f2:67:86:25:39:6e:
9e:62:4d:18:f1:9d:b6:e4:73:4c:89:ab:c4:b8:94:
18:53:02:0f:3e:7e:19:4f:1a:6d:89:6e:64:43:c8:
59:d0:70:b7:35:ae:54:c9:08:06:4a:96:78:43:5a:
0c:41:01:c5:67:65:ef:71:a9:7d:b9:f3:51:9e:96:
20:0d:ed:c2:fe:60:8d:27:f9:96:9e:b0:99:d1:fc:
63:a3:ee:34:ab:56:0d:62:71:1d:63:cc:f7:81:e9:
d3:a1:cc:7a:b8:87:63:12:81:1c:2c:63:ba:15:20:
b3:c6:aa:b0:e3:ad:41:9e:a4:d2:e3:6f:78:af:e1:
36:29:73:d0:fc:d6:c9:e0:04:07:35:70:16:b5:4d:
09:12:21:20:ae:85:ca:99:7e:c6:ab:a8:61:d7:70:
e3:39:f5:0c:cf:51:2c:96:2c:42:96:12:2d:39:0b:
70:e0:98:5b:c1:3c:f4:95:d7:48:7e:6c:cc:ff:f1:
e6:73:2b:50:16:95:ee:2a:3b:68:34:ca:2b:35:de:
c5:3d:57:6b:59:26:29:4a:7c:81:f3:42:23:6f:ee:
ad:d0:89:b8:a1:0e:84:97:5f:c3:c6:ba:bd:57:cb:
52:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:33:95:C2:49:42:E8:CB:BA:82:A6:1E:61:38:F0:7C:9A:74:1E:1C
X509v3 Authority Key Identifier:
keyid:E4:9D:44:D8:81:27:5F:CA:2C:0B:6B:3F:7E:CE:E2:D2:22:14:6F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5J1E2IEnX8osC2s_fs7i0iIUb9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:54:a9:2d:6f:42:ca:a1:42:d6:8c:da:e9:fa:48:aa:ac:70:
90:06:34:0a:a1:b2:67:cc:6d:d9:ff:30:05:9b:1e:18:dd:2e:
01:96:e5:36:10:a8:18:e0:17:2d:46:a9:97:7f:09:6f:d0:68:
10:ef:d9:4a:c2:7c:79:32:28:50:33:59:f5:0f:b7:99:bc:71:
fc:d7:d7:7b:f8:cd:3d:d8:cf:08:a6:81:d8:1c:3e:ae:94:42:
26:68:18:21:8f:b6:67:9a:f4:e3:f1:4c:95:6d:e3:9a:b6:61:
c5:4e:ef:10:6b:90:cf:c7:f0:0c:e5:09:fb:f5:fc:98:97:32:
68:7d:dd:37:66:16:b5:ee:8a:b1:19:d1:e4:23:58:8a:9f:66:
b1:d4:9e:b5:a7:af:43:5f:34:18:15:52:65:3a:ae:33:72:16:
5b:6c:a2:b7:ac:35:26:c5:84:92:3f:bf:9b:27:30:5a:ac:97:
fe:94:35:5e:86:ca:ef:60:55:87:4f:af:fe:02:ef:3f:28:d2:
e4:b0:ee:23:ce:7c:39:45:98:c1:08:62:bb:b6:ee:a6:ea:29:
fd:02:ea:fd:78:d5:96:09:18:6d:b2:10:b8:ef:5a:e8:a5:9d:
8f:52:e5:14:09:8a:85:54:e5:13:d9:9c:53:a6:8f:0f:b1:46:
ce:43:fa:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuE0b2QszibDO9r6P41GAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0OWQ0NGQ4ODEyNzVmY2EyYzBiNmIzZjdlY2VlMmQyMjIx
NDZmZDIwHhcNMjUxMTExMDcwMTM0WhcNMjUxMTEyMDcwMTM0WjAzMTEwLwYDVQQD
Eyg1MDMzOTVjMjQ5NDJlOGNiYmE4MmE2MWU2MTM4ZjA3YzlhNzQxZTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUVetJsVEYhRqh8bnI5eivW/zHO1
+NHyZ4YlOW6eYk0Y8Z225HNMiavEuJQYUwIPPn4ZTxptiW5kQ8hZ0HC3Na5UyQgG
SpZ4Q1oMQQHFZ2Xvcal9ufNRnpYgDe3C/mCNJ/mWnrCZ0fxjo+40q1YNYnEdY8z3
genTocx6uIdjEoEcLGO6FSCzxqqw461BnqTS4294r+E2KXPQ/NbJ4AQHNXAWtU0J
EiEgroXKmX7Gq6hh13DjOfUMz1EslixClhItOQtw4JhbwTz0lddIfmzM//HmcytQ
FpXuKjtoNMorNd7FPVdrWSYpSnyB80Ijb+6t0Im4oQ6El1/Dxrq9V8tS/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFAzlcJJQujLuoKmHmE48HyadB4cMB8GA1UdIwQY
MBaAFOSdRNiBJ1/KLAtrP37O4tIiFG/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUoxRTJJRW5YOG9zQzJzX2ZzN2kwaUlVYjlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8wNTBkN2YtODQ1NS00NjVmLWIyMzkt
YzMyZDEwYzdlYTFmLzEvNUoxRTJJRW5YOG9zQzJzX2ZzN2kwaUlVYjlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC8wNTBkN2YtODQ1NS00NjVmLWIyMzktYzMyZDEwYzdlYTFm
LzEvNUoxRTJJRW5YOG9zQzJzX2ZzN2kwaUlVYjlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhVSpLW9C
yqFC1oza6fpIqqxwkAY0CqGyZ8xt2f8wBZseGN0uAZblNhCoGOAXLUapl38Jb9Bo
EO/ZSsJ8eTIoUDNZ9Q+3mbxx/NfXe/jNPdjPCKaB2Bw+rpRCJmgYIY+2Z5r04/FM
lW3jmrZhxU7vEGuQz8fwDOUJ+/X8mJcyaH3dN2YWte6KsRnR5CNYip9msdSetaev
Q180GBVSZTquM3IWW2yit6w1JsWEkj+/mycwWqyX/pQ1XobK72BVh0+v/gLvPyjS
5LDuI858OUWYwQhiu7bupuop/QLq/XjVlgkYbbIQuO9a6KWdj1LlFAmKhVTlE9mc
U6aPD7FGzkP6+Q==
-----END CERTIFICATE-----
Generated at Tue Nov 11 16:51:40 2025 by rpki-client