
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File: 5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier: QReB9TrNjregd5NOVxveD3lV+hKD0Km6U37YeSrc+pI=
Subject key identifier: D8:49:48:56:81:B6:8C:3F:71:6F:DB:81:07:A6:5E:C5:02:C0:76:50
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer: /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial: 019763277E02569ED4E929DE55AC8E158076
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number: 1519
Signing time: Thu 12 Jun 2025 08:00:21 +0000
Manifest this update: Thu 12 Jun 2025 08:00:21 +0000
Manifest next update: Fri 13 Jun 2025 08:00:21 +0000
Files and hashes: 1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: ySwEvy4+a5y6Hj+zcO1h7AlZLTYbVYIh/kOFjcgvRsw=)
2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 08:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:27:7e:02:56:9e:d4:e9:29:de:55:ac:8e:15:80:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Validity
Not Before: Jun 12 08:00:21 2025 GMT
Not After : Jun 13 08:00:21 2025 GMT
Subject: CN=d849485681b68c3f716fdb8107a65ec502c07650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b7:84:96:18:21:56:04:9e:ca:9f:63:12:35:
d7:6d:f4:cf:7f:2b:2b:14:7b:05:a5:24:34:8d:b2:
41:19:2d:e7:83:dc:08:bf:56:e7:4e:bf:00:c1:90:
59:14:b9:d2:56:ab:31:44:9a:42:3c:c3:0f:df:dd:
40:a5:ee:8d:01:54:c3:78:f5:88:b4:2e:4c:f4:33:
3f:ba:90:57:18:42:0e:ce:75:3e:e4:eb:8c:c1:d7:
70:59:9f:1c:29:f1:b9:91:94:e7:78:3f:32:27:bc:
cd:16:d9:35:f5:03:60:08:27:e6:a3:f6:a0:3d:da:
3d:68:68:37:9d:aa:33:cf:5d:6d:cb:d2:d4:94:18:
48:03:e0:db:f0:9a:70:10:2e:9e:69:5e:df:a7:ba:
80:32:06:10:a9:9b:b2:6e:25:da:f2:6a:f4:6b:6a:
0f:7c:76:81:7c:34:cc:60:fa:35:6a:62:dc:a3:21:
47:a7:5e:c0:b5:54:2c:d8:8e:34:93:45:0f:2a:07:
3b:b3:e8:6b:66:61:d1:10:24:ba:89:78:c4:0c:6b:
0f:a8:0e:db:3a:25:71:74:6f:05:c9:cb:6c:ba:c2:
2b:77:36:e2:b6:57:79:b4:af:f9:35:02:c5:9a:c5:
0c:ac:89:34:a7:af:fb:7e:41:f2:b9:de:fe:85:8c:
8b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:49:48:56:81:B6:8C:3F:71:6F:DB:81:07:A6:5E:C5:02:C0:76:50
X509v3 Authority Key Identifier:
keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:0e:b0:dd:09:20:8f:60:75:d8:79:50:0f:fa:bf:b2:9b:d2:
20:48:64:f8:6e:b7:7d:16:f1:eb:ae:6a:23:9f:00:51:9e:5a:
86:7e:29:c0:e0:8c:12:56:6e:59:74:f5:ec:3e:db:34:54:94:
ed:32:c1:89:6b:7a:25:9e:00:b7:d6:4b:6a:8f:d5:1c:90:2a:
58:38:03:35:94:9a:ab:b6:76:55:a9:73:bb:d8:2e:21:af:88:
36:b6:1d:ad:eb:ba:5f:1c:04:bb:5b:10:d1:73:a5:a3:da:53:
03:56:97:57:0d:fd:f5:92:47:77:5b:a4:ab:23:b4:18:a4:92:
a0:58:17:b3:a1:0b:05:5c:1a:d7:7c:08:e5:1e:f7:0a:06:f8:
fc:d5:dc:99:ca:da:92:79:5d:b4:97:35:e3:5c:ad:a9:80:c0:
b8:78:74:38:a4:d5:06:d6:5e:ad:19:38:a2:1e:9f:8a:b4:1e:
28:4f:0e:7f:e2:f2:9a:06:1a:2e:29:d7:94:3c:ab:96:8d:42:
18:fa:89:71:60:23:ca:28:e4:d1:24:ef:43:a9:9a:2d:b8:67:
bf:3e:89:ff:53:72:c2:3c:ae:2f:6e:5a:18:eb:38:e8:75:29:
7b:08:95:59:64:c6:25:27:f6:20:93:d0:c3:e0:a3:89:1d:b6:
30:f7:b6:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdjJ34CVp7U6SneVayOFYB2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2MjM0ZWQzZDhjYTk2ZGM1MThkMzVjMWU3YzkyYmViZmNm
NmNlNGQwHhcNMjUwNjEyMDgwMDIxWhcNMjUwNjEzMDgwMDIxWjAzMTEwLwYDVQQD
EyhkODQ5NDg1NjgxYjY4YzNmNzE2ZmRiODEwN2E2NWVjNTAyYzA3NjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7eElhghVgSeyp9jEjXXbfTPfysr
FHsFpSQ0jbJBGS3ng9wIv1bnTr8AwZBZFLnSVqsxRJpCPMMP391Ape6NAVTDePWI
tC5M9DM/upBXGEIOznU+5OuMwddwWZ8cKfG5kZTneD8yJ7zNFtk19QNgCCfmo/ag
Pdo9aGg3naozz11ty9LUlBhIA+Db8JpwEC6eaV7fp7qAMgYQqZuybiXa8mr0a2oP
fHaBfDTMYPo1amLcoyFHp17AtVQs2I40k0UPKgc7s+hrZmHRECS6iXjEDGsPqA7b
OiVxdG8FyctsusIrdzbitld5tK/5NQLFmsUMrIk0p6/7fkHyud7+hYyLlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNhJSFaBtow/cW/bgQemXsUCwHZQMB8GA1UdIwQY
MBaAFOYjTtPYypbcUY01wefJK+v89s5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWlOTzA5aktsdHhSalRYQjU4a3I2X3oyemswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC85YjY3NGMtMzY1Ny00YzI1LTk5NTMt
M2Y3MDQwOTk3NjgyLzEvNWlOTzA5aktsdHhSalRYQjU4a3I2X3oyemswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC85YjY3NGMtMzY1Ny00YzI1LTk5NTMtM2Y3MDQwOTk3Njgy
LzEvNWlOTzA5aktsdHhSalRYQjU4a3I2X3oyemswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhg6w3Qkg
j2B12HlQD/q/spvSIEhk+G63fRbx665qI58AUZ5ahn4pwOCMElZuWXT17D7bNFSU
7TLBiWt6JZ4At9ZLao/VHJAqWDgDNZSaq7Z2Valzu9guIa+INrYdreu6XxwEu1sQ
0XOlo9pTA1aXVw399ZJHd1ukqyO0GKSSoFgXs6ELBVwa13wI5R73Cgb4/NXcmcra
knldtJc141ytqYDAuHh0OKTVBtZerRk4oh6firQeKE8Of+LymgYaLinXlDyrlo1C
GPqJcWAjyijk0STvQ6maLbhnvz6J/1NywjyuL25aGOs46HUpewiVWWTGJSf2IJPQ
w+CjiR22MPe2iA==
-----END CERTIFICATE-----
Generated at Thu Jun 12 18:17:51 2025 by rpki-client