Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
File: 5aiGWRTezNyYByQf1wtrsIOkRLM.mft (raw, json)
Hash identifier: smiCvb7gNv9cR0SJVF6NazO32Tkkfq8H7U7jy0xShS8=
Subject key identifier: 0A:4A:3D:DB:4B:6F:70:AF:9A:27:57:E6:94:33:B8:35:A3:76:7F:81
Authority key identifier: E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
Certificate issuer: /CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Certificate serial: 019921B12AB3F72AF454D521FB4737314AA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
Manifest number: 0FEC
Signing time: Sun 07 Sep 2025 01:01:22 +0000
Manifest this update: Sun 07 Sep 2025 01:01:22 +0000
Manifest next update: Mon 08 Sep 2025 01:01:22 +0000
Files and hashes: 1: 5aiGWRTezNyYByQf1wtrsIOkRLM.crl (hash: KtBHRyEidQ9PYb7Z6cKEM3YIcPopXuousr+gVemrU+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:2a:b3:f7:2a:f4:54:d5:21:fb:47:37:31:4a:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Validity
Not Before: Sep 7 01:01:22 2025 GMT
Not After : Sep 8 01:01:22 2025 GMT
Subject: CN=0a4a3ddb4b6f70af9a2757e69433b835a3767f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dc:9b:5d:25:46:87:63:1d:00:fb:d4:32:9e:
f4:a1:48:18:98:b4:22:c5:83:66:d7:2b:87:78:a7:
0e:74:2c:6b:63:5d:14:7f:d3:16:53:4e:4f:48:44:
10:23:24:ba:55:7c:66:6c:75:ff:5d:57:c6:49:e7:
fb:11:27:22:a4:eb:7c:01:b8:7f:da:fe:b6:2a:88:
ba:6a:c5:8a:78:47:d3:ad:ef:c3:8b:6f:a8:b8:18:
d4:11:fe:ba:14:88:d6:50:2a:30:8f:0a:91:8e:56:
b6:3a:c7:d5:98:af:2c:4a:f0:40:83:21:a9:9c:c2:
cf:76:33:ab:94:b9:7f:aa:98:17:1a:98:8b:b7:a4:
3e:fb:68:f3:59:64:f8:7b:a5:03:bb:14:8e:9b:a1:
97:94:60:60:4b:b1:74:1e:87:31:e9:4a:12:20:0e:
67:a0:0a:ed:ff:9e:4c:0f:a0:aa:29:51:a2:60:7d:
9f:b5:de:0d:5c:4e:ca:dc:2f:2c:80:f7:b2:65:9e:
32:de:04:08:1c:a9:30:c4:61:a8:86:f5:5d:0f:c1:
a2:47:35:11:64:37:17:61:47:38:03:23:5a:9a:db:
b3:6c:2a:a0:b4:fb:b3:49:91:9b:34:5d:bd:6b:75:
b2:9b:3f:dd:72:ff:d1:60:2d:da:d7:47:74:a4:ef:
f7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:4A:3D:DB:4B:6F:70:AF:9A:27:57:E6:94:33:B8:35:A3:76:7F:81
X509v3 Authority Key Identifier:
keyid:E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ba:6c:c3:c5:19:76:51:6f:f7:6b:8d:26:19:9f:5d:c2:64:
ec:01:8f:70:83:53:40:dc:b8:05:ad:42:0f:06:65:b9:73:97:
44:b1:ca:af:7d:38:ed:80:a6:f9:28:2c:44:fd:76:c7:96:0c:
bd:63:da:82:ee:d1:ef:98:7b:3c:07:0a:89:37:08:d3:0e:78:
49:cb:80:2a:20:59:0a:1a:6f:7b:43:d9:bc:4f:4b:1c:f9:3a:
f9:dc:37:dc:c8:f9:29:b1:42:af:45:06:78:fa:94:58:07:ae:
89:64:ee:43:d2:ef:3a:b7:e9:d1:62:9c:f8:86:6c:1c:3c:fc:
2d:b7:1e:e9:06:1b:55:60:5c:5a:4d:f6:8d:5f:3d:dd:fa:51:
a9:ce:b9:4b:5d:2c:10:9e:9f:b9:9f:65:f9:bb:f9:73:12:b9:
25:24:20:c8:2f:41:b0:bb:8b:5f:04:58:7d:15:17:4f:03:5b:
a7:cf:b4:53:fe:5a:0c:3b:77:5a:7b:5f:b2:58:e1:02:9b:0b:
14:f5:a6:de:67:c8:65:06:bf:c4:a6:8d:c5:74:ef:f0:fb:85:
4c:65:73:37:a2:02:d7:14:0f:18:15:28:d9:91:f4:b1:d1:88:
8b:20:12:a3:94:ca:34:10:4a:5c:9c:71:80:1a:66:8d:7b:49:
1d:83:13:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsSqz9yr0VNUh+0c3MUqlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YTg4NjU5MTRkZWNjZGM5ODA3MjQxZmQ3MGI2YmIwODNh
NDQ0YjMwHhcNMjUwOTA3MDEwMTIyWhcNMjUwOTA4MDEwMTIyWjAzMTEwLwYDVQQD
EygwYTRhM2RkYjRiNmY3MGFmOWEyNzU3ZTY5NDMzYjgzNWEzNzY3ZjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9ybXSVGh2MdAPvUMp70oUgYmLQi
xYNm1yuHeKcOdCxrY10Uf9MWU05PSEQQIyS6VXxmbHX/XVfGSef7EScipOt8Abh/
2v62Koi6asWKeEfTre/Di2+ouBjUEf66FIjWUCowjwqRjla2OsfVmK8sSvBAgyGp
nMLPdjOrlLl/qpgXGpiLt6Q++2jzWWT4e6UDuxSOm6GXlGBgS7F0Hocx6UoSIA5n
oArt/55MD6CqKVGiYH2ftd4NXE7K3C8sgPeyZZ4y3gQIHKkwxGGohvVdD8GiRzUR
ZDcXYUc4AyNamtuzbCqgtPuzSZGbNF29a3Wymz/dcv/RYC3a10d0pO/3pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFApKPdtLb3CvmidX5pQzuDWjdn+BMB8GA1UdIwQY
MBaAFOWohlkU3szcmAckH9cLa7CDpESzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWFpR1dSVGV6TnlZQnlRZjF3dHJzSU9rUkxNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zYWZjODEtMzBlNi00YjhlLThkM2It
NTdmNTRlYTQzZTE2LzEvNWFpR1dSVGV6TnlZQnlRZjF3dHJzSU9rUkxNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8zYWZjODEtMzBlNi00YjhlLThkM2ItNTdmNTRlYTQzZTE2
LzEvNWFpR1dSVGV6TnlZQnlRZjF3dHJzSU9rUkxNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMbpsw8UZ
dlFv92uNJhmfXcJk7AGPcINTQNy4Ba1CDwZluXOXRLHKr3047YCm+SgsRP12x5YM
vWPagu7R75h7PAcKiTcI0w54ScuAKiBZChpve0PZvE9LHPk6+dw33Mj5KbFCr0UG
ePqUWAeuiWTuQ9LvOrfp0WKc+IZsHDz8Lbce6QYbVWBcWk32jV893fpRqc65S10s
EJ6fuZ9l+bv5cxK5JSQgyC9BsLuLXwRYfRUXTwNbp8+0U/5aDDt3WntfsljhApsL
FPWm3mfIZQa/xKaNxXTv8PuFTGVzN6IC1xQPGBUo2ZH0sdGIiyASo5TKNBBKXJxx
gBpmjXtJHYMTFA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:11:29 2025 by rpki-client