Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/5dc195-0d99-483e-b449-ce227042dda2/1/W71IGEEVS878rKezBFwL70pzTbI.mft
File: W71IGEEVS878rKezBFwL70pzTbI.mft (raw, json)
Hash identifier: 8O9tGczfhQybwr7sXohHzqJhAx2LkCDdhnmws85MC/4=
Subject key identifier: C1:CA:36:AE:F0:FA:32:B3:76:FB:8D:1D:D1:87:E4:F5:81:17:C4:CB
Authority key identifier: 5B:BD:48:18:41:15:4B:CE:FC:AC:A7:B3:04:5C:0B:EF:4A:73:4D:B2
Certificate issuer: /CN=5bbd481841154bcefcaca7b3045c0bef4a734db2
Certificate serial: 019922FAD309D4D214DA53891772BA26B62D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W71IGEEVS878rKezBFwL70pzTbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/5dc195-0d99-483e-b449-ce227042dda2/1/W71IGEEVS878rKezBFwL70pzTbI.mft
Manifest number: 24
Signing time: Sun 07 Sep 2025 07:01:27 +0000
Manifest this update: Sun 07 Sep 2025 07:01:27 +0000
Manifest next update: Mon 08 Sep 2025 07:01:27 +0000
Files and hashes: 1: W71IGEEVS878rKezBFwL70pzTbI.crl (hash: L+rlZg2swwRYHA6kut63oDkIiyH2I8v3IZeFZp9cqOw=)
2: thxqmd-4993wIDVkeKo6YjJwVCI.roa (hash: JrvwHVFBcBXJuk+VrcpY4TJjyv1IyLed5UMTTe97Myk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/5dc195-0d99-483e-b449-ce227042dda2/1/W71IGEEVS878rKezBFwL70pzTbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/5dc195-0d99-483e-b449-ce227042dda2/1/W71IGEEVS878rKezBFwL70pzTbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/W71IGEEVS878rKezBFwL70pzTbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:d3:09:d4:d2:14:da:53:89:17:72:ba:26:b6:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bbd481841154bcefcaca7b3045c0bef4a734db2
Validity
Not Before: Sep 7 07:01:27 2025 GMT
Not After : Sep 8 07:01:27 2025 GMT
Subject: CN=c1ca36aef0fa32b376fb8d1dd187e4f58117c4cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:d6:cd:c4:11:0d:6c:55:fa:4b:ab:82:50:32:
6c:19:82:58:6d:2e:07:d8:ec:41:4c:fc:e9:7e:54:
c1:4d:16:fd:21:23:a2:9f:07:94:9a:5e:4d:be:ab:
66:1a:5c:0f:41:52:77:2a:15:19:27:74:7e:26:8d:
8a:c4:92:3d:67:d8:9e:f5:4b:8b:72:8a:66:c2:d6:
ef:91:17:cb:5e:10:dc:4c:19:e6:39:3e:a8:81:67:
71:8f:03:fc:ce:22:f1:26:e0:f6:b0:39:62:99:54:
02:9e:aa:b1:86:a0:b9:1e:25:c8:7a:b3:a3:08:95:
0f:99:03:0b:06:77:ce:f0:d3:7c:d0:84:13:a9:29:
b1:df:d1:ba:7c:71:8f:e6:e7:dc:ee:79:bb:5c:89:
1f:16:66:b2:9a:17:a8:70:ac:9f:f1:9a:d0:06:dd:
8b:26:07:79:45:03:1e:59:31:22:92:4a:70:e2:12:
0b:f1:56:ac:ef:b9:3a:26:52:6f:81:3c:46:77:a7:
ac:7e:75:ad:cc:e1:aa:f8:ab:1a:99:59:ad:e0:a6:
12:35:60:d1:3b:0d:42:7b:28:76:d1:4c:13:c6:0d:
a4:c7:81:c1:bd:69:b3:f9:0a:60:c9:cd:4b:5a:9d:
da:19:41:b1:21:c3:e7:39:94:53:62:f1:df:d7:8e:
fe:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:CA:36:AE:F0:FA:32:B3:76:FB:8D:1D:D1:87:E4:F5:81:17:C4:CB
X509v3 Authority Key Identifier:
keyid:5B:BD:48:18:41:15:4B:CE:FC:AC:A7:B3:04:5C:0B:EF:4A:73:4D:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W71IGEEVS878rKezBFwL70pzTbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/5dc195-0d99-483e-b449-ce227042dda2/1/W71IGEEVS878rKezBFwL70pzTbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/5dc195-0d99-483e-b449-ce227042dda2/1/W71IGEEVS878rKezBFwL70pzTbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:fb:b4:f4:1f:ce:f4:04:7f:ce:6b:f1:62:90:68:ee:46:e8:
6d:c3:9f:d1:54:7e:87:7f:79:4b:27:eb:04:3b:d2:8e:52:78:
54:04:8f:86:6d:85:28:41:ae:2e:b9:f1:2a:31:1c:f9:59:ef:
20:b9:f9:9b:f3:98:04:e3:ee:d2:dd:47:06:86:97:c0:16:4c:
76:8a:5a:49:f7:ec:10:d1:40:dd:72:7e:a5:34:06:c0:50:92:
8c:21:bc:28:c3:2a:95:42:a0:fc:e0:50:35:4d:cf:2f:5b:c7:
84:f9:16:9b:66:55:b7:57:ff:c3:23:93:6d:b9:e0:f7:19:4c:
d1:f4:4b:9f:57:9f:b2:e5:29:a5:7b:ce:ff:10:a7:13:e5:ee:
c7:22:aa:8d:b3:63:d1:5e:ac:bb:a4:51:1c:c8:97:52:57:6a:
b4:6d:76:f2:76:2a:46:6b:fe:b0:89:1f:10:4e:99:c2:cb:4c:
5e:37:c6:c3:d3:b3:ca:18:5a:f3:c7:26:9a:e5:02:48:8a:39:
95:c6:29:a0:65:24:82:f3:77:1f:93:b3:5b:09:bb:10:a6:fb:
2f:58:bc:20:95:9e:0f:e2:4a:7d:a9:29:80:48:d5:70:cb:38:
1d:d7:e1:2c:84:c0:8c:3b:95:b2:c9:70:10:14:27:85:1f:34:
00:1d:fc:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+tMJ1NIU2lOJF3K6JrYtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViYmQ0ODE4NDExNTRiY2VmY2FjYTdiMzA0NWMwYmVmNGE3
MzRkYjIwHhcNMjUwOTA3MDcwMTI3WhcNMjUwOTA4MDcwMTI3WjAzMTEwLwYDVQQD
EyhjMWNhMzZhZWYwZmEzMmIzNzZmYjhkMWRkMTg3ZTRmNTgxMTdjNGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8dbNxBENbFX6S6uCUDJsGYJYbS4H
2OxBTPzpflTBTRb9ISOinweUml5NvqtmGlwPQVJ3KhUZJ3R+Jo2KxJI9Z9ie9UuL
copmwtbvkRfLXhDcTBnmOT6ogWdxjwP8ziLxJuD2sDlimVQCnqqxhqC5HiXIerOj
CJUPmQMLBnfO8NN80IQTqSmx39G6fHGP5ufc7nm7XIkfFmaymheocKyf8ZrQBt2L
Jgd5RQMeWTEikkpw4hIL8Vas77k6JlJvgTxGd6esfnWtzOGq+KsamVmt4KYSNWDR
Ow1Ceyh20UwTxg2kx4HBvWmz+Qpgyc1LWp3aGUGxIcPnOZRTYvHf147+NwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMHKNq7w+jKzdvuNHdGH5PWBF8TLMB8GA1UdIwQY
MBaAFFu9SBhBFUvO/KynswRcC+9Kc02yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzcxSUdFRVZTODc4cktlekJGd0w3MHB6VGJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81ZGMxOTUtMGQ5OS00ODNlLWI0NDkt
Y2UyMjcwNDJkZGEyLzEvVzcxSUdFRVZTODc4cktlekJGd0w3MHB6VGJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi81ZGMxOTUtMGQ5OS00ODNlLWI0NDktY2UyMjcwNDJkZGEy
LzEvVzcxSUdFRVZTODc4cktlekJGd0w3MHB6VGJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF/u09B/O
9AR/zmvxYpBo7kbobcOf0VR+h395SyfrBDvSjlJ4VASPhm2FKEGuLrnxKjEc+Vnv
ILn5m/OYBOPu0t1HBoaXwBZMdopaSffsENFA3XJ+pTQGwFCSjCG8KMMqlUKg/OBQ
NU3PL1vHhPkWm2ZVt1f/wyOTbbng9xlM0fRLn1efsuUppXvO/xCnE+XuxyKqjbNj
0V6su6RRHMiXUldqtG128nYqRmv+sIkfEE6ZwstMXjfGw9Ozyhha88cmmuUCSIo5
lcYpoGUkgvN3H5OzWwm7EKb7L1i8IJWeD+JKfakpgEjVcMs4HdfhLITAjDuVsslw
EBQnhR80AB38zQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:50 2025 by rpki-client