Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft
File: 5kdeNHqvK1nU7oU6ilS05L03R-s.mft (raw, json)
Hash identifier: vRbOIKDbfCb3MIA0KP5dI8KwoWyo7H66sGCjUKxIRNo=
Subject key identifier: 4A:30:A2:50:AC:E1:2D:68:96:A3:DE:98:14:8E:7D:5A:FE:43:B4:D5
Authority key identifier: E6:47:5E:34:7A:AF:2B:59:D4:EE:85:3A:8A:54:B4:E4:BD:37:47:EB
Certificate issuer: /CN=e6475e347aaf2b59d4ee853a8a54b4e4bd3747eb
Certificate serial: 019748C337D3AEF9A11BB911364F1168693D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5kdeNHqvK1nU7oU6ilS05L03R-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft
Manifest number: C6
Signing time: Sat 07 Jun 2025 05:00:42 +0000
Manifest this update: Sat 07 Jun 2025 05:00:42 +0000
Manifest next update: Sun 08 Jun 2025 05:00:42 +0000
Files and hashes: 1: 5kdeNHqvK1nU7oU6ilS05L03R-s.crl (hash: AmXeKjXmRR1un7sqm2AvKXJmfH3bLoNPTqn2SRuqmkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/5kdeNHqvK1nU7oU6ilS05L03R-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:37:d3:ae:f9:a1:1b:b9:11:36:4f:11:68:69:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6475e347aaf2b59d4ee853a8a54b4e4bd3747eb
Validity
Not Before: Jun 7 05:00:42 2025 GMT
Not After : Jun 8 05:00:42 2025 GMT
Subject: CN=4a30a250ace12d6896a3de98148e7d5afe43b4d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:61:cf:5b:31:9e:1a:f8:7f:f7:65:e9:42:e7:
15:1a:9f:86:06:fd:cb:9f:57:82:d3:21:2a:23:e2:
b4:50:39:46:5f:44:eb:ee:52:d7:69:49:09:82:b7:
2d:04:5a:a7:9a:03:70:67:54:13:0c:3d:11:fe:e0:
fe:cd:50:26:bd:d2:63:a1:b0:98:61:ad:4e:89:17:
d3:39:e0:fb:99:80:b3:d4:28:8b:0f:7d:32:c1:ca:
f3:22:3f:2b:5b:f9:22:2e:47:eb:31:08:46:99:2c:
ab:d5:ba:a7:7f:bd:60:64:ae:7e:68:ed:3d:d1:51:
8c:e8:09:ed:8d:4b:fa:2b:68:21:4f:56:b7:f7:45:
e7:d1:45:36:de:5a:f5:54:c2:29:a8:c1:0d:be:20:
88:63:a5:79:b4:6d:1d:9f:30:75:09:8d:b6:58:13:
ca:fe:69:9a:ed:a5:e3:61:f1:0f:a0:18:bc:e3:30:
51:66:09:36:51:bb:c7:0c:8d:fe:4d:e0:f1:67:4a:
b3:bf:3e:3e:4d:a2:0e:da:0a:3e:02:7f:06:2f:10:
f7:13:53:bf:ef:fd:e6:d5:13:da:f9:d5:32:24:cb:
b9:07:43:c7:68:65:7d:6d:3e:78:4c:a0:2e:92:0b:
d0:83:bc:20:69:b3:85:50:d4:41:5c:0f:c6:a1:09:
dc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:30:A2:50:AC:E1:2D:68:96:A3:DE:98:14:8E:7D:5A:FE:43:B4:D5
X509v3 Authority Key Identifier:
keyid:E6:47:5E:34:7A:AF:2B:59:D4:EE:85:3A:8A:54:B4:E4:BD:37:47:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5kdeNHqvK1nU7oU6ilS05L03R-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:04:54:a7:43:15:63:3f:25:4a:f0:fa:8d:ff:c5:ab:24:b3:
