Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
File: BsdGzX1N-VptA8qVVKdUdg1eTgY.mft (raw, json)
Hash identifier: jatSK473aoIhKpePSO4R0JU8t3iJcpH5ugwSInNFePI=
Subject key identifier: AD:8C:99:A7:85:CF:A3:0C:E8:59:0A:13:8C:AB:9A:E7:69:70:9B:BE
Authority key identifier: 06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
Certificate issuer: /CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Certificate serial: 019A4DE1F972FF5306682EA398104A717339
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
Manifest number: 0783
Signing time: Tue 04 Nov 2025 08:00:46 +0000
Manifest this update: Tue 04 Nov 2025 08:00:46 +0000
Manifest next update: Wed 05 Nov 2025 08:00:46 +0000
Files and hashes: 1: BsdGzX1N-VptA8qVVKdUdg1eTgY.crl (hash: zBMABlxDLsae2RhoB/gz9wGRCFyCvm796gRVfnnfA3c=)
2: X40tLgIMCQZAYRAwmZdn2JjY2Sg.roa (hash: eDaX3dI5fxxRGSOkAJcdOwrelUSaDgM3W7s+OAzNuqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:f9:72:ff:53:06:68:2e:a3:98:10:4a:71:73:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Validity
Not Before: Nov 4 08:00:46 2025 GMT
Not After : Nov 5 08:00:46 2025 GMT
Subject: CN=ad8c99a785cfa30ce8590a138cab9ae769709bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:df:6e:0d:fe:5c:7c:69:70:76:72:45:0e:b6:
f1:38:4c:2a:ba:33:7e:ad:0d:34:4a:d3:61:92:00:
fc:17:61:d3:09:be:2d:19:cf:a9:97:21:18:4b:f6:
52:cf:45:5b:33:de:5d:6c:e4:eb:55:d9:31:3c:95:
44:5e:05:ba:e4:da:0c:d4:db:e9:e8:47:4e:40:a8:
d3:97:ba:93:e9:96:33:05:ea:02:5c:5c:df:4b:06:
42:4b:53:d9:a7:99:df:74:c6:05:bb:f9:4e:6c:af:
b9:23:a8:5d:16:27:42:9c:11:62:04:d5:41:95:0d:
4b:a1:15:f2:c6:7a:e7:2b:e4:69:9b:f4:21:be:cb:
c8:84:4e:68:53:03:5e:21:9c:d8:b1:5a:a9:43:e8:
47:7c:6c:e0:6a:0f:f3:18:8d:6e:6c:0d:6d:aa:8f:
97:76:eb:07:44:0e:28:88:bc:a6:fb:7a:1f:10:58:
e3:4e:06:66:c5:e6:4d:fd:72:d6:af:24:d2:40:a0:
5a:ed:56:da:0e:f6:2c:2f:3f:84:3b:04:5c:9f:b5:
51:29:f2:fb:9d:b3:29:1a:63:d1:e8:e6:c0:74:46:
3c:6f:83:a5:53:be:16:bf:5d:c1:e1:ea:6f:83:49:
30:89:19:91:90:05:08:03:b2:61:69:d9:07:a1:59:
5f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8C:99:A7:85:CF:A3:0C:E8:59:0A:13:8C:AB:9A:E7:69:70:9B:BE
X509v3 Authority Key Identifier:
keyid:06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ff:e5:fa:ea:25:9a:ec:25:91:0e:bd:4b:13:98:3f:11:cc:
a6:d6:31:3e:2a:bd:a4:73:63:a8:f0:5d:09:1f:66:0b:6f:c8:
