Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
File: 5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json)
Hash identifier: f+CAv5cep0kSpThWiJ/DEuFiXF9Edr+5oPVQLY0AeJI=
Subject key identifier: E0:96:D2:3D:6A:37:A8:69:07:F0:FE:9A:56:77:79:8D:E3:95:1D:1E
Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
Certificate issuer: /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Certificate serial: 019A7225E670A0FF161DDAD57E2B0F8B78E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
Manifest number: 13FD
Signing time: Tue 11 Nov 2025 09:01:17 +0000
Manifest this update: Tue 11 Nov 2025 09:01:17 +0000
Manifest next update: Wed 12 Nov 2025 09:01:17 +0000
Files and hashes: 1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: XkGWntqhN4Wem2q4FMz7n/fqmhvSaIn0hRM6TVhHTNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:e6:70:a0:ff:16:1d:da:d5:7e:2b:0f:8b:78:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Validity
Not Before: Nov 11 09:01:17 2025 GMT
Not After : Nov 12 09:01:17 2025 GMT
Subject: CN=e096d23d6a37a86907f0fe9a5677798de3951d1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9a:1e:5c:78:fb:c0:f3:57:1d:3a:92:af:64:
08:5c:a3:3c:00:9e:8a:e8:4e:5a:76:e0:f3:d2:f3:
ce:92:a1:d3:e0:e8:d4:0c:07:60:9b:0e:f3:36:05:
57:d3:65:fe:b8:29:3d:4b:4b:a6:2e:3d:bd:b3:89:
fe:18:ac:83:d7:54:49:11:13:bd:52:4a:b4:c7:09:
47:1e:cd:1b:c4:98:fb:b8:b3:51:42:de:cb:fc:2e:
a5:41:f2:9d:f4:e6:1c:b0:f8:00:98:d2:cd:86:99:
7d:88:c5:93:86:f4:4b:ba:21:b5:f6:6b:ad:07:2b:
17:63:11:6b:bf:f2:fd:c6:64:40:b7:56:08:bf:2e:
b2:42:78:45:10:9c:b8:9b:3b:89:2e:28:86:5d:c3:
a4:9b:7f:a2:29:86:4d:f3:a0:14:ae:db:be:5d:ee:
45:82:ce:05:02:4f:26:67:2f:4b:9c:1d:50:7f:fb:
61:7e:01:0c:ec:c5:da:5d:6a:10:43:f5:43:13:1a:
0b:59:af:d6:f0:a6:a3:83:a4:4c:a8:eb:03:e7:fa:
8b:2c:a1:3e:6b:36:b0:bd:0b:7c:61:6c:71:ac:8a:
90:2b:15:e4:13:54:ba:c4:fb:37:6d:6e:29:79:15:
fe:f1:7f:94:34:92:87:87:3a:9f:9f:5a:12:ed:43:
c0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:96:D2:3D:6A:37:A8:69:07:F0:FE:9A:56:77:79:8D:E3:95:1D:1E
X509v3 Authority Key Identifier:
keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:0f:60:ac:7a:e2:14:38:3f:79:7f:72:d0:5b:1b:8e:6c:d6:
10:e6:76:83:ab:96:f0:57:fd:26:b6:68:cf:f4:f7:e6:88:1c:
44:19:8f:e6:56:08:dc:ac:47:1b:0f:77:78:48:87:f4:ab:84:
d0:27:86:fb:22:69:11:a4:28:0a:62:b5:39:27:2b:40:9c:21:
45:a6:29:cd:4d:c1:76:20:ae:53:ea:f0:0d:9b:41:1a:17:56:
d3:71:25:86:24:d8:07:f4:56:3f:25:3a:8c:a2:cd:74:e1:24:
7a:cd:e7:5b:c3:86:4c:eb:67:b4:47:4d:bd:a3:5a:3d:ad:0b:
b2:6d:b9:32:2f:e9:cc:e8:27:e2:e4:41:9b:18:eb:47:46:28:
9f:22:56:9c:79:4a:2b:83:15:71:26:b7:b7:1b:76:5e:00:75:
b6:e9:93:8c:1a:15:5e:b2:65:9c:53:98:81:b2:9a:41:f5:94:
de:f2:41:91:24:a2:b7:0b:63:41:70:3d:37:43:70:35:41:89:
ab:86:76:a4:c3:b1:db:0c:23:23:a0:4d:1e:29:67:8a:e6:b8:
65:cb:e6:eb:39:9f:c6:7f:b0:ca:d9:a0:89:d1:9a:b5:96:f2:
01:bb:ce:b3:a5:d0:e2:07:6d:0d:bc:92:3b:9b:5d:cc:db:53:
29:ea:79:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJeZwoP8WHdrVfisPi3jiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2YThiOTJkNGM1OTdmNmMwNDRmNzcyNTI4NTQ4ZjljOTEy
OWEwZDMwHhcNMjUxMTExMDkwMTE3WhcNMjUxMTEyMDkwMTE3WjAzMTEwLwYDVQQD
EyhlMDk2ZDIzZDZhMzdhODY5MDdmMGZlOWE1Njc3Nzk4ZGUzOTUxZDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspoeXHj7wPNXHTqSr2QIXKM8AJ6K
6E5aduDz0vPOkqHT4OjUDAdgmw7zNgVX02X+uCk9S0umLj29s4n+GKyD11RJERO9
Ukq0xwlHHs0bxJj7uLNRQt7L/C6lQfKd9OYcsPgAmNLNhpl9iMWThvRLuiG19mut
BysXYxFrv/L9xmRAt1YIvy6yQnhFEJy4mzuJLiiGXcOkm3+iKYZN86AUrtu+Xe5F
gs4FAk8mZy9LnB1Qf/thfgEM7MXaXWoQQ/VDExoLWa/W8Kajg6RMqOsD5/qLLKE+
azawvQt8YWxxrIqQKxXkE1S6xPs3bW4peRX+8X+UNJKHhzqfn1oS7UPAYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOCW0j1qN6hpB/D+mlZ3eY3jlR0eMB8GA1UdIwQY
MBaAFOaouS1MWX9sBE93JShUj5yRKaDTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9mOWFmYzItOTE2OS00YThjLTg4MTYt
ZGViN2ZmMWI1ZTZkLzEvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9mOWFmYzItOTE2OS00YThjLTg4MTYtZGViN2ZmMWI1ZTZk
LzEvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIw9grHri
FDg/eX9y0FsbjmzWEOZ2g6uW8Ff9JrZoz/T35ogcRBmP5lYI3KxHGw93eEiH9KuE
0CeG+yJpEaQoCmK1OScrQJwhRaYpzU3BdiCuU+rwDZtBGhdW03ElhiTYB/RWPyU6
jKLNdOEkes3nW8OGTOtntEdNvaNaPa0Lsm25Mi/pzOgn4uRBmxjrR0YonyJWnHlK
K4MVcSa3txt2XgB1tumTjBoVXrJlnFOYgbKaQfWU3vJBkSSitwtjQXA9N0NwNUGJ
q4Z2pMOx2wwjI6BNHilniua4Zcvm6zmfxn+wytmgidGatZbyAbvOs6XQ4gdtDbyS
O5tdzNtTKep5VQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:04:45 2025 by rpki-client