97:0f:98:d8:fe:5c:28:1d:bb:3a:61:2a:67:8e:fc:5d:27:2d:
c0:48:2d:88:18:a2:8c:22:db:aa:5f:d0:9a:3e:c6:57:be:08:
35:a5:c5:a2:3f:f0:12:82:34:40:71:b3:ab:83:31:5d:5a:7f:
c1:96:c5:b5:f6:51:bd:a3:ee:95:8a:3b:a0:ee:13:52:c3:75:
c5:38:bf:eb:e3:9f:ef:19:6e:94:05:e9:a6:2e:bf:69:31:b8:
99:77:51:00:c9:57:4e:6c:a6:7c:19:c3:ed:34:e4:35:05:dd:
c5:a9:16:91:14:8f:c7:1f:14:27:11:5c:52:46:4e:54:cb:fc:
a4:ff:f0:cd:4a:77:e5:93:e8:19:f2:4e:14:5c:28:b9:7d:8e:
9c:01:22:a9:6c:76:4a:c7:b3:b3:3a:86:f1:9c:0c:91:32:0c:
f5:82:0f:48:2f:d0:f7:4e:df:80:9a:fa:b4:2d:f6:b3:e6:90:
4b:9d:72:f6:3e:4a:bb:cb:f1:3c:97:88:11:10:75:89:43:3d:
e8:df:30:a7:10:9e:ea:0a:a8:12:49:1b:98:48:ba:ea:f0:26:
19:87:de:42:15:11:95:02:de:a1:c4:a5:d2:96:aa:91:97:e6:
63:76:97:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIwzfTrvmhG7kRNk8RaGk9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2NDc1ZTM0N2FhZjJiNTlkNGVlODUzYThhNTRiNGU0YmQz
NzQ3ZWIwHhcNMjUwNjA3MDUwMDQyWhcNMjUwNjA4MDUwMDQyWjAzMTEwLwYDVQQD
Eyg0YTMwYTI1MGFjZTEyZDY4OTZhM2RlOTgxNDhlN2Q1YWZlNDNiNGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWHPWzGeGvh/92XpQucVGp+GBv3L
n1eC0yEqI+K0UDlGX0Tr7lLXaUkJgrctBFqnmgNwZ1QTDD0R/uD+zVAmvdJjobCY
Ya1OiRfTOeD7mYCz1CiLD30ywcrzIj8rW/kiLkfrMQhGmSyr1bqnf71gZK5+aO09
0VGM6AntjUv6K2ghT1a390Xn0UU23lr1VMIpqMENviCIY6V5tG0dnzB1CY22WBPK
/mma7aXjYfEPoBi84zBRZgk2UbvHDI3+TeDxZ0qzvz4+TaIO2go+An8GLxD3E1O/
7/3m1RPa+dUyJMu5B0PHaGV9bT54TKAukgvQg7wgabOFUNRBXA/GoQnctQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEowolCs4S1olqPemBSOfVr+Q7TVMB8GA1UdIwQY
MBaAFOZHXjR6rytZ1O6FOopUtOS9N0frMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWtkZU5IcXZLMW5VN29VNmlsUzA1TDAzUi1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9hM2EyOTktY2UyOC00YzM1LWFjNjQt
YzhjMjBmMjVkZTg4LzEvNWtkZU5IcXZLMW5VN29VNmlsUzA1TDAzUi1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9hM2EyOTktY2UyOC00YzM1LWFjNjQtYzhjMjBmMjVkZTg4
LzEvNWtkZU5IcXZLMW5VN29VNmlsUzA1TDAzUi1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZARUp0MV
Yz8lSvD6jf/FqySzlw+Y2P5cKB27OmEqZ478XSctwEgtiBiijCLbql/Qmj7GV74I
NaXFoj/wEoI0QHGzq4MxXVp/wZbFtfZRvaPulYo7oO4TUsN1xTi/6+Of7xlulAXp
pi6/aTG4mXdRAMlXTmymfBnD7TTkNQXdxakWkRSPxx8UJxFcUkZOVMv8pP/wzUp3
5ZPoGfJOFFwouX2OnAEiqWx2SsezszqG8ZwMkTIM9YIPSC/Q907fgJr6tC32s+aQ
S51y9j5Ku8vxPJeIERB1iUM96N8wpxCe6gqoEkkbmEi66vAmGYfeQhURlQLeocSl
0paqkZfmY3aXGQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 07:54:45 2025 by rpki-client