0f:48:9f:a4:ad:75:89:37:ee:75:44:ce:cc:6c:76:ba:06:11:
af:1d:97:8f:3d:b1:bd:8c:38:84:fd:5b:95:09:2e:81:b1:72:
6a:06:a7:62:0f:08:7c:34:51:79:f8:7a:62:7c:15:e2:73:88:
26:57:b4:98:98:3b:d3:cb:73:ac:c7:aa:34:43:ba:af:ee:53:
5b:d6:95:b3:67:da:d5:c7:fa:bc:dd:73:d4:bd:cc:69:3e:ee:
11:9b:19:f6:b9:d7:c9:eb:df:dc:50:ab:bf:01:06:2b:34:e0:
97:5c:94:46:63:15:f2:c7:e7:79:68:80:f3:a6:6b:0e:a1:8b:
8d:98:4e:30:64:ac:6c:4d:45:47:ed:3a:0f:44:5c:4a:b7:e1:
48:f6:8e:2d:52:37:d1:e0:72:6e:b1:9e:56:73:69:c3:8f:cb:
75:8b:62:9e:ca:f7:57:58:94:39:4b:9d:5b:c5:c7:c2:ca:77:
74:fb:c8:a1:ac:da:57:2a:1a:7c:55:59:ed:60:4f:57:7c:89:
7d:6e:59:b6:32:70:e1:9b:c0:07:d2:ed:28:0c:37:20:8e:9f:
8a:04:35:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpN4fly/1MGaC6jmBBKcXM5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2Yzc0NmNkN2Q0ZGY5NWE2ZDAzY2E5NTU0YTc1NDc2MGQ1
ZTRlMDYwHhcNMjUxMTA0MDgwMDQ2WhcNMjUxMTA1MDgwMDQ2WjAzMTEwLwYDVQQD
EyhhZDhjOTlhNzg1Y2ZhMzBjZTg1OTBhMTM4Y2FiOWFlNzY5NzA5YmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz99uDf5cfGlwdnJFDrbxOEwqujN+
rQ00StNhkgD8F2HTCb4tGc+plyEYS/ZSz0VbM95dbOTrVdkxPJVEXgW65NoM1Nvp
6EdOQKjTl7qT6ZYzBeoCXFzfSwZCS1PZp5nfdMYFu/lObK+5I6hdFidCnBFiBNVB
lQ1LoRXyxnrnK+Rpm/QhvsvIhE5oUwNeIZzYsVqpQ+hHfGzgag/zGI1ubA1tqo+X
dusHRA4oiLym+3ofEFjjTgZmxeZN/XLWryTSQKBa7VbaDvYsLz+EOwRcn7VRKfL7
nbMpGmPR6ObAdEY8b4OlU74Wv13B4epvg0kwiRmRkAUIA7JhadkHoVlf3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK2MmaeFz6MM6FkKE4yrmudpcJu+MB8GA1UdIwQY
MBaAFAbHRs19TflabQPKlVSnVHYNXk4GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnNkR3pYMU4tVnB0QThxVlZLZFVkZzFlVGdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85NTJjZDctMzI5Ny00ZWFmLTg1NGYt
YjBhZmQ0NWRjZDc4LzEvQnNkR3pYMU4tVnB0QThxVlZLZFVkZzFlVGdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi85NTJjZDctMzI5Ny00ZWFmLTg1NGYtYjBhZmQ0NWRjZDc4
LzEvQnNkR3pYMU4tVnB0QThxVlZLZFVkZzFlVGdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUv/l+uol
muwlkQ69SxOYPxHMptYxPiq9pHNjqPBdCR9mC2/ID0ifpK11iTfudUTOzGx2ugYR
rx2Xjz2xvYw4hP1blQkugbFyaganYg8IfDRRefh6YnwV4nOIJle0mJg708tzrMeq
NEO6r+5TW9aVs2fa1cf6vN1z1L3MaT7uEZsZ9rnXyevf3FCrvwEGKzTgl1yURmMV
8sfneWiA86ZrDqGLjZhOMGSsbE1FR+06D0RcSrfhSPaOLVI30eBybrGeVnNpw4/L
dYtinsr3V1iUOUudW8XHwsp3dPvIoazaVyoafFVZ7WBPV3yJfW5ZtjJw4ZvAB9Lt
KAw3II6figQ1Sw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:30 2025 by rpki-client