Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
File: 53ltjBnzKhyvvVt49Sds6N-ZXQo.mft (raw, json)
Hash identifier: CbK4JQRUkPI3tSasi4Srk+klE7QZsixGQbSfVgZwwyY=
Subject key identifier: 96:EB:F8:12:E2:D2:AB:80:52:96:F5:53:E2:E2:3F:57:7E:B2:E0:AA
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Certificate issuer: /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial: 019A7225B2F51788DA89D5DE5DB137DDCD78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 09:01:04 +0000
Manifest this update: Tue 11 Nov 2025 09:01:04 +0000
Manifest next update: Wed 12 Nov 2025 09:01:04 +0000
Files and hashes: 1: 53ltjBnzKhyvvVt49Sds6N-ZXQo.crl (hash: wOQZf6z2lZTplsr1ZVSSCKso2GfWGLWJgAxs22vs8h0=)
2: tUZHDdFwry8ADa4Cy4cgEjcwGpA.roa (hash: khx6M/GES6UZBMxotwf4KeFJV0Wp8E9iWqwkSmvOz7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:b2:f5:17:88:da:89:d5:de:5d:b1:37:dd:cd:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Validity
Not Before: Nov 11 09:01:04 2025 GMT
Not After : Nov 12 09:01:04 2025 GMT
Subject: CN=96ebf812e2d2ab805296f553e2e23f577eb2e0aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3b:9f:80:e3:6f:94:8b:a3:cf:cc:5b:a9:31:
83:a4:d5:5b:4a:c9:b5:e5:6f:0d:76:b2:58:c5:90:
29:99:36:55:c6:5f:1d:bd:1f:e5:b3:4d:ce:2f:93:
04:8e:b8:df:fc:f2:ad:8e:1f:52:38:ba:34:3e:8a:
62:06:a8:5e:53:69:f0:d3:fa:39:3e:b1:45:13:c9:
4a:76:34:43:9c:f1:30:a6:67:78:51:59:58:de:e4:
5f:16:3f:0a:97:95:ed:72:f9:66:99:db:31:c2:f3:
70:0a:06:40:1e:89:46:6e:7b:3c:fc:b8:e8:4e:2e:
80:7c:ef:73:73:55:9e:e1:2a:cb:45:46:b4:33:8e:
ad:e5:0c:92:c6:f4:56:f9:71:09:8a:cb:92:8d:9f:
b4:18:ec:77:be:2a:57:d3:9a:d3:f1:6c:3c:52:83:
3e:7d:9d:17:08:bc:1c:24:54:8e:d9:18:b4:29:4c:
13:01:71:ce:9d:ed:5f:7a:cc:04:37:7b:5f:ea:5a:
a0:e4:90:5b:45:75:0c:20:60:a9:67:24:1b:a6:a0:
6c:47:54:0b:55:2a:85:19:41:19:ad:46:e4:25:f2:
01:eb:f7:12:b7:bd:49:05:e9:e7:ec:bf:5e:c2:dc:
c8:9a:59:23:29:2e:1b:71:8d:2d:a1:2e:7c:bf:b7:
64:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EB:F8:12:E2:D2:AB:80:52:96:F5:53:E2:E2:3F:57:7E:B2:E0:AA
X509v3 Authority Key Identifier:
keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:20:54:1a:0d:4a:33:04:46:79:6b:1b:c6:8c:84:75:2c:94:
97:f2:be:18:98:08:e4:a6:c8:c3:11:56:fe:06:34:cf:5b:f5:
35:48:1a:d4:a5:6a:13:45:9d:ae:61:fb:27:e3:e2:be:f7:b0:
f1:de:82:37:8e:cf:d3:88:20:d3:f9:54:b4:b3:2b:62:6f:e1:
dd:1e:76:a8:a7:99:62:2d:a1:e1:02:59:e7:29:51:54:c8:2b:
15:6f:d9:7b:d9:e6:e5:df:0a:60:e0:f3:67:b7:54:f7:03:ec:
81:6c:7e:de:4b:97:3f:3e:06:e7:7c:de:38:4b:7b:a0:3f:18:
04:1d:da:c0:af:bc:6b:dc:6d:80:f9:45:16:bd:d6:73:36:8e:
72:20:f1:65:96:93:38:05:f4:d8:e5:ac:29:18:07:f9:85:b1:
a7:96:e3:d8:e9:9c:a7:99:53:a0:eb:2c:af:b0:d9:74:8c:b3:
a2:22:f2:a3:fb:38:43:0b:76:f7:e4:80:26:1e:ac:22:d1:db:
03:87:01:ca:a7:6c:72:98:6b:c6:71:47:c3:2f:e4:c9:eb:b7:
d4:f8:c6:c2:88:d2:da:58:0e:c3:bc:0b:5a:88:85:cc:7a:b1:
bd:3f:4f:7d:cb:bf:96:c6:54:f0:d5:2b:73:1d:c4:4e:cd:b2:
19:16:79:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJbL1F4jaidXeXbE33c14MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Nzk2ZDhjMTlmMzJhMWNhZmJkNWI3OGY1Mjc2Y2U4ZGY5
OTVkMGEwHhcNMjUxMTExMDkwMTA0WhcNMjUxMTEyMDkwMTA0WjAzMTEwLwYDVQQD
Eyg5NmViZjgxMmUyZDJhYjgwNTI5NmY1NTNlMmUyM2Y1NzdlYjJlMGFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTufgONvlIujz8xbqTGDpNVbSsm1
5W8NdrJYxZApmTZVxl8dvR/ls03OL5MEjrjf/PKtjh9SOLo0PopiBqheU2nw0/o5
PrFFE8lKdjRDnPEwpmd4UVlY3uRfFj8Kl5XtcvlmmdsxwvNwCgZAHolGbns8/Ljo
Ti6AfO9zc1We4SrLRUa0M46t5QySxvRW+XEJisuSjZ+0GOx3vipX05rT8Ww8UoM+
fZ0XCLwcJFSO2Ri0KUwTAXHOne1feswEN3tf6lqg5JBbRXUMIGCpZyQbpqBsR1QL
VSqFGUEZrUbkJfIB6/cSt71JBenn7L9ewtzImlkjKS4bcY0toS58v7dkjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJbr+BLi0quAUpb1U+LiP1d+suCqMB8GA1UdIwQY
MBaAFOd5bYwZ8yocr71bePUnbOjfmV0KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81ZWM5NzAtNzk2NS00ZTBiLWI5NDct
Mjg1N2U4YTIzNTU4LzEvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS81ZWM5NzAtNzk2NS00ZTBiLWI5NDctMjg1N2U4YTIzNTU4
LzEvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiSBUGg1K
MwRGeWsbxoyEdSyUl/K+GJgI5KbIwxFW/gY0z1v1NUga1KVqE0WdrmH7J+Pivvew
8d6CN47P04gg0/lUtLMrYm/h3R52qKeZYi2h4QJZ5ylRVMgrFW/Ze9nm5d8KYODz
Z7dU9wPsgWx+3kuXPz4G53zeOEt7oD8YBB3awK+8a9xtgPlFFr3WczaOciDxZZaT
OAX02OWsKRgH+YWxp5bj2Omcp5lToOssr7DZdIyzoiLyo/s4Qwt29+SAJh6sItHb
A4cByqdscphrxnFHwy/kyeu31PjGwojS2lgOw7wLWoiFzHqxvT9Pfcu/lsZU8NUr
cx3ETs2yGRZ52A==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:36:18 2025 by rpki-client