Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
File: 53ltjBnzKhyvvVt49Sds6N-ZXQo.mft (raw, json)
Hash identifier: mFR6kcIaWiHY9kYeU6qble2Kxo/DoIHFFzM7nkcYgCc=
Subject key identifier: 91:62:93:48:11:94:B7:E7:64:69:11:8C:7E:23:AE:77:2E:29:C8:FD
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Certificate issuer: /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial: 0199221F283CEA314E7D6AFD8002214FA118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 03:01:31 +0000
Manifest this update: Sun 07 Sep 2025 03:01:31 +0000
Manifest next update: Mon 08 Sep 2025 03:01:31 +0000
Files and hashes: 1: 53ltjBnzKhyvvVt49Sds6N-ZXQo.crl (hash: 7krbbq1HJpFuUhCXe4MPw7xZjsgGuQKrNsIJxleB71g=)
2: tUZHDdFwry8ADa4Cy4cgEjcwGpA.roa (hash: khx6M/GES6UZBMxotwf4KeFJV0Wp8E9iWqwkSmvOz7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:28:3c:ea:31:4e:7d:6a:fd:80:02:21:4f:a1:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Validity
Not Before: Sep 7 03:01:31 2025 GMT
Not After : Sep 8 03:01:31 2025 GMT
Subject: CN=916293481194b7e76469118c7e23ae772e29c8fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:71:3f:d6:ff:9d:51:46:59:9a:0f:da:a3:13:
5d:5c:0c:48:23:39:94:68:a1:0d:2a:07:ea:d9:29:
24:ac:0f:ff:47:b4:ae:84:4a:d3:cd:61:68:97:7e:
75:1f:75:ae:37:26:80:5a:bb:10:9a:02:a7:a9:28:
8a:83:f1:a1:84:6f:92:92:7e:aa:3b:72:49:ec:98:
b8:53:ac:c0:23:ee:ed:97:27:af:9b:68:6f:ba:b2:
6d:c6:00:ff:54:88:1d:d2:df:05:84:47:bf:c0:15:
99:77:82:13:47:57:0f:72:fd:fe:44:90:03:b5:76:
33:0c:25:13:c7:52:10:f9:30:a1:2d:b6:f8:69:33:
ed:2a:0e:9c:2d:f6:83:d3:86:3e:ea:7c:62:16:43:
88:1f:d4:97:20:05:0b:72:15:a3:fb:70:15:2d:35:
93:0e:f7:2a:85:82:d1:b7:c9:11:28:ee:13:47:76:
1d:b5:20:35:c0:15:b8:f9:88:c5:e4:16:2c:f3:58:
02:68:94:05:d3:b7:d3:76:4f:f0:77:22:16:2a:05:
43:40:7d:64:ce:04:87:5b:b2:01:60:8e:90:14:c8:
c6:f1:e6:24:49:3a:44:3c:dd:99:f0:53:e7:c6:ba:
db:ad:83:4e:6d:20:e0:4c:a8:06:77:e3:51:32:2a:
38:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:62:93:48:11:94:B7:E7:64:69:11:8C:7E:23:AE:77:2E:29:C8:FD
X509v3 Authority Key Identifier:
keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:44:eb:8a:a0:55:66:c4:c2:1e:d2:03:3b:24:bd:b4:c4:87:
46:90:60:1f:3d:18:b4:3e:e0:fa:e4:c1:65:21:4e:a3:ea:14:
f7:49:26:28:66:3b:83:40:69:e6:96:2d:d9:5f:9f:9a:03:98:
93:a1:a5:54:53:56:d0:90:e8:95:21:e0:ba:9e:30:e2:6b:14:
aa:08:aa:83:9a:98:0d:56:45:89:93:71:26:0f:cd:37:9d:d7:
8c:09:d6:e8:aa:1f:b8:55:ff:a6:7a:f0:fb:60:b3:75:1d:7b:
82:b5:14:d2:84:9a:d2:ff:35:78:05:49:65:4e:74:ed:00:6f:
72:83:2b:bc:48:e0:bb:c8:ce:62:5e:87:67:b6:00:fe:28:7e:
54:a0:58:d3:d3:7e:65:35:75:a7:2f:d6:93:b9:90:c2:c7:21:
9b:1a:9c:4d:31:c2:5a:79:4f:32:90:5c:e5:c2:d6:15:5d:65:
c3:3e:56:a3:09:52:cc:63:c3:3d:e8:f0:dc:fc:82:ac:5d:d8:
09:b2:ba:32:19:a2:0f:dd:7b:ef:76:43:10:f0:0d:ab:3a:39:
77:b9:6a:16:0c:fd:ce:48:d0:2a:3e:1f:51:d9:7d:e7:93:8e:
aa:08:60:04:11:4a:32:ee:9e:e8:fb:24:4d:55:c8:dd:7b:6b:
9c:3e:3d:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHyg86jFOfWr9gAIhT6EYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Nzk2ZDhjMTlmMzJhMWNhZmJkNWI3OGY1Mjc2Y2U4ZGY5
OTVkMGEwHhcNMjUwOTA3MDMwMTMxWhcNMjUwOTA4MDMwMTMxWjAzMTEwLwYDVQQD
Eyg5MTYyOTM0ODExOTRiN2U3NjQ2OTExOGM3ZTIzYWU3NzJlMjljOGZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXE/1v+dUUZZmg/aoxNdXAxIIzmU
aKENKgfq2SkkrA//R7SuhErTzWFol351H3WuNyaAWrsQmgKnqSiKg/GhhG+Skn6q
O3JJ7Ji4U6zAI+7tlyevm2hvurJtxgD/VIgd0t8FhEe/wBWZd4ITR1cPcv3+RJAD
tXYzDCUTx1IQ+TChLbb4aTPtKg6cLfaD04Y+6nxiFkOIH9SXIAULchWj+3AVLTWT
DvcqhYLRt8kRKO4TR3YdtSA1wBW4+YjF5BYs81gCaJQF07fTdk/wdyIWKgVDQH1k
zgSHW7IBYI6QFMjG8eYkSTpEPN2Z8FPnxrrbrYNObSDgTKgGd+NRMio40wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJFik0gRlLfnZGkRjH4jrncuKcj9MB8GA1UdIwQY
MBaAFOd5bYwZ8yocr71bePUnbOjfmV0KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81ZWM5NzAtNzk2NS00ZTBiLWI5NDct
Mjg1N2U4YTIzNTU4LzEvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS81ZWM5NzAtNzk2NS00ZTBiLWI5NDctMjg1N2U4YTIzNTU4
LzEvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWUTriqBV
ZsTCHtIDOyS9tMSHRpBgHz0YtD7g+uTBZSFOo+oU90kmKGY7g0Bp5pYt2V+fmgOY
k6GlVFNW0JDolSHgup4w4msUqgiqg5qYDVZFiZNxJg/NN53XjAnW6KofuFX/pnrw
+2CzdR17grUU0oSa0v81eAVJZU507QBvcoMrvEjgu8jOYl6HZ7YA/ih+VKBY09N+
ZTV1py/Wk7mQwschmxqcTTHCWnlPMpBc5cLWFV1lwz5WowlSzGPDPejw3PyCrF3Y
CbK6MhmiD91773ZDEPANqzo5d7lqFgz9zkjQKj4fUdl955OOqghgBBFKMu6e6Psk
TVXI3XtrnD498A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:49:43 2025 by rpki-client