Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: UT23Q116kf+DJFL8k4t/WqAG2pbrcBP7yDAGSs/Ai5o=
Subject key identifier: 7B:12:D9:C5:9B:30:25:D6:31:57:58:44:F7:97:CD:5D:8F:6E:6F:81
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 019894EDD49BEA73A51207D3FE9D9AA9D38C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 01F6
Signing time: Sun 10 Aug 2025 17:01:11 +0000
Manifest this update: Sun 10 Aug 2025 17:01:11 +0000
Manifest next update: Mon 11 Aug 2025 17:01:11 +0000
Files and hashes: 1: BOJlFcCNxlleMHUbR9TjmHCDeZc.roa (hash: ujITDNQNM0fpryFmlYjLZ0Q/wbil/+me/IAh88EFBg8=)
2: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: WY3U5vZFp/OzdaJIfKkhB5iTntPAps3RzJdDfHe26zQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:ed:d4:9b:ea:73:a5:12:07:d3:fe:9d:9a:a9:d3:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: Aug 10 17:01:11 2025 GMT
Not After : Aug 11 17:01:11 2025 GMT
Subject: CN=7b12d9c59b3025d631575844f797cd5d8f6e6f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7f:79:3d:e4:ec:e5:c2:b6:89:05:fd:9e:64:
24:68:29:37:e1:73:c2:7a:13:a9:ab:a0:90:8c:81:
6b:00:b6:31:95:52:1b:93:7f:93:ba:90:57:35:3e:
9a:11:5f:9d:23:74:27:63:7b:fa:9b:4f:ff:91:25:
d4:c6:cf:cb:7b:15:2a:b1:f1:f5:12:3b:4e:c2:33:
9a:d0:f8:30:73:61:ff:a9:a9:b4:70:90:b5:89:e7:
f0:d1:ba:04:39:e8:a9:7c:2d:5a:93:bd:ff:43:45:
e5:af:b6:63:f9:fb:40:20:78:7b:9d:a8:35:08:4b:
e7:63:9a:be:56:83:5f:ff:34:39:9c:e6:2c:29:d2:
46:46:71:a1:82:6c:ff:ca:f6:b5:d1:15:ed:fc:9f:
6c:cb:3d:c8:5b:ee:be:1f:80:b9:24:02:85:ab:60:
c0:ec:88:15:9e:be:e0:c1:9f:56:1e:3f:6b:15:df:
78:09:12:d4:e4:98:98:78:dc:67:8b:0a:b9:f2:0b:
35:9f:08:8a:d3:e1:3f:a4:25:a6:af:98:3b:f5:8b:
e5:66:2f:ab:d0:7f:da:bc:2e:d0:bb:6f:01:95:99:
c4:9a:8d:b8:16:1f:e3:6f:8e:5f:72:f2:15:53:73:
fb:27:e2:ed:cc:04:67:b7:a5:c9:f8:10:73:c8:39:
75:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:12:D9:C5:9B:30:25:D6:31:57:58:44:F7:97:CD:5D:8F:6E:6F:81
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:35:92:e3:fc:8f:ca:73:fe:9c:99:24:23:3c:0e:8c:a6:d9:
aa:4b:b4:a3:0c:ee:3a:61:4a:3f:94:30:04:c4:fd:90:dc:82:
1a:2f:58:f4:28:3a:ec:41:6d:8d:6d:85:93:67:55:b6:61:8f:
90:1b:ec:ed:86:63:bc:ea:21:b7:af:b5:43:20:54:ab:7f:54:
9c:1b:d2:40:88:19:f2:76:9e:59:6f:bd:e8:f8:b7:14:17:e9:
1f:e5:c9:ec:8f:de:cc:de:9f:de:61:2d:c2:00:f1:50:f1:47:
27:bd:a4:58:b9:66:62:c7:c8:2a:d4:fb:7d:1a:7d:d5:4f:5f:
0f:44:03:b5:d2:3a:17:11:c4:47:04:db:2f:0b:7a:0c:0d:17:
59:02:53:3c:fb:4c:2b:a6:a1:15:82:e9:9f:e8:32:71:66:98:
c2:5f:8f:4a:d5:2b:f4:78:f1:55:ba:1d:c9:f0:0a:3b:64:8b:
9b:13:5b:a3:82:2a:8b:a7:2e:9c:4b:a8:74:53:45:5f:28:c8:
2a:c5:bc:54:65:c7:5c:19:a6:3d:38:16:10:e5:63:07:10:c1:
20:0d:12:a1:0a:59:a6:9e:c9:e9:c6:3b:f7:6c:46:7b:96:09:
22:d4:f3:4e:ba:17:aa:da:09:66:4c:e0:06:12:2e:13:c8:b8:
79:35:28:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiU7dSb6nOlEgfT/p2aqdOMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NjU2YzVhZDk3MzgzNzJkNTRjMDM3ZTM5N2YzNWJlOWFh
OTI0ZGIwHhcNMjUwODEwMTcwMTExWhcNMjUwODExMTcwMTExWjAzMTEwLwYDVQQD
Eyg3YjEyZDljNTliMzAyNWQ2MzE1NzU4NDRmNzk3Y2Q1ZDhmNmU2ZjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyX95PeTs5cK2iQX9nmQkaCk34XPC
ehOpq6CQjIFrALYxlVIbk3+TupBXNT6aEV+dI3QnY3v6m0//kSXUxs/LexUqsfH1
EjtOwjOa0Pgwc2H/qam0cJC1iefw0boEOeipfC1ak73/Q0Xlr7Zj+ftAIHh7nag1
CEvnY5q+VoNf/zQ5nOYsKdJGRnGhgmz/yva10RXt/J9syz3IW+6+H4C5JAKFq2DA
7IgVnr7gwZ9WHj9rFd94CRLU5JiYeNxniwq58gs1nwiK0+E/pCWmr5g79YvlZi+r
0H/avC7Qu28BlZnEmo24Fh/jb45fcvIVU3P7J+LtzARnt6XJ+BBzyDl1RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHsS2cWbMCXWMVdYRPeXzV2Pbm+BMB8GA1UdIwQY
MBaAFAZlbFrZc4Ny1UwDfjl/Nb6aqSTbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMt
OGIwNzYyNTZmMzlkLzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMtOGIwNzYyNTZmMzlk
LzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXzWS4/yP
ynP+nJkkIzwOjKbZqku0owzuOmFKP5QwBMT9kNyCGi9Y9Cg67EFtjW2Fk2dVtmGP
kBvs7YZjvOoht6+1QyBUq39UnBvSQIgZ8naeWW+96Pi3FBfpH+XJ7I/ezN6f3mEt
wgDxUPFHJ72kWLlmYsfIKtT7fRp91U9fD0QDtdI6FxHERwTbLwt6DA0XWQJTPPtM
K6ahFYLpn+gycWaYwl+PStUr9HjxVbodyfAKO2SLmxNbo4Iqi6cunEuodFNFXyjI
KsW8VGXHXBmmPTgWEOVjBxDBIA0SoQpZpp7J6cY792xGe5YJItTzTroXqtoJZkzg
BhIuE8i4eTUo9w==
-----END CERTIFICATE-----
Generated at Mon Aug 11 01:44:57 2025 by rpki-client