Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
File: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft (raw, json)
Hash identifier: MflKXfwHNyavNJcfGH1Jz/m3KdRbaPHyku/W1HGXEgo=
Subject key identifier: 69:F5:E9:6A:C4:A2:39:0B:17:6E:06:D8:D7:40:0D:58:74:90:B7:91
Authority key identifier: E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
Certificate issuer: /CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Certificate serial: 0199221F0F2A83D9A6CBB919E596F86CC7E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
Manifest number: 15B2
Signing time: Sun 07 Sep 2025 03:01:24 +0000
Manifest this update: Sun 07 Sep 2025 03:01:24 +0000
Manifest next update: Mon 08 Sep 2025 03:01:24 +0000
Files and hashes: 1: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl (hash: PVDhi70DWTX/5yUX+cQTHbQQ0Jtha0pxtR+uGcMxGxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:0f:2a:83:d9:a6:cb:b9:19:e5:96:f8:6c:c7:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Validity
Not Before: Sep 7 03:01:24 2025 GMT
Not After : Sep 8 03:01:24 2025 GMT
Subject: CN=69f5e96ac4a2390b176e06d8d7400d587490b791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e4:92:8a:9d:9e:99:f9:56:1e:45:c3:02:ea:
3e:0c:10:4e:94:0a:03:82:04:98:d1:45:d1:4a:91:
93:f1:0b:19:d4:0b:b6:7b:4a:d2:e6:18:68:a9:3f:
1a:3c:1d:72:9d:64:d9:ab:16:ff:f9:64:3d:35:31:
37:a3:06:e0:28:ab:fb:be:b4:77:ce:ec:1c:9d:c7:
1b:ce:01:81:54:70:be:76:9a:db:b1:94:b8:28:8b:
95:1f:e9:6a:65:72:a5:35:c3:a8:17:54:4f:d5:6f:
4a:5d:80:4a:eb:c3:e6:b9:07:74:35:ef:86:14:f5:
64:a7:63:02:47:3d:f1:f5:57:99:b5:79:8d:43:08:
34:d8:f7:e1:e7:41:12:8b:2b:94:02:b2:6a:98:cd:
72:42:d5:05:dd:2c:58:3c:8f:ea:d7:3d:0d:73:03:
d9:a5:0e:8c:a6:79:2c:e3:a4:a5:02:1d:1e:a3:7d:
bb:8f:39:a6:96:4f:76:0c:68:70:38:9b:33:88:a4:
7f:6f:5d:fc:74:0c:7a:33:9e:20:8f:61:71:27:e2:
67:fc:60:62:d0:72:04:23:00:08:80:4f:7d:30:26:
90:c4:c5:6a:a5:f7:b2:81:75:a8:c1:84:07:29:31:
da:ff:b0:f1:9e:88:e2:34:b8:d9:42:7d:0e:8c:23:
b4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F5:E9:6A:C4:A2:39:0B:17:6E:06:D8:D7:40:0D:58:74:90:B7:91
X509v3 Authority Key Identifier:
keyid:E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:46:6f:9f:ba:a8:fa:85:11:a1:09:a9:0a:ad:96:69:92:79:
c7:56:05:bb:2f:8d:8d:bc:b5:a3:0c:49:d3:09:8d:4b:20:be:
84:db:c9:7b:50:41:25:d6:87:5a:fb:aa:dd:f0:d0:00:59:a1:
84:57:5e:3f:56:8a:ad:75:1e:10:af:43:f5:2f:46:31:64:8e:
c6:e4:69:69:c4:d2:ed:9b:f3:85:80:80:6d:87:13:4e:bd:8f:
85:37:e0:b9:c2:91:75:4c:3c:f8:6b:17:a1:d4:0f:5e:41:97:
63:41:de:82:e8:d8:e1:b6:c4:47:f7:7e:19:de:25:e9:79:21:
b8:8d:ed:c8:e9:39:f8:94:b9:65:b4:fc:9a:18:d4:d2:7f:10:
11:4d:5b:e2:ce:9b:56:ce:05:b1:b6:e9:c2:f6:47:1d:59:f2:
33:b6:af:13:2c:ab:0a:64:5b:ea:50:07:e5:8d:1d:f0:b8:bf:
14:cb:b9:77:3e:34:9f:c9:a0:91:85:66:e6:b0:e2:ba:28:f6:
bc:b8:f5:7e:23:d3:23:04:9a:c0:e3:20:d3:08:de:69:8b:0c:
fe:ee:54:af:7b:f8:55:80:c0:d1:63:be:b4:c0:86:f3:a1:20:
cf:db:a1:1d:08:18:e3:ec:89:bd:92:56:4b:81:d7:30:d6:1c:
c7:4a:21:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHw8qg9mmy7kZ5Zb4bMfgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ZDA5ZThlZjE3MWU5YWUyMTYyN2NjYTc2ZWQ2NGZkMTdl
NmVlZDIwHhcNMjUwOTA3MDMwMTI0WhcNMjUwOTA4MDMwMTI0WjAzMTEwLwYDVQQD
Eyg2OWY1ZTk2YWM0YTIzOTBiMTc2ZTA2ZDhkNzQwMGQ1ODc0OTBiNzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eSSip2emflWHkXDAuo+DBBOlAoD
ggSY0UXRSpGT8QsZ1Au2e0rS5hhoqT8aPB1ynWTZqxb/+WQ9NTE3owbgKKv7vrR3
zuwcnccbzgGBVHC+dprbsZS4KIuVH+lqZXKlNcOoF1RP1W9KXYBK68PmuQd0Ne+G
FPVkp2MCRz3x9VeZtXmNQwg02Pfh50ESiyuUArJqmM1yQtUF3SxYPI/q1z0NcwPZ
pQ6Mpnks46SlAh0eo327jzmmlk92DGhwOJsziKR/b138dAx6M54gj2FxJ+Jn/GBi
0HIEIwAIgE99MCaQxMVqpfeygXWowYQHKTHa/7DxnojiNLjZQn0OjCO0FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGn16WrEojkLF24G2NdADVh0kLeRMB8GA1UdIwQY
MBaAFOTQno7xcemuIWJ8ynbtZP0X5u7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNU5DZWp2Rng2YTRoWW56S2R1MWtfUmZtN3RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84Yzg4MTEtMDFjNi00N2MyLWI1ZjAt
M2MxNjI0MTAwNzUyLzEvNU5DZWp2Rng2YTRoWW56S2R1MWtfUmZtN3RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84Yzg4MTEtMDFjNi00N2MyLWI1ZjAtM2MxNjI0MTAwNzUy
LzEvNU5DZWp2Rng2YTRoWW56S2R1MWtfUmZtN3RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIEZvn7qo
+oURoQmpCq2WaZJ5x1YFuy+Njby1owxJ0wmNSyC+hNvJe1BBJdaHWvuq3fDQAFmh
hFdeP1aKrXUeEK9D9S9GMWSOxuRpacTS7ZvzhYCAbYcTTr2PhTfgucKRdUw8+GsX
odQPXkGXY0HegujY4bbER/d+Gd4l6XkhuI3tyOk5+JS5ZbT8mhjU0n8QEU1b4s6b
Vs4FsbbpwvZHHVnyM7avEyyrCmRb6lAH5Y0d8Li/FMu5dz40n8mgkYVm5rDiuij2
vLj1fiPTIwSawOMg0wjeaYsM/u5Ur3v4VYDA0WO+tMCG86Egz9uhHQgY4+yJvZJW
S4HXMNYcx0ohpg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:49 2025 by rpki-client