
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
File: mrL5l1qR5xN52hAOyEvUSgooDZs.mft (raw, json)
Hash identifier: znn8t3FRpJQlC8p1lxlOo4BVlSJb1awiHPIdAHg/rTI=
Subject key identifier: F8:FE:79:1B:2D:1F:8C:EF:06:2F:E2:C4:28:01:EB:F9:43:9D:2D:49
Authority key identifier: 9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
Certificate issuer: /CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Certificate serial: 01976EBE3CA8DFB72F8A67A6A925285B02CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
Manifest number: 12D4
Signing time: Sat 14 Jun 2025 14:00:50 +0000
Manifest this update: Sat 14 Jun 2025 14:00:50 +0000
Manifest next update: Sun 15 Jun 2025 14:00:50 +0000
Files and hashes: 1: PbBhRej558nP-vCP2i5bq2vF02I.roa (hash: k4y0Lkz3mWSRjZ9l7iXnliVmD502EHJIpmvxtHIQNOU=)
2: mrL5l1qR5xN52hAOyEvUSgooDZs.crl (hash: EVDO2CprgXL+EbfDNrUM0wEvVmCo0z+dtYpBo5BUXSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:be:3c:a8:df:b7:2f:8a:67:a6:a9:25:28:5b:02:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Validity
Not Before: Jun 14 14:00:50 2025 GMT
Not After : Jun 15 14:00:50 2025 GMT
Subject: CN=f8fe791b2d1f8cef062fe2c42801ebf9439d2d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ab:bd:a1:c0:90:2f:c6:6e:19:31:ff:b3:88:
17:da:9c:61:c1:6c:b4:75:44:7c:85:44:9e:0f:e3:
34:96:ab:6a:d8:72:8a:40:be:42:a3:12:76:11:59:
b0:b3:e0:dc:9d:25:7c:ea:16:12:fc:f2:09:41:ab:
ee:22:0f:aa:28:f5:cb:34:2a:a1:b0:67:fa:44:63:
e9:f8:d9:a5:8d:96:10:da:a9:fd:6c:70:33:10:2d:
00:7f:84:7b:70:16:4e:ba:2d:5c:61:58:05:11:b7:
63:33:36:fa:4f:a9:57:99:56:c9:c9:c5:9b:53:81:
7e:6b:c7:ef:0d:9d:ad:cd:01:e3:81:bb:5a:81:ce:
28:b3:a2:4c:35:74:f1:34:84:f3:e8:3f:60:8c:28:
8f:ae:57:20:6f:94:48:3f:7d:55:38:1f:51:e2:76:
06:ce:df:ce:69:07:bb:b2:f7:c1:2a:cc:df:11:9e:
ff:7c:6e:44:8c:6e:64:6b:ca:81:78:ed:6b:e7:dd:
4e:1e:f2:9a:5a:22:71:94:61:97:3e:7e:4f:d4:40:
2d:7a:04:79:6f:a8:f9:9e:a9:e5:a9:35:9e:7a:89:
11:82:17:4c:38:73:b4:5e:7f:a0:df:60:a7:5c:40:
ce:ba:b6:3e:07:1c:66:18:cc:04:8d:fe:56:97:bc:
1b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:FE:79:1B:2D:1F:8C:EF:06:2F:E2:C4:28:01:EB:F9:43:9D:2D:49
X509v3 Authority Key Identifier:
keyid:9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:29:5f:a2:c5:61:19:d8:fe:66:b3:1a:33:51:a9:03:4b:cd:
aa:29:96:69:56:57:83:c8:ed:72:b1:71:7d:50:b1:55:36:a3:
3d:0a:a8:6f:67:cc:2f:69:91:ef:01:04:d6:54:3a:cc:31:40:
70:69:f1:ba:94:2d:f7:8b:c1:3d:e0:ee:37:1a:43:f0:2b:be:
ca:12:31:fe:a8:34:50:98:2a:8f:6b:40:6f:ce:b7:92:b7:0c:
12:0e:f6:f5:87:c0:a8:73:bd:85:95:44:7d:86:8b:0e:71:d7:
11:35:c6:01:33:b4:14:db:91:f4:fc:51:d2:b8:2c:89:ba:ba:
d9:42:fb:fc:7c:0c:9a:45:f8:db:64:4e:c9:f0:c4:f8:8a:d4:
8d:e5:bf:0d:13:4d:70:26:59:39:70:d4:ad:4f:55:82:3f:42:
57:1f:db:c6:b2:a3:3f:6b:04:da:a4:4e:7c:c9:5b:74:f5:fb:
22:00:8b:7b:6b:1c:a8:b6:6b:1b:74:5a:7a:e8:78:b4:89:20:
0d:ff:08:98:8a:01:9b:42:3b:b8:a3:3a:fc:1b:b9:15:59:82:
38:7f:39:60:bb:90:fe:63:62:36:c0:74:37:06:8e:87:c7:47:
fc:22:be:80:cc:c4:78:72:05:93:3e:aa:0b:a0:ce:54:1b:e1:
34:52:1c:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZduvjyo37cvimemqSUoWwLPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhYjJmOTk3NWE5MWU3MTM3OWRhMTAwZWM4NGJkNDRhMGEy
ODBkOWIwHhcNMjUwNjE0MTQwMDUwWhcNMjUwNjE1MTQwMDUwWjAzMTEwLwYDVQQD
EyhmOGZlNzkxYjJkMWY4Y2VmMDYyZmUyYzQyODAxZWJmOTQzOWQyZDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6u9ocCQL8ZuGTH/s4gX2pxhwWy0
dUR8hUSeD+M0lqtq2HKKQL5CoxJ2EVmws+DcnSV86hYS/PIJQavuIg+qKPXLNCqh
sGf6RGPp+NmljZYQ2qn9bHAzEC0Af4R7cBZOui1cYVgFEbdjMzb6T6lXmVbJycWb
U4F+a8fvDZ2tzQHjgbtagc4os6JMNXTxNITz6D9gjCiPrlcgb5RIP31VOB9R4nYG
zt/OaQe7svfBKszfEZ7/fG5EjG5ka8qBeO1r591OHvKaWiJxlGGXPn5P1EAtegR5
b6j5nqnlqTWeeokRghdMOHO0Xn+g32CnXEDOurY+BxxmGMwEjf5Wl7wbSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPj+eRstH4zvBi/ixCgB6/lDnS1JMB8GA1UdIwQY
MBaAFJqy+ZdakecTedoQDshL1EoKKA2bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXJMNWwxcVI1eE41MmhBT3lFdlVTZ29vRFpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8wN2E0ODctMjZjYi00YjE4LWJiMzkt
MTVmZTA2ZmZmOGJjLzEvbXJMNWwxcVI1eE41MmhBT3lFdlVTZ29vRFpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS8wN2E0ODctMjZjYi00YjE4LWJiMzktMTVmZTA2ZmZmOGJj
LzEvbXJMNWwxcVI1eE41MmhBT3lFdlVTZ29vRFpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADSlfosVh
Gdj+ZrMaM1GpA0vNqimWaVZXg8jtcrFxfVCxVTajPQqob2fML2mR7wEE1lQ6zDFA
cGnxupQt94vBPeDuNxpD8Cu+yhIx/qg0UJgqj2tAb863krcMEg729YfAqHO9hZVE
fYaLDnHXETXGATO0FNuR9PxR0rgsibq62UL7/HwMmkX422ROyfDE+IrUjeW/DRNN
cCZZOXDUrU9Vgj9CVx/bxrKjP2sE2qROfMlbdPX7IgCLe2scqLZrG3Raeuh4tIkg
Df8ImIoBm0I7uKM6/Bu5FVmCOH85YLuQ/mNiNsB0NwaOh8dH/CK+gMzEeHIFkz6q
C6DOVBvhNFIc5Q==
-----END CERTIFICATE-----
Generated at Sat Jun 14 20:41:02 2025 by rpki-client