Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json)
Hash identifier: mzs4aopE2fDOuz9lmAfAPiHzQS0GijEpptIP9ducEbw=
Subject key identifier: 3F:F6:F7:97:3F:90:F0:8E:55:2D:46:FD:BC:6F:E9:A1:67:6F:2C:CA
Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Certificate serial: 01988D33F771F939756A92C35CDA032614A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
Manifest number: 0D05
Signing time: Sat 09 Aug 2025 05:00:49 +0000
Manifest this update: Sat 09 Aug 2025 05:00:49 +0000
Manifest next update: Sun 10 Aug 2025 05:00:49 +0000
Files and hashes: 1: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: S4YeLhlbnTHIluNexkAuRpjIyxPPnyFlCY6COVeJy6I=)
2: vBbw-4MxcReP3ao6MqHjBCu3GcI.roa (hash: W28uSnDMlGVkrCQsXwIvXwkvC/TrS+441MfK9XqL5Zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:33:f7:71:f9:39:75:6a:92:c3:5c:da:03:26:14:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Validity
Not Before: Aug 9 05:00:49 2025 GMT
Not After : Aug 10 05:00:49 2025 GMT
Subject: CN=3ff6f7973f90f08e552d46fdbc6fe9a1676f2cca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b7:38:f5:9a:4f:4b:c5:7b:35:5d:2b:34:87:
67:7e:38:0f:56:5d:95:fa:69:c9:f9:58:d9:1c:57:
7f:18:dc:9a:ec:3e:16:4c:67:02:53:f1:b0:19:2c:
be:1d:71:6b:9e:34:44:29:b2:95:7f:7c:e2:6a:3d:
80:90:7d:15:e5:75:e0:de:7e:94:84:da:83:ed:bb:
1b:39:50:02:ef:dc:55:17:24:4a:e0:4d:9e:49:0a:
26:d7:31:a6:da:e4:4f:40:05:b8:ac:85:99:af:6b:
7e:54:e3:6b:de:24:99:c6:17:25:37:14:a0:f0:4f:
e2:07:ce:92:16:91:55:57:42:99:13:25:1c:91:19:
e0:eb:53:e9:7e:5e:ea:98:c1:d6:ed:ee:ef:5c:b4:
c4:89:34:31:1b:df:c3:41:87:b5:35:82:ad:52:92:
4c:5c:39:9b:23:41:60:f5:a3:af:41:05:49:52:57:
73:ef:6c:1d:17:1f:65:58:5b:14:5b:18:3b:4b:d7:
58:29:3f:28:d9:03:fd:eb:7f:70:43:03:bd:05:c6:
41:f3:d8:25:50:0c:b9:d0:eb:cc:2f:80:ee:c6:f5:
4c:90:8a:e6:31:3c:5e:7f:42:98:db:aa:b1:5f:55:
8c:5b:d2:03:1e:e1:f6:7b:dc:04:a3:41:b9:3b:2f:
51:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F6:F7:97:3F:90:F0:8E:55:2D:46:FD:BC:6F:E9:A1:67:6F:2C:CA
X509v3 Authority Key Identifier:
keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:9b:20:19:b3:72:9d:d4:d2:48:c3:34:78:65:04:e5:a5:28:
8f:57:d6:c1:b2:86:52:50:bd:73:65:8d:35:a9:af:95:d0:d7:
c9:55:76:fc:6b:e5:ba:5a:a3:b2:c6:eb:44:57:8b:cc:a5:c4:
25:51:e0:88:ff:e5:6d:5d:d4:3f:22:72:fa:65:3b:63:a6:d6:
83:5b:c4:d8:a0:25:0d:cf:29:e6:f6:0d:8f:18:26:22:d6:87:
29:af:6b:4b:2a:70:4d:8e:0d:79:e1:f7:16:11:05:55:fe:9c:
4f:e1:e1:75:32:b2:ea:05:0c:b3:ec:26:76:aa:8e:3a:fd:68:
51:83:08:d2:46:b6:7e:92:ba:ef:2a:04:37:f8:52:f8:2d:a9:
ea:2e:d2:f7:57:2d:90:6e:67:0b:59:1f:79:ef:ea:98:f4:29:
93:59:36:00:e9:66:7d:6e:4b:3b:1b:2e:b1:dc:84:fc:94:6c:
16:16:ff:29:ed:aa:d9:40:bd:ef:99:bd:a8:80:81:5c:95:1e:
f8:f6:ac:3c:c7:98:79:7a:87:ee:70:b7:77:cd:ee:36:8b:22:
3b:c3:a7:c5:f2:aa:88:90:44:96:1e:77:0e:f7:ad:d9:3d:d7:
57:ea:d7:77:df:30:45:d9:38:a3:36:d0:45:14:83:8f:22:8a:
88:23:91:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiNM/dx+Tl1apLDXNoDJhSgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0NjdhNTYyMTFiMjFlOWFjN2NkYzhmYjYzOWYzMTBhOTJj
MjEwNGMwHhcNMjUwODA5MDUwMDQ5WhcNMjUwODEwMDUwMDQ5WjAzMTEwLwYDVQQD
EygzZmY2Zjc5NzNmOTBmMDhlNTUyZDQ2ZmRiYzZmZTlhMTY3NmYyY2NhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7c49ZpPS8V7NV0rNIdnfjgPVl2V
+mnJ+VjZHFd/GNya7D4WTGcCU/GwGSy+HXFrnjREKbKVf3ziaj2AkH0V5XXg3n6U
hNqD7bsbOVAC79xVFyRK4E2eSQom1zGm2uRPQAW4rIWZr2t+VONr3iSZxhclNxSg
8E/iB86SFpFVV0KZEyUckRng61Ppfl7qmMHW7e7vXLTEiTQxG9/DQYe1NYKtUpJM
XDmbI0Fg9aOvQQVJUldz72wdFx9lWFsUWxg7S9dYKT8o2QP9639wQwO9BcZB89gl
UAy50OvML4DuxvVMkIrmMTxef0KY26qxX1WMW9IDHuH2e9wEo0G5Oy9RJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD/295c/kPCOVS1G/bxv6aFnbyzKMB8GA1UdIwQY
MBaAFARnpWIRsh6ax83I+2OfMQqSwhBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQt
ODIzYWQyYzJmNWYxLzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQtODIzYWQyYzJmNWYx
LzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH5sgGbNy
ndTSSMM0eGUE5aUoj1fWwbKGUlC9c2WNNamvldDXyVV2/GvlulqjssbrRFeLzKXE
JVHgiP/lbV3UPyJy+mU7Y6bWg1vE2KAlDc8p5vYNjxgmItaHKa9rSypwTY4NeeH3
FhEFVf6cT+HhdTKy6gUMs+wmdqqOOv1oUYMI0ka2fpK67yoEN/hS+C2p6i7S91ct
kG5nC1kfee/qmPQpk1k2AOlmfW5LOxsusdyE/JRsFhb/Ke2q2UC975m9qICBXJUe
+PasPMeYeXqH7nC3d83uNosiO8OnxfKqiJBElh53Dvet2T3XV+rXd98wRdk4ozbQ
RRSDjyKKiCORzQ==
-----END CERTIFICATE-----
Generated at Sat Aug 9 10:31:41 2025 by rpki-client