
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
File: 53ltjBnzKhyvvVt49Sds6N-ZXQo.mft (raw, json)
Hash identifier: oAVoGoDD1cOzsaY4qNfwSVlJl8L50XGZY10p8JiIsfY=
Subject key identifier: 03:3F:B4:8A:0F:71:6A:33:31:D4:21:00:FF:6C:44:57:53:86:92:A6
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Certificate issuer: /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial: 019762BA07F00503B43F40ECFBA2FB630580
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
Manifest number: 1589
Signing time: Thu 12 Jun 2025 06:00:48 +0000
Manifest this update: Thu 12 Jun 2025 06:00:48 +0000
Manifest next update: Fri 13 Jun 2025 06:00:48 +0000
Files and hashes: 1: 53ltjBnzKhyvvVt49Sds6N-ZXQo.crl (hash: FReT24QwT0vaKd8pcty3G8YGagV++es2zeNIALRyVWA=)
2: NSSboe1wxlMIOf4H1ym0BPT-rCY.roa (hash: dKR82CR6RtrhKiyhhDRuSTP5OlKpaGcPWazs+LJAU9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:ba:07:f0:05:03:b4:3f:40:ec:fb:a2:fb:63:05:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Validity
Not Before: Jun 12 06:00:48 2025 GMT
Not After : Jun 13 06:00:48 2025 GMT
Subject: CN=033fb48a0f716a3331d42100ff6c4457538692a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b3:25:9a:f5:cf:5d:f1:5c:a3:80:ef:6c:27:
b3:fc:78:c5:7c:a6:ad:3e:9e:05:0f:4a:e3:cb:ac:
a8:4d:27:29:e0:84:ff:cd:b3:6f:fc:76:ce:8e:b6:
86:9b:28:2b:72:09:11:61:20:1e:8f:5c:58:50:09:
f7:d3:85:91:63:95:0c:17:42:2a:91:5e:25:43:ee:
82:c1:99:c5:92:c5:c7:d0:ff:1e:0d:f8:b6:b9:44:
1b:84:32:44:aa:d9:bd:4e:97:d6:9c:5d:b7:52:34:
11:fd:47:50:93:34:bd:59:02:bb:c5:cc:9e:8f:2a:
af:07:81:fe:5f:5a:27:ba:6a:c8:18:50:cc:3c:4d:
0d:3c:e9:26:10:2b:48:f6:c4:bd:e8:5a:ab:62:55:
be:c7:48:e3:30:6e:e2:7e:6b:18:78:02:15:d1:e1:
3e:33:cb:13:61:fb:67:90:fb:12:72:48:3f:f5:13:
c7:07:fd:99:da:ab:b8:53:44:42:fa:17:ca:e5:2c:
f7:8f:07:17:d9:11:d5:e2:dd:f8:db:64:a9:5c:21:
84:8d:04:45:dc:5d:1e:cb:a6:3a:7c:b2:b3:8f:45:
1f:fe:40:9d:b1:ff:6c:a5:cd:72:da:c0:94:41:3a:
81:5b:b3:d5:28:50:bc:09:f2:0f:66:79:63:ea:2d:
dc:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:3F:B4:8A:0F:71:6A:33:31:D4:21:00:FF:6C:44:57:53:86:92:A6
X509v3 Authority Key Identifier:
keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:95:dd:1f:85:2d:16:db:60:69:b3:2c:08:22:53:ca:c3:a6:
d5:83:73:a5:de:7c:cd:a4:50:b4:a1:23:71:cb:d2:36:f5:3c:
bd:34:76:22:bd:e0:a8:9b:bf:bd:87:c3:79:b8:f2:c0:af:b2:
04:f5:52:f7:6a:8f:6c:68:b1:51:ca:14:17:21:33:e4:35:04:
39:df:42:62:07:b1:6b:b4:ba:ab:29:39:33:5b:f3:7e:ba:eb:
d2:8b:7e:88:72:ab:73:e2:dc:39:08:75:b6:12:ef:24:4d:1c:
a9:6c:c6:42:bc:a2:e2:4b:fd:a5:56:d0:2e:41:1c:f8:63:78:
17:86:6a:0d:29:85:f8:a1:2d:84:82:4c:b3:7e:49:f4:3b:bd:
ea:7a:13:71:b6:bb:55:36:71:03:14:16:fc:88:70:01:f4:3b:
26:f0:86:26:c4:da:d5:c6:f0:aa:fc:6b:2e:34:8a:f5:5c:5e:
6a:fc:a2:16:cf:a3:ff:16:6b:03:45:26:0e:b2:1c:58:8a:eb:
16:3a:44:b7:d1:a0:5d:92:13:dc:af:fa:3e:8c:1b:b6:18:db:
42:f5:47:d5:09:f9:6b:21:58:ec:e3:8b:f0:c6:76:09:f0:f5:
df:78:88:3c:f5:ad:a2:19:59:33:f5:39:41:7f:8c:be:77:9e:
cf:0b:dd:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdiugfwBQO0P0Ds+6L7YwWAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Nzk2ZDhjMTlmMzJhMWNhZmJkNWI3OGY1Mjc2Y2U4ZGY5
OTVkMGEwHhcNMjUwNjEyMDYwMDQ4WhcNMjUwNjEzMDYwMDQ4WjAzMTEwLwYDVQQD
EygwMzNmYjQ4YTBmNzE2YTMzMzFkNDIxMDBmZjZjNDQ1NzUzODY5MmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7MlmvXPXfFco4DvbCez/HjFfKat
Pp4FD0rjy6yoTScp4IT/zbNv/HbOjraGmygrcgkRYSAej1xYUAn304WRY5UMF0Iq
kV4lQ+6CwZnFksXH0P8eDfi2uUQbhDJEqtm9TpfWnF23UjQR/UdQkzS9WQK7xcye
jyqvB4H+X1onumrIGFDMPE0NPOkmECtI9sS96FqrYlW+x0jjMG7ifmsYeAIV0eE+
M8sTYftnkPsSckg/9RPHB/2Z2qu4U0RC+hfK5Sz3jwcX2RHV4t3422SpXCGEjQRF
3F0ey6Y6fLKzj0Uf/kCdsf9spc1y2sCUQTqBW7PVKFC8CfIPZnlj6i3cWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAM/tIoPcWozMdQhAP9sRFdThpKmMB8GA1UdIwQY
MBaAFOd5bYwZ8yocr71bePUnbOjfmV0KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81ZWM5NzAtNzk2NS00ZTBiLWI5NDct
Mjg1N2U4YTIzNTU4LzEvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS81ZWM5NzAtNzk2NS00ZTBiLWI5NDctMjg1N2U4YTIzNTU4
LzEvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMJXdH4Ut
FttgabMsCCJTysOm1YNzpd58zaRQtKEjccvSNvU8vTR2Ir3gqJu/vYfDebjywK+y
BPVS92qPbGixUcoUFyEz5DUEOd9CYgexa7S6qyk5M1vzfrrr0ot+iHKrc+LcOQh1
thLvJE0cqWzGQryi4kv9pVbQLkEc+GN4F4ZqDSmF+KEthIJMs35J9Du96noTcba7
VTZxAxQW/IhwAfQ7JvCGJsTa1cbwqvxrLjSK9VxeavyiFs+j/xZrA0UmDrIcWIrr
FjpEt9GgXZIT3K/6PowbthjbQvVH1Qn5ayFY7OOL8MZ2CfD133iIPPWtohlZM/U5
QX+Mvneezwvd/w==
-----END CERTIFICATE-----
Generated at Thu Jun 12 10:43:10 2025 by rpki